Cross-site Scripting Vulnerability Addressed in 6.0.4 and 6.5.2

Technote (FAQ)


Question

IBM Lotus recognized the potential for a cross-site scripting vulnerability to exist under certain circumstances. No customers are known to have been affected by this vulnerability in a production environment.

Answer

This issue was reported to IBM Lotus software Quality Engineering and has been addressed in Domino 6.0.4 and 6.5.2. For earlier releases, this issue can be prevented by creating a full text index for databases that allow public access.

This issue does not affect Domino 5.x servers.



Rate this page:

(0 users)Average rating

Document information


More support for:

Lotus End of Support Products
Lotus Domino Server

Software version:

6.0, 6.5

Operating system(s):

AIX, Linux, Solaris, Windows, i5/OS, z/OS

Reference #:

1171253

Modified date:

2010-02-25

Translate my page

Machine Translation

Content navigation