Cross-site Scripting Vulnerability in IBM Tivoli Netcool Security Manager
CVE-2007-6219

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Netcool Security Manager
Vendor: CVE Published:; 4 December 2007

Summary

The vulnerability in IBM Tivoli Netcool Security Manager 1.3.0 allows attackers to exploit cross-site scripting (XSS) flaws, enabling them to inject arbitrary web scripts or HTML into the application. This poses a significant risk as it could allow unauthorized actions or data theft when users interact with compromised content, highlighting the importance of applying security measures and updates to safeguard against potential exploitation.

References

http://www.vupen.com/english/advisories/2007/4059

vdb-entryx_refsource_VUPEN

http://www-1.ibm.com/support/docview.wss?uid=swg1IY95615

vendor-advisoryx_refsource_AIXAPAR

http://www.securitytracker.com/id?1019026

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Dec 4, 2007
Vulnerability Reserved
Dec 4, 2007