Lucene search
K

3 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 1:14 a.m.15 views

Security Bulletin: Cross frame scripting vulnerability in Connect:Enterprise HTTP (CVE-2013-6327)

Summary IBM Sterling Connect:Enterprise HTTP Option is vulnerable to cross frame scripting attacks. Vulnerability Details CVE ID: CVE-2013-6327 DESCRIPTION: IBM Sterling Connect:Enterprise HTTP Option could allow a cross-frame scripting attack, caused by improper validation of input within a fram...

4.3CVSS0.3AI score0.00931EPSS
Exploits1Affected Software1
CVE
CVE
added 2013/12/17 11:0 a.m.41 views

CVE-2013-6327

IBM Sterling Connect:Enterprise HTTP Option is affected by CVE-2013-6327, a cross-frame scripting vulnerability in which input within a frame is improperly validated, allowing a remote attacker to inject arbitrary script or HTML. Affected versions are 1.3.0.2 and 1.4.0.0; remediation is to apply ...

4.3CVSS5.7AI score0.00931EPSS
Exploits1References2Affected Software1
seebug.org
seebug.org
added 2013/12/17 12:0 a.m.24 views

IBM Sterling Connect:Enterprise跨站脚本漏洞

CVE ID:CVE-2013-6327 IBM Sterling Connect是一款点到点文件传输软件,可实现企业内和企业间的大容量、安全可靠的文件交付。 IBM Sterling Connect:Enterprise存在一个未明跨站脚本漏洞,允许远程攻击者利用漏洞注入恶意脚本或HTML代码,当恶意数据被查看时可获取敏感信息或者劫持用户会话。 0 IBM Sterling Connect:Enterprise 1.3.0.2 IBM Sterling Connect:Enterprise 1.4.0.0. 厂商补丁: IBM ----- IBM Sterling Connect...

4.3CVSS6.6AI score0.00931EPSS
Exploits1
Rows per page
Query Builder