Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-6743

Overview

Vulnerability Score 3.5 3.5
CVE Id CVE-2013-6743
Last Modified 02 Sep 2015 12:51:51
Published 14 Feb 2014 08:10:48
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2013-6743

Summary

Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving an IMG element.

Vulnerable Systems

Application

  • Ibm Sametime 8.5.2.0

  • Ibm Sametime 8.5.2.1

  • Ibm Sametime 9.0.0.0

  • Ibm Sametime 9.0.0.1


References

XF - ibm-sametime-ms-cve20136743-xss(89859)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21662928

OSVDB - 103131


Last Updated: 27 May 2016 11:04:27