OSVDB ID: 65164

Title: IBM Lotus Connections Bookmarklet Popup Window Unspecified Force SSL Option Issue

Info

Disclosure

May 31, 2010

Discovery

Unknown

Dates

Exploit

Unknown

Solution

May 31, 2010

Description

Classification

Location: Remote / Network Access
Attack Type: Attack Type Unknown
Impact: Impact Unknown
Solution: Upgrade
Exploit: Exploit Unknown
Disclosure: Vendor Verified
OSVDB: Web Related

Solution

Upgrade to version 2.5.0 Fix Pack 2 (2.5.0.2) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Unknown or Incomplete

References

CVE ID: 2010-2278 (see also: NVD)
Secunia Advisory ID: 40007
Related OSVDB ID: 65160 65161 65162 65163 65165
VUPEN Advisory: ADV-2010-1281
Vendor Specific News/Changelog Entry: http://www-01.ibm.com/support/docview.wss?uid=swg21431472
Other Advisory URL: http://www-1.ibm.com/support/docview.wss?uid=swg1LO47429
http://www-1.ibm.com/support/docview.wss?uid=swg1LO47496
http://www-1.ibm.com/support/docview.wss?uid=swg1LO47501
http://www-1.ibm.com/support/docview.wss?uid=swg1LO47610
http://www-1.ibm.com/support/docview.wss?uid=swg1LO47642
http://www-1.ibm.com/support/docview.wss?uid=swg1LO47669

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/65164