CVE-2016-3060

Sažetak

Payments Director in IBM Financial Transaction Manager (FTM) for ACH Services, Check Services, and Corporate Payment Services (CPS) 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks via a crafted web site.

Reference

http://www.securityfocus.com/bid/92633
http://www-01.ibm.com/support/docview.wss?uid=swg1PI64063
http://www-01.ibm.com/support/docview.wss?uid=swg1PI64064
http://www-01.ibm.com/support/docview.wss?uid=swg1PI67537
http://www-01.ibm.com/support/docview.wss?uid=swg21989060

CVSS

Base:	3.5
Impact:	2.9
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:S/C:N/I:P/A:N

Zadnje važnije ažuriranje

28-11-2016 - 20:06

Objavljeno

29-10-2016 - 01:59