IBM Initiate Master Data Service CVE-2014-4786 Unspecified Frame Injection Vulnerability
BID:69720
CVE-2014-4786 |Info
IBM Initiate Master Data Service CVE-2014-4786 Unspecified Frame Injection Vulnerability
| Bugtraq ID: | 69720 |
| Class: | Input Validation Error |
| CVE: |
CVE-2014-4786 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 08 2014 12:00AM |
| Updated: | Sep 11 2014 12:06AM |
| Credit: | IBM |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
IBM Initiate Master Data Service CVE-2014-4786 Unspecified Frame Injection Vulnerability
IBM Initiate Master Data Service is prone to an unspecified frame-injection vulnerability.
An attacker can exploit this issue to conduct phishing attacks. Successful exploits will allow the attacker to gain unauthorized access or obtain sensitive information.
IBM Initiate Master Data Service is prone to an unspecified frame-injection vulnerability.
An attacker can exploit this issue to conduct phishing attacks. Successful exploits will allow the attacker to gain unauthorized access or obtain sensitive information.
Exploit / POC
IBM Initiate Master Data Service CVE-2014-4786 Unspecified Frame Injection Vulnerability
Attackers can exploit this issue using browser.
Attackers can exploit this issue using browser.
Solution / Fix
IBM Initiate Master Data Service CVE-2014-4786 Unspecified Frame Injection Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
IBM Initiate Master Data Service CVE-2014-4786 Unspecified Frame Injection Vulnerability
References:
References:
- IBM Homepage (IBM)