Payments Director in IBM Financial Transaction Manager (FTM) for ACH Services, Check Services, and Corporate Payment Services (CPS) 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks via a crafted web site.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg1PI64063 | Not Applicable |
http://www-01.ibm.com/support/docview.wss?uid=swg1PI64064 | Not Applicable |
http://www-01.ibm.com/support/docview.wss?uid=swg1PI67537 | Not Applicable |
http://www-01.ibm.com/support/docview.wss?uid=swg21989060 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/92633 | |
http://www-01.ibm.com/support/docview.wss?uid=swg1PI64063 | Not Applicable |
http://www-01.ibm.com/support/docview.wss?uid=swg1PI64064 | Not Applicable |
http://www-01.ibm.com/support/docview.wss?uid=swg1PI67537 | Not Applicable |
http://www-01.ibm.com/support/docview.wss?uid=swg21989060 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/92633 |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
21 Nov 2024, 02:49
Type | Values Removed | Values Added |
---|---|---|
References | () http://www-01.ibm.com/support/docview.wss?uid=swg1PI64063 - Not Applicable | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg1PI64064 - Not Applicable | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg1PI67537 - Not Applicable | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21989060 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/92633 - |
Information
Published : 2016-10-29 01:59
Updated : 2024-11-21 02:49
NVD link : CVE-2016-3060
Mitre link : CVE-2016-3060
CVE.ORG link : CVE-2016-3060
JSON object : View
Products Affected
ibm
- financial_transaction_manager
CWE
CWE-284
Improper Access Control