Home Unlabelled IBM Security Bulletin: Financial Transaction Manager for Corporate Payment Services: Clickjacking (CVE-2016-3060)

IBM Security Bulletin: Financial Transaction Manager for Corporate Payment Services: Clickjacking (CVE-2016-3060)

By
Monday, October 10, 2016
Read
Add Comment

IBM Payments Director could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim’s click actions and possibly launch further attacks against the victim.

CVE(s): CVE-2016-3060

Affected product(s) and affected version(s):

– FTM for CPS v2.1.1.0, v2.1.1.1, v2.1.1.2, v2.1.1.3

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2e3Ci2k
X-Force Database: http://ift.tt/2bX0yVO



from IBM Product Security Incident Response Team http://ift.tt/2e3BrPh
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us