CVE-2012-2955

Currently unrated

Key Information:

Vendor: IBM
Status: Proventia Network Mail Security System Firmware; Proventia Network Mail Security System
Vendor: CVE Published:; 20 July 2012

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in IBM Lotus Protector for Mail Security 2.1, 2.5, 2.5.1, and 2.8 and IBM ISS Proventia Network Mail Security System allow remote attackers to inject arbitrary web script or HTML via the query string.

References

http://osvdb.org/84014

vdb-entryx_refsource_OSVDB

http://www-01.ibm.com/support/docview.wss?uid=swg21605626

x_refsource_CONFIRM

http://www.kb.cert.org/vuls/id/659791

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
Jul 20, 2012
Vulnerability Reserved
May 30, 2012