CVE-2014-3009

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Master Data Management Server For Product Information Management
Vendor: CVE Published:; 1 August 2014

Summary

The GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.0 through 11.0 and InfoSphere Master Data Management Server for Product Information Management 9.0 and 9.1 does not properly handle FRAME elements, which makes it easier for remote authenticated users to conduct phishing attacks via a crafted web site.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/92952

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21677306

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 1, 2014
Vulnerability Reserved
Apr 29, 2014