Vigil@nce - IBM Domino: three vulnerabilities of iNotes
January 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of iNotes of IBM
Domino.
– Impacted products: Domino
– Severity: 2/4
– Creation date: 19/12/2013
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in IBM Domino.
An attacker can trigger a Cross Site Scripting in iNotes, in order
to execute JavaScript code in the context of the web site.
[severity:2/4; BID-64445, CVE-2013-4063]
An attacker can trigger a Cross Site Scripting in iNotes, in order
to execute JavaScript code in the context of the web site.
[severity:2/4; BID-64451, CVE-2013-4064]
An attacker can trigger a Cross Site Scripting in iNotes, in order
to execute JavaScript code in the context of the web site.
[severity:2/4; BID-64444, CVE-2013-4065]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/IBM-Domino-three-vulnerabilities-of-iNotes-13967