CVE-2009-4239

Sažetak

Cross-site scripting (XSS) vulnerability in the Web console in IBM InfoSphere Information Server 8.1 before FP1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://secunia.com/advisories/37556
http://www.osvdb.org/60806
http://www.securityfocus.com/bid/37246
http://www.vupen.com/english/advisories/2009/3432
http://www-01.ibm.com/support/docview.wss?uid=swg1JR32573
http://www-01.ibm.com/support/docview.wss?uid=swg21406224
https://exchange.xforce.ibmcloud.com/vulnerabilities/54608

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

17-08-2017 - 01:31

Objavljeno

09-12-2009 - 19:30