Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1106


Vulnerability Score 4.3 4.3
CVE Id CVE-2011-1106
Last Modified 02 Mar 2011 12:00:00
Published 01 Mar 2011 06:00:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Cross-site scripting (XSS) vulnerability in stcenter.nsf in the server in IBM Lotus Sametime allows remote attackers to inject arbitrary web script or HTML via the authReasonCode parameter in an OpenDatabase action.

Vulnerable Systems


  • Ibm Lotus Sametime

  • Ibm Lotus Sametime 8.0

  • Ibm Lotus Sametime 8.0.1


XF - sametime-stcenter-xss(65555)

BID - 46481

SECUNIA - 43430

BUGTRAQ - 20110222 Re: Domino Sametime Multiple Reflected Cross-Site Scripting

Last Updated: 27 May 2016 10:56:09