CVE-2011-1032

Sažetak

IBM Lotus Connections 3.0, when IBM WebSphere Application Server 7.0.0.11 is used, does not properly restrict access to the internal login module, which has unspecified impact and attack vectors.

Reference

http://osvdb.org/70931
http://secunia.com/advisories/43298
http://www.ibm.com/support/docview.wss?uid=swg21462435
http://www.vupen.com/english/advisories/2011/0382
http://www-01.ibm.com/support/docview.wss?uid=swg1PK54565

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

01-03-2011 - 07:08

Objavljeno

15-02-2011 - 01:00