CVE-2012-0703

Published: Jan 31, 2013Modified: Apr 29, 2026

5.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Exploitability: 8.6 / Impact: 4.9

Source: NVD

Description

Open redirect vulnerability in Information Services Framework (ISF) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Affected (6)

Products: Ibm: Infosphere Information Server, Infosphere Information Server Information Services Framework

Ibm

2 products

Infosphere Information Server

Infosphere Information Server Information Services Framework

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Ibm Infosphere Information Server	Version 8.1
Ibm Infosphere Information Server	Version 8.5.0.1
Ibm Infosphere Information Server	Version 8.5.0.2
Ibm Infosphere Information Server	Version 8.5
Ibm Infosphere Information Server	Version 8.7
Ibm Infosphere Information Server Information Services Framework	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

Source: psirt@us.ibm.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/73289

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/73289

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.