Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2010-5283

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2010-5283
Last Modified 27 Nov 2012 01:01:04
Published 26 Nov 2012 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2010-5283

Summary

Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows remote attackers to hijack the authentication of administrators for requests that change folder and resource permissions.

Vulnerable Systems

Application

  • Opentext Livelink Ecm 9.7.1


References

XF - ecm-permissions-csrf(62057)

OSVDB - 68255

SECUNIA - 41553

MISC - http://packetstormsecurity.org/1009-exploits/opentext-xsrfxss.txt

FULLDISC - 20100922 OpenText LiveLink 9.7.1 multiple vulnerabilities (CSRF, XSS)


Last Updated: 27 May 2016 10:49:51