SecuritySpace - CVE-2012-3293

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2012-3293

Description: Cross-site scripting (XSS) vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.4, and 8.5.x before 8.5.0.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving FRAME elements, related to a cross-frame scripting (XFS) issue.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-3293
AIX APAR: PM60839
http://www-01.ibm.com/support/docview.wss?uid=swg1PM60839
BugTraq ID: 55149
http://www.securityfocus.com/bid/55149
XForce ISS Database: was-ac-xss(77179)
https://exchange.xforce.ibmcloud.com/vulnerabilities/77179

CVE ID:	CVE-2012-3293
Description:	Cross-site scripting (XSS) vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.4, and 8.5.x before 8.5.0.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving FRAME elements, related to a cross-frame scripting (XFS) issue.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3293 AIX APAR: PM60839 http://www-01.ibm.com/support/docview.wss?uid=swg1PM60839 BugTraq ID: 55149 http://www.securityfocus.com/bid/55149 XForce ISS Database: was-ac-xss(77179) https://exchange.xforce.ibmcloud.com/vulnerabilities/77179