CVE-2011-0679

Sažetak

IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote attackers to obtain sensitive information via a "modified message."

Reference

http://osvdb.org/70688
http://secunia.com/advisories/43081
http://www.ibm.com/support/docview.wss?uid=swg21460422
http://www.kb.cert.org/vuls/id/375127
http://www.securityfocus.com/bid/45989
http://www.vupen.com/english/advisories/2011/0223
http://www-01.ibm.com/support/docview.wss?uid=swg1PM22159
http://www-01.ibm.com/support/docview.wss?uid=swg1PM22167
http://www-01.ibm.com/support/docview.wss?uid=swg1PM24319
http://www-01.ibm.com/support/docview.wss?uid=swg1PM24320
http://www-01.ibm.com/support/docview.wss?uid=swg1PM25191
http://www-01.ibm.com/support/docview.wss?uid=swg1PM25698
http://www-01.ibm.com/support/docview.wss?uid=swg1PM26397
https://exchange.xforce.ibmcloud.com/vulnerabilities/64890

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

17-08-2017 - 01:33

Objavljeno

28-01-2011 - 21:00