Lucene search

Ubuntu.comUB:CVE-2013-0464

HistoryJun 03, 2013 - 12:00 a.m.

CVE-2013-0464

2013-06-0300:00:00

ubuntu.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

64.8%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in IBM Eclipse Help
System (IEHS) 3.4.3 and 3.6.2, as used in IBM SPSS Data Collection 6.0,
6.0.1, and 7.0, allow remote attackers to inject arbitrary web script or
HTML via a crafted URL.

Notes

Author	Note
seth-arnold	I’m not confident this vulnerability affects our package; further investigation is needed.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarcheclipse< anyUNKNOWN
ubuntu16.04noarcheclipse< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	eclipse	< any	UNKNOWN
ubuntu	16.04	noarch	eclipse	< any	UNKNOWN

References

www-01.ibm.com/support/docview.wss?uid=swg21637954

xforce.iss.net/xforce/xfdb/81060

launchpad.net/bugs/cve/CVE-2013-0464

nvd.nist.gov/vuln/detail/CVE-2013-0464

security-tracker.debian.org/tracker/CVE-2013-0464

www.cve.org/CVERecord?id=CVE-2013-0464

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

64.8%

JSON

Related for UB:CVE-2013-0464