Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-0502

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2013-0502
Last Modified 02 Apr 2013 12:00:00
Published 01 Apr 2013 03:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-0502

Summary

Cross-site scripting (XSS) vulnerability in IBM InfoSphere Information Server 8.1, 8.5 through FP3, 8.7 through FP2, and 9.1 allows remote attackers to inject arbitrary web script or HTML via a malformed URL.

Vulnerable Systems

Application

  • Ibm Infosphere Information Server 8.1

  • Ibm Infosphere Information Server 8.5

  • Ibm Infosphere Information Server 8.5.0.1

  • Ibm Infosphere Information Server 8.5.0.2

  • Ibm Infosphere Information Server 8.5.0.3

  • Ibm Infosphere Information Server 8.7

  • Ibm Infosphere Information Server 8.7.0.1

  • Ibm Infosphere Information Server 8.7.0.2

  • Ibm Infosphere Information Server 9.1


References

XF - infosphere-web-console-xss(82233)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21632556

AIXAPAR - JR45274


Last Updated: 27 May 2016 11:02:09