Vulnerability Description
Cross-site scripting (XSS) vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) before 211.241 for Domino 8.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR EZEL7UURYC.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Domino Web Access | 8.0.1 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/36626Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27016745Vendor Advisory
- http://www.securityfocus.com/bid/36292
- http://www.vupen.com/english/advisories/2009/2557Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53086
- http://secunia.com/advisories/36626Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27016745Vendor Advisory
- http://www.securityfocus.com/bid/36292
- http://www.vupen.com/english/advisories/2009/2557Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53086
FAQ
What is CVE-2009-3105?
CVE-2009-3105 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) before 211.241 for Domino 8.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecifi...
How severe is CVE-2009-3105?
CVE-2009-3105 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3105?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Domino Web Access.