Intrusion Prevention

IBM.Lotus.Connections.Name.XSS

Description

This indicates an attack attempt against a Cross Site Scripting vulnerability in IBM Lotus Connections.
The vulnerability is caused by an error when the vulnerable software handles a malicious "name" parameter. It allows a remote attacker to execute arbitrary scripts via sending a crafted web request.

Affected Products

IBM Lotus Connections 2.0.1

Impact

System Compromise.

Recommended Actions

Apply the patch available from the vendor.

CVE References

CVE-2009-3469