Open Redirect Vulnerability in IBM InfoSphere Information Server
CVE-2012-0703

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Information Server; Infosphere Information Server Information Services Framework
Vendor: CVE Published:; 31 January 2013

Summary

An open redirect vulnerability exists within the Information Services Framework (ISF) of IBM InfoSphere Information Server versions 8.1, 8.5 prior to FP3, and 8.7. This flaw permits remote attackers to manipulate users into visiting arbitrary external websites. Such manipulation can facilitate phishing attacks, potentially compromising sensitive user information by redirecting them to malicious sites through unspecified vectors.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/73289

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jan 31, 2013
Vulnerability Reserved
Jan 17, 2012