IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 147906.
A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Websphere_portal | Ibm | 7.0.0.0 (including) | 7.0.0.0 (including) |
Websphere_portal | Ibm | 7.0.0.1 (including) | 7.0.0.1 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf002 (including) | 7.0.0.1-cf002 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf003 (including) | 7.0.0.1-cf003 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf004 (including) | 7.0.0.1-cf004 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf005 (including) | 7.0.0.1-cf005 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf006 (including) | 7.0.0.1-cf006 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf007 (including) | 7.0.0.1-cf007 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf008 (including) | 7.0.0.1-cf008 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf009 (including) | 7.0.0.1-cf009 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf010 (including) | 7.0.0.1-cf010 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf011 (including) | 7.0.0.1-cf011 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf012 (including) | 7.0.0.1-cf012 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf013 (including) | 7.0.0.1-cf013 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf014 (including) | 7.0.0.1-cf014 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf015 (including) | 7.0.0.1-cf015 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf016 (including) | 7.0.0.1-cf016 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf017 (including) | 7.0.0.1-cf017 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf018 (including) | 7.0.0.1-cf018 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf019 (including) | 7.0.0.1-cf019 (including) |
Websphere_portal | Ibm | 7.0.0.1-cf020 (including) | 7.0.0.1-cf020 (including) |
Websphere_portal | Ibm | 7.0.0.2 (including) | 7.0.0.2 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf011 (including) | 7.0.0.2-cf011 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf012 (including) | 7.0.0.2-cf012 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf013 (including) | 7.0.0.2-cf013 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf014 (including) | 7.0.0.2-cf014 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf015 (including) | 7.0.0.2-cf015 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf016 (including) | 7.0.0.2-cf016 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf017 (including) | 7.0.0.2-cf017 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf018 (including) | 7.0.0.2-cf018 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf019 (including) | 7.0.0.2-cf019 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf020 (including) | 7.0.0.2-cf020 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf021 (including) | 7.0.0.2-cf021 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf022 (including) | 7.0.0.2-cf022 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf023 (including) | 7.0.0.2-cf023 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf024 (including) | 7.0.0.2-cf024 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf025 (including) | 7.0.0.2-cf025 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf026 (including) | 7.0.0.2-cf026 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf027 (including) | 7.0.0.2-cf027 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf028 (including) | 7.0.0.2-cf028 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf029 (including) | 7.0.0.2-cf029 (including) |
Websphere_portal | Ibm | 7.0.0.2-cf030 (including) | 7.0.0.2-cf030 (including) |
Websphere_portal | Ibm | 8.0.0.0 (including) | 8.0.0.0 (including) |
Websphere_portal | Ibm | 8.0.0.0-cf01 (including) | 8.0.0.0-cf01 (including) |
Websphere_portal | Ibm | 8.0.0.0-cf02 (including) | 8.0.0.0-cf02 (including) |
Websphere_portal | Ibm | 8.0.0.0-cf03 (including) | 8.0.0.0-cf03 (including) |
Websphere_portal | Ibm | 8.0.0.0-cf04 (including) | 8.0.0.0-cf04 (including) |
Websphere_portal | Ibm | 8.0.0.0-cf05 (including) | 8.0.0.0-cf05 (including) |
Websphere_portal | Ibm | 8.0.0.0-cf06 (including) | 8.0.0.0-cf06 (including) |
Websphere_portal | Ibm | 8.0.0.1 (including) | 8.0.0.1 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf04 (including) | 8.0.0.1-cf04 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf05 (including) | 8.0.0.1-cf05 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf06 (including) | 8.0.0.1-cf06 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf07 (including) | 8.0.0.1-cf07 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf08 (including) | 8.0.0.1-cf08 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf09 (including) | 8.0.0.1-cf09 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf10 (including) | 8.0.0.1-cf10 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf11 (including) | 8.0.0.1-cf11 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf12 (including) | 8.0.0.1-cf12 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf13 (including) | 8.0.0.1-cf13 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf14 (including) | 8.0.0.1-cf14 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf15 (including) | 8.0.0.1-cf15 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf16 (including) | 8.0.0.1-cf16 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf17 (including) | 8.0.0.1-cf17 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf18 (including) | 8.0.0.1-cf18 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf19 (including) | 8.0.0.1-cf19 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf20 (including) | 8.0.0.1-cf20 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf21 (including) | 8.0.0.1-cf21 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf22 (including) | 8.0.0.1-cf22 (including) |
Websphere_portal | Ibm | 8.0.0.1-cf23 (including) | 8.0.0.1-cf23 (including) |
Websphere_portal | Ibm | 8.5.0.0 (including) | 8.5.0.0 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf01 (including) | 8.5.0.0-cf01 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf02 (including) | 8.5.0.0-cf02 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf03 (including) | 8.5.0.0-cf03 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf04 (including) | 8.5.0.0-cf04 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf05 (including) | 8.5.0.0-cf05 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf06 (including) | 8.5.0.0-cf06 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf07 (including) | 8.5.0.0-cf07 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf08 (including) | 8.5.0.0-cf08 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf09 (including) | 8.5.0.0-cf09 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf10 (including) | 8.5.0.0-cf10 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf11 (including) | 8.5.0.0-cf11 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf12 (including) | 8.5.0.0-cf12 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf13 (including) | 8.5.0.0-cf13 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf14 (including) | 8.5.0.0-cf14 (including) |
Websphere_portal | Ibm | 8.5.0.0-cf15 (including) | 8.5.0.0-cf15 (including) |
Websphere_portal | Ibm | 9.0.0.0 (including) | 9.0.0.0 (including) |
Websphere_portal | Ibm | 9.0.0.0-cf14 (including) | 9.0.0.0-cf14 (including) |
Websphere_portal | Ibm | 9.0.0.0-cf15 (including) | 9.0.0.0-cf15 (including) |