Content Feed
Subscribe via EmailTechnical DescriptionDefinitely worth getting that FixPack2 on your system ASAP, particularly if your Connections environment is internet-facing.
Multiple vulnerabilities have been identified in IBM Lotus Connections, which could be exploited by attackers to bypass security restrictions or gain knowledge of sensitive information. These issues are caused by input validation and design errors in the Dojo, Community, Homepage, Bookmarks and Blogs components, and other unspecified modules when processing user-supplied data or when connecting to certain web sites, which could allow information disclosure, or cross site scripting and phishing attacks.
Affected Products
IBM Lotus Connections versions prior to 2.5.0 Fix Pack 2 (2.5.0.2)
Solution
Upgrade to IBM Lotus Connections version 2.5.0 Fix Pack 2 (2.5.0.2)
By: Stuart McIntyre | 0 Comments | On: 7 June 2010 14:11:07 | Tags: connections lotus 2.5 fp2 fixpacks