IBM Lotus Domino 'readme.nsf' Cross Site Scripting Vulnerability
Gravità: : Medio
Identificatori CVE: CVE-2010-0927
Data notifica: 21 luglio 2015
Descrizione
IBM Lotus Domino is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
Informazioni esposizione:
Apply associated Trend Micro DPI Rules.
Soluzioni
Trend Micro Deep Security DPI Rule Number: 1000552
Trend Micro Deep Security DPI Rule Name: 1000552 - Generic Cross Site Scripting(XSS) Prevention
Software e versione interessati:
- IBM Lotus Domino