CVE Vulnerability

CVE-2008-6105

Cross-site scripting (XSS) vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information.

4.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

Scope

References
Link Resource
http://secunia.com/advisories/30433 Vendor Advisory
http://www.securityfocus.com/bid/29625
http://www-1.ibm.com/support/docview.wss?uid=swg1PJ33180 Vendor Advisory
http://www.securitytracker.com/id?1020236
Configurations

Configuration 1

cpe:2.3:a:ibm:workplace_for_business_controls_and_reporting:2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:workplace_web_content_management:6.0:*:*:*:*:*:*:*
Information

Published : 2009-02-10 10:00

Updated : 2009-08-08 05:22

NVD link : CVE-2008-6105

Mitre link : CVE-2008-6105

Products Affected
No products.
CWE
CWE-79