Vulnerability CVE-2014-0870

Vulnerability CVE-2014-0870

Published: 2014-07-07

Description:

	Topic	Author	Date
High	IBM Algorithmics RICOS Multiple severe vulnerabilities	F. Lukavsky	02.07.2014

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
IBM -> Algo credit limits
IBM -> Algorithmics

http://packetstormsecurity.com/files/127304/IBM-Algorithmics-RICOS-Disclosure-XSS-CSRF.html

http://seclists.org/fulldisclosure/2014/Jun/173

http://www-01.ibm.com/support/docview.wss?uid=swg21675881

http://www.securityfocus.com/archive/1/532598/100/0/threaded

https://exchange.xforce.ibmcloud.com/vulnerabilities/90944

https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20140630-0_IBM_Algorithmics_RICOS_multiple_vulnerabilities_v10.txt