Detections
Analytics
IBM Data Studio 3.1 / 3.1.1 Help System Multiple Vulnerabilities
medium Nessus Plugin ID 65576
Language:
Synopsis
The remote host has an application installed that is affected by multiple vulnerabilities.Description
The remote host has a version of IBM Data Studio installed that is affected by multiple vulnerabilities :- An unspecified open-redirect vulnerability exists in the Eclipse help system components. (CVE-2012-2159)
- An unspecified cross-site scripting vulnerability exists in the Eclipse help system components. (CVE-2012-2161)
- An unspecified vulnerability exists that could allow disclosure of source code on the help system server.
(CVE-2013-0467)
Solution
Upgrade to IBM Data Studio 3.2.See Also
Plugin Details
Severity: Medium
ID: 65576
File Name: ibm_data_studio_help_system_multiple_vulns.nasl
Version: 1.7
Type: local
Agent: windows
Family: Windows
Published: 3/15/2013
Updated: 11/27/2019
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.7
CVSS v2
Risk Factor: Medium
Base Score: 5.8
Temporal Score: 4.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N
CVSS Score Source: CVE-2012-2159
Vulnerability Information
CPE: cpe:/a:ibm:data_studio
Required KB Items: SMB/ibm_data_studio/Version
Exploit Ease: No known exploits are available
Patch Publication Date: 12/7/2012
Vulnerability Publication Date: 6/8/2012