2 matches found
CVE-2010-4595
The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 disables the http.device.stanza blacklisting functionality for HTTP Access Services HTTP-AS, which allows remote attackers to bypass intended access restrictions via an HTTP request that contains a disallowed User-Agent header...
CVE-2010-4595
CVE-2010-4595 affects IBM Lotus Mobile Connect, Connection Manager prior to 6.1.4. The http.device.stanza blacklist for HTTP Access Services is disabled, allowing remote attackers to bypass access restrictions with an HTTP request containing a disallowed User-Agent header. No exploitation or miti...