Security Bulletin: In IBM InfoSphere Information Server, the Information Services Catalog interface is vulnerable to various web UI vulnerabilities (CVE-2013-3034, CVE-2013-4057, CVE-2013-4059, CVE-2012-4819)

Summary The Information Services Catalog interface of the IBM InfoSphere Information Server web console is exposed to various well known web UI vulnerabilities: phishing through frames, cacheable SSL pages, link injection, cross-site request forgery and cross-site scripting. Vulnerability Details...

CVE-2012-4819

This CVE (CVE-2012-4819) is an XSS vulnerability in IBM InfoSphere Information Server web interfaces (InfoSphere Business Glossary, DataStage Operation Console, Administration, Reporting and Repository Management Web Console) affecting InfoSphere Information Server versions 8.1, 8.5 (before FP3) ...