IBM InfoSphere DataStage is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection.
CVE(s): CVE-2016-9000
Affected product(s) and affected version(s):
The following products, running on all supported platforms, are affected:
IBM InfoSphere DataStage: versions 8.7, 9.1, 11.3, and 11.5
IBM InfoSphere Information Server on Cloud: version 11.5
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2iVCHIG
X-Force Database: http://ift.tt/2iUJu3C
from IBM Product Security Incident Response Team http://ift.tt/2iVPqey
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.