CVE-2013-6315

Currently unrated

Key Information:

Vendor: IBM
Status: Enterprise Records; Infosphere Enterprise Records
Vendor: CVE Published:; 6 March 2014

Summary

IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21662911

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/88596

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 6, 2014
Vulnerability Reserved
Oct 31, 2013