Cross-Site Scripting Vulnerability in IBM Document Connect for Application Support Facility
CVE-2013-0572

Currently unrated

Key Information:

Vendor
IBM
Status
Document Connect For Application Support Facility
Application Support Facility
Vendor
CVE Published:
27 April 2013

Summary

The vulnerability in IBM Document Connect for Application Support Facility enables remote authenticated users to inject harmful scripts into web pages. This flaw can be exploited to conduct phishing attacks, putting sensitive user information at risk. Attackers can utilize unspecified vectors to execute malicious scripts, rely on the trust users place in web applications, and cause significant security breaches across platforms including Windows, Linux, and AIX.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21635328
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/83247
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.