CVE-2012-0690

Sažetak

TIBCO Spotfire Web Application, Web Player Application, Automation Services Application, and Analytics Client Application in Spotfire Analytics Server before 10.1.2; Server before 3.3.3; and Web Player, Automation Services, and Professional before 4.0.2 allow remote attackers to obtain sensitive information via a crafted URL.

Reference

http://www.tibco.com/multimedia/spotfire_advisory_20120308_tcm8-15731.txt
http://www.tibco.com/services/support/advisories/amx-be-spotfire-advisory_20120308.jsp

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

13-03-2012 - 10:55

Objavljeno

13-03-2012 - 10:55