Summary
The host is running IBM Lotus Domino and is prone to multiple cross site scripting vulnerabilities.
Impact
Successful exploitation will allow remote attackers to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Impact Level: Application
Solution
Upgrade to IBM Lotus Domino version 8.5.3 FP6, 9.0.1 or later, http://www-01.ibm.com/support/docview.wss?uid=swg21647740
Insight
Multiple flaws are due to certain unspecified input related to active content in e-mail messages, ultra-light mode, is not properly sanitised before being used.
Affected
IBM Domino 8.5.x before 8.5.3 FP6 and 9.0.x before 9.0.1
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-4063, CVE-2013-4064, CVE-2013-4065 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Apple Safari Webkit Multiple Vulnerabilities - June13 (Mac OS X)
- Apache Tomcat Multiple Vulnerabilities - 01 Mar14
- Apple Safari libxml Denial of Service Vulnerability
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)
- Apple Safari Multiple Memory Corruption Vulnerabilities-01 Aug14 (Mac OS X)