IBM Integration Bus Manufacturing Pack CVE-2014-4820 Unspecified Cross Site Scripting Vulnerability

Bugtraq ID:	69878
Class:	Input Validation Error
CVE:	CVE-2014-4820
Remote:	Yes
Local:	No
Published:	Sep 16 2014 12:00AM
Updated:	Sep 16 2014 12:00AM
Credit:	IBM
Vulnerable:	IBM Integration Bus Manufacturing Pack 1.0.0.0
Not Vulnerable:

IBM Integration Bus Manufacturing Pack CVE-2014-4820 Unspecified Cross Site Scripting Vulnerability

IBM Integration Bus Manufacturing Pack is prone to an unspecified cross-site scripting vulnerability.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.

IBM Integration Bus Manufacturing Pack CVE-2014-4820 Unspecified Cross Site Scripting Vulnerability

To exploit this issue an attacker must entice an unsuspecting victim to open a malicious URI.