Summary
The host is running IBM Lotus Domino and is prone to multiple cross site scripting vulnerabilities.
Impact
Successful exploitation will allow remote attackers to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Impact Level: Application
Solution
Upgrade to IBM Lotus Domino version 8.5.3 FP6, 9.0.1 or later, http://www-01.ibm.com/support/docview.wss?uid=swg21647740
Insight
Multiple flaws are due to certain unspecified input related to active content in e-mail messages, ultra-light mode, is not properly sanitised before being used.
Affected
IBM Domino 8.5.x before 8.5.3 FP6 and 9.0.x before 9.0.1
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-4063, CVE-2013-4064, CVE-2013-4065 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Adobe Products Unspecified Cross-Site Scripting Vulnerability June-2011 (Windows)
- Apache CouchDB Web Administration Interface Cross Site Scripting Vulnerability
- Adobe Reader Multiple Vulnerabilities - Aug07 (Linux)
- Apple Safari Multiple Vulnerabilities
- APC PowerChute Business Edition Unspecified Cross Site Scripting Vulnerability