CVE-2016-9010

Published: Feb 15, 2017Modified: May 13, 2026

6.1

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Exploitability: 2.8 / Impact: 2.7

Source: NVD

Description

IBM WebSphere Message Broker 9.0 and 10.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM Reference #: 1997906.

Affected (3)

Products: Ibm: Integration Bus, Websphere Message Broker

2 products

Integration Bus

Websphere Message Broker

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Ibm Integration Bus	Version 10.0
Ibm Integration Bus	Version 9.0
Ibm Websphere Message Broker	Version 8.0

Related CWEs

References (4)

http://www.ibm.com/support/docview.wss?uid=swg21997906

Source: psirt@us.ibm.com

PatchVendor Advisory

http://www.securityfocus.com/bid/96279

Source: psirt@us.ibm.com

http://www.ibm.com/support/docview.wss?uid=swg21997906

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/96279

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.