Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1106

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-1106
Last Modified 02 Mar 2011 12:00:00
Published 01 Mar 2011 06:00:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1106

Summary

Cross-site scripting (XSS) vulnerability in stcenter.nsf in the server in IBM Lotus Sametime allows remote attackers to inject arbitrary web script or HTML via the authReasonCode parameter in an OpenDatabase action.

Vulnerable Systems

Application

  • Ibm Lotus Sametime

  • Ibm Lotus Sametime 8.0

  • Ibm Lotus Sametime 8.0.1


References

XF - sametime-stcenter-xss(65555)

BID - 46481

SECUNIA - 43430

BUGTRAQ - 20110222 Re: Domino Sametime Multiple Reflected Cross-Site Scripting


Last Updated: 27 May 2016 10:56:09