CVE-2009-3105: XSS
First published: Tue Sep 08 2009(Updated: )
Cross-site scripting (XSS) vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) before 211.241 for Domino 8.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR EZEL7UURYC.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Domino Web Access | =8.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-3105?
The severity of CVE-2009-3105 is classified as medium due to its ability to allow remote attackers to inject arbitrary web scripts or HTML.
How do I fix CVE-2009-3105?
To fix CVE-2009-3105, upgrade your IBM Lotus iNotes to version 8.0.1 or later as it addresses this vulnerability.
What type of vulnerability is CVE-2009-3105?
CVE-2009-3105 is a cross-site scripting (XSS) vulnerability that affects IBM Lotus iNotes.
Which versions of IBM Domino Web Access are affected by CVE-2009-3105?
CVE-2009-3105 affects IBM Domino Web Access version 8.0.1 and earlier.
Who can exploit CVE-2009-3105?
Remote attackers can exploit CVE-2009-3105 to inject arbitrary web scripts or HTML into affected applications.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/weakness
- vendor/ibm
- canonical/ibm domino web access
- version/ibm domino web access/8.0.1