[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IBM Lotus 6.x names.nsf Cross Site Scripting Vulnerability

To: lament@xxxxxxxxxx
Subject: Re: IBM Lotus 6.x names.nsf Cross Site Scripting Vulnerability
From: security curmudgeon <jericho@xxxxxxxxxxxxx>
Date: Mon, 24 May 2010 13:44:45 -0500 (CDT)

Seriously?

This was reported in Jul 2001 by Hiromitsu Takagi, and assigned 
CVE-2001-1161.

http://seclists.org/bugtraq/2001/Jul/22

Would you please:

a) check to see if a vulnerability has been published
b) test current software
c) include the full name of the product you are testing

"IBM Lotus 6.x", presumably IBM Lotus Domino is currently around version 
8.5 or so, per the link you provided:

: http://www-01.ibm.com/software/lotus/

Prev by Date: [ MDVSA-2010:105 ] openoffice.org
Next by Date: [SECURITY] [DSA 2050-1] New kdegraphics packages fix several vulnerabilities
Previous by thread: [ MDVSA-2010:105 ] openoffice.org
Next by thread: [SECURITY] [DSA 2050-1] New kdegraphics packages fix several vulnerabilities
Index(es):
- Date
- Thread