CVE-2012-5941

Name of the Vulnerable Software and Affected Versions IBM Netezza WebAdmin application versions 6.0.5, 6.0.8, and 7.0 before P2

Description The issue allows remote authenticated users to inject content and conduct phishing attacks via unspecified vectors. This is due to a cross-site scripting (XSS) vulnerability in the WebAdmin application.

Recommendations For versions 6.0.5 and 6.0.8, update to a version that includes the P2 patch or later. For version 7.0 before P2, update to version 7.0 P2 or later. As a temporary workaround, consider restricting access to the WebAdmin application until a patch is applied.