PT-2013-1484 · Ibm · Ibm Infosphere Information Server+1

Published

2013-01-31

·

Updated

2017-08-29

·

CVE-2012-0203

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions IBM InfoSphere Information Server versions 8.1 through 8.7 IBM InfoSphere Metadata Workbench (MWB) versions 8.1 through 8.7 IBM InfoSphere Information Server 8.5 before FP3
Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This could potentially lead to unauthorized actions on the affected system.
Recommendations For IBM InfoSphere Information Server versions 8.1 through 8.7, update to a version that includes the fix for this issue. For IBM InfoSphere Metadata Workbench (MWB) versions 8.1 through 8.7, update to a version that includes the fix for this issue. For IBM InfoSphere Information Server 8.5, apply FP3 or a later fix pack to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2012-0203

Affected Products

Ibm Infosphere Information Server
Ibm Infosphere Metadata Workbench