Cross-site Scripting Vulnerability in IBM Rational DOORS Web Access
CVE-2011-2679

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Doors Web Access
Vendor: CVE Published:; 7 July 2011

Summary

An XSS vulnerability is present in IBM Rational DOORS Web Access versions prior to 1.4.0.4, enabling remote attackers to inject arbitrary web scripts or HTML. This can occur through unspecified vectors, potentially exploiting user sessions or performing actions on behalf of users, compromising sensitive information.

References

http://secunia.com/advisories/45119

third-party-advisoryx_refsource_SECUNIA

http://www-01.ibm.com/support/docview.wss?uid=swg1PM34961

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/68350

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jul 7, 2011
Vulnerability Reserved
Jul 7, 2011