The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of IBM Domino: multiple vulnerabilities of webadmin.nsf

Synthesis of the vulnerability 

An attacker can use several vulnerabilities of webadmin.nsf of IBM Domino.
Vulnerable systems: Domino.
Severity of this threat: 2/4.
Number of vulnerabilities in this bulletin: 3.
Creation date: 18/11/2013.
Références of this weakness: 1652988, CVE-2013-4050, CVE-2013-4051, CVE-2013-4055, VIGILANCE-VUL-13790.

Description of the vulnerability 

Several vulnerabilities were announced in IBM Domino Web Administrator (webadmin.nsf).

An attacker can trigger a Cross Site Request Forgery, in order to force the victim to perform operations. [severity:2/4; CVE-2013-4050]

An attacker can trigger a Cross Site Scripting, in order to execute JavaScript code in the context of the web site. [severity:2/4; CVE-2013-4051]

An attacker can trigger a Cross Site Scripting, in order to execute JavaScript code in the context of the web site. [severity:2/4; CVE-2013-4055]
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This security alert impacts software or systems such as Domino.

Our Vigil@nce team determined that the severity of this security weakness is medium.

The trust level is of type confirmed by the editor, with an origin of document.

This bulletin is about 3 vulnerabilities.

An attacker with a expert ability can exploit this security announce.

Solutions for this threat 

IBM Domino: workaround for webadmin.nsf.
A workaround is to stop using IBM Domino Web Administrator.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a software vulnerabilities alert. The technology watch team tracks security threats targeting the computer system.