4 matches found
Security Bulletin: Cross-site scripting security vulnerability exists in IBM Eclipse Help System used in IBM Security zSecure Visual (CVE-2013-5449)
Abstract IBM Security zSecure Visual uses the IBM Eclipse Help System IEHS to provide product information center for end users. A cross site scripting vulnerability exists in IEHS. Content VULNERABILITY DETAILS CVE ID: CVE-2013-5449 DESCRIPTION: A remote attacker might exploit this vulnerability...
Security Bulletin: WebSphere Process Server (WPS) / IBM Business Process Manager (BPM) – Cross-site scripting security vulnerability in local help system
Summary A Cross-site scripting security vulnerability exists in the IBM Eclipse Help System, which is used to provide the product information centers for the IBM WebSphere Process Server and IBM Business Process Manager products. For more details about Cross-site Scripting XSS, see the Open Web...
Security Bulletin: Cross-Site Scripting Vulnerabilities in the locally installable IBM DB2 Information Center (CVE-2013-5449)
Summary Some scripts in the help system used by IBM DB2 Information Center are vulnerable to cross-site scripting attacks. This security bulletin only applies to the locally installed DB2 Information Center and not the core DB2 product. If you do not have an information center installed on a loca...
CVE-2013-5449
CVE-2013-5449 is an XSS vulnerability in the IBM Eclipse Help System (IEHS) used by IBM FileNet Content Manager InfoCenter. The issue affects IEHS in the installable InfoCenter components of multiple IBM FileNet/Content Manager versions and is triggered via crafted URLs to execute script in a use...