Business

News

 
More...

Alerts

 
More...

Events

 
More...
 
     
 

Microsoft Updates for Multiple Vulnerabilities

 

Systems Affected


  • IBM iNotes 8.5.x

Threat Level

Overview


IBM iNotes has four cross-site scripting vulnerabilities. Two of the vulnerabilities share the same CVE ID (CVE-2013-0595). These vulnerabilities could allow a remote unauthenticated attacker to expose user personal data.


Description


A remote unauthenticated attacker could exploit a security vulnerability in IBM iNotes to expose user personal data.


Impact


  • Access Confidential Data - Remote/Unauthenticated
  • Access Confidential Data - Remote/Unauthenticated


Solution/ Workarounds


All three of these issues are being tracked through SPR #PTHN95XNR3. The fix is available in IBM Domino release 8.5.3 Fix Pack 5, which can be accessed here: http://www-01.ibm.com/support/docview.wss?uid=swg24032242


References


http://www-01.ibm.com/support/docview.wss?uid=swg21647740


Disclaimer


The information provided herein is on "as is" basis, without warranty of any kind.


 
     

© Copyright Sri Lanka CERT|CC. All Rights Reserved.