|
Description
|
|
A weakness and multiple vulnerabilities have been reported in IBM WebSphere Portal, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, cause a DoS (Denial of Service), and compromise a vulnerable system.
For more information:
SA59995
SA60507
(#2 and #3)
1) Certain unspecified input is not properly verified before being used to redirect users. This can be exploited to redirect a user to an arbitrary website e.g. when a user clicks a specially crafted link to the affected script hosted on a trusted domain.
The weakness and vulnerabilities are reported in versions 8.0.0 through 8.0.0.1.
|
