CVE-2008-2410

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino Web Server
Vendor: CVE Published:; 22 May 2008

Summary

Cross-site scripting (XSS) vulnerability in the servlet engine and Web container in the Web Server service in IBM Lotus Domino before 7.0.3 FP1, and 8.x before 8.0.1, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/42553

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2008/1597

vdb-entryx_refsource_VUPEN

http://www-1.ibm.com/support/docview.wss?uid=swg21303296

x_refsource_CONFIRM

Timeline

Vulnerability published
May 22, 2008
Vulnerability Reserved
May 22, 2008