发布日期:2013-12-12
更新日期:2013-12-17受影响系统:
IBM WebSphere Service Registry and Repository 8.0
IBM WebSphere Service Registry and Repository 7.5
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 64301
CVE(CAN) ID: CVE-2013-6721IBM WebSphere Service Registry and Repository是服务架构内使用的服务注册中心。IBM WebSphere Service Registry and Repository 7.5 - 7.5.0.3、8.0 - 8.0.0.2版本在实现上存在HTML注入漏洞,成功利用后可造成在受影响应用上下文中执行任意HTML及脚本代码。<*来源:IBM (ncsupp@ca.ibm.com)
链接:http://www-01.ibm.com/support/docview.wss?uid=swg21659623
*>建议:
--------------------------------------------------------------------------------
厂商补丁:IBM
---
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:http://www.ibm.com/support/fixcentral/
http://www-01.ibm.com/support/docview.wss?uid=swg24036484Cisco WebEx Training Center Training Registration页面内容欺骗漏洞Cisco WebEx Meeting Center冗长服务器错误响应远程信息泄露漏洞相关资讯 WebSphere
- IBM WebSphere Portal任意文件上传 (09/12/2014 20:46:46)
- Oracle Linux 6.5 x64 + (04/10/2014 12:56:29)
- Websphere环境搭建及应用部署 (12/09/2013 09:28:09)
| - IBM WebSphere Application Server (05/13/2014 15:35:57)
- IBM WebSphere Application Server (01/24/2014 19:47:33)
- IBM WebSphere Commerce 拒绝服务 (09/03/2013 19:42:09)
|
本文评论 查看全部评论 (0)
易网时代-编程资源站