Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 6.5.2 allows remote attackers to inject arbitrary web script or HTML via the (1) BaseTarget or (2) Src parameters.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Lotus_domino | Ibm | 6.5.2 (including) | 6.5.2 (including) |
| Lotus_domino_enterprise_server | Ibm | 6.5.2 (including) | 6.5.2 (including) |
References
- http://secunia.com/advisories/16830
- http://www-1.ibm.com/support/docview.wss?rs=0\u0026uid=swg1LO07849\u0026loc=en_US\u0026cs=utf-8\u0026cc=us\u0026lang=all
- http://www-1.ibm.com/support/docview.wss?uid=swg1LO07850
- http://www.securityfocus.com/bid/14845
- http://www.securityfocus.com/bid/14846
- http://secunia.com/advisories/16830
- http://www-1.ibm.com/support/docview.wss?rs=0\u0026uid=swg1LO07849\u0026loc=en_US\u0026cs=utf-8\u0026cc=us\u0026lang=all
- http://www-1.ibm.com/support/docview.wss?uid=swg1LO07850
- http://www.securityfocus.com/bid/14845
- http://www.securityfocus.com/bid/14846