CVE-2010-2279 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2010-2279

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

The Top Updates implementation in the Homepage component in IBM Lotus Connections 2.5.x before 2.5.0.2, when forced SSL is enabled, uses http for links, which has unspecified impact and remote attack vectors.

Affected Software

Name	Vendor	Start Version	End Version
Lotus_connections	Ibm	2.5.0 (including)	2.5.0 (including)
Lotus_connections	Ibm	2.5.0.1 (including)	2.5.0.1 (including)

References

http://secunia.com/advisories/40007
http://www-01.ibm.com/support/docview.wss?uid=swg21431472
http://www-1.ibm.com/support/docview.wss?uid=swg1LO48325
http://www.vupen.com/english/advisories/2010/1281
http://secunia.com/advisories/40007
http://www-01.ibm.com/support/docview.wss?uid=swg21431472
http://www-1.ibm.com/support/docview.wss?uid=swg1LO48325
http://www.vupen.com/english/advisories/2010/1281