Home Unlabelled IBM Security Bulletin: IBM TRIRIGA Application Platform is vulnerable to a Cross Site Request Forgery Attack. (CVE-2016-0386)

IBM Security Bulletin: IBM TRIRIGA Application Platform is vulnerable to a Cross Site Request Forgery Attack. (CVE-2016-0386)

By
Wednesday, June 01, 2016
Read
Add Comment

IBM TRIRIGA is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading an authenticated user to visit a malicious Web site, a remote attacker could send a malformed HTTP request. An attacker could exploit this vulnerability to perform cross-site scripting attacks, Web cache poisoning, and other malicious activities.

CVE(s): CVE-2016-0386

Affected product(s) and affected version(s):

The following IBM TRIRIGA Application Platform versions are affected.
· IBM TRIRIGA Application Platform 3.5.
· IBM TRIRIGA Application Platform 3.4.
· IBM TRIRIGA Application Platform 3.3.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1TPZHGI
X-Force Database: http://ift.tt/1TJLNAD



from IBM Product Security Incident Response Team http://ift.tt/1TPZdQW
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us