Cross-Site Scripting Vulnerability in IBM Lotus Protector for Mail Security
CVE-2014-0884

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Protector For Mail Security
Vendor: CVE Published:; 25 March 2014

Summary

A vulnerability has been identified in the Admin Web UI of IBM Lotus Protector for Mail Security, enabling remote authenticated users to inject arbitrary scripts or HTML content. This exploitation occurs through unspecified vectors, potentially allowing attackers to execute malicious code in the context of a user's session, thus compromising data integrity and security.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21668124

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/91170

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 25, 2014
Vulnerability Reserved
Jan 6, 2014