The Connect client in IBM Sametime 8.5.2 through 8.5.2.1 and 9.0 before HF1 does not properly restrict unsigned Java plugins, which allows remote attackers to obtain sensitive information via unspecified vectors.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21662725 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/89282 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2014-01-31T02:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2013-11-08T00:00:00
Link: CVE-2013-6727
JSON object: View
NVD Information
Status : Modified
Published: 2014-01-31T06:15:52.997
Modified: 2017-08-29T01:34:00.060
Link: CVE-2013-6727
JSON object: View
Redhat Information
No data.
CWE