Back to search
CVE-2012-3309
Published: Aug 29, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Cross-site request forgery (CSRF) vulnerability in the account-creation panel in IBM InfoSphere Guardium 8.2 and earlier, when the CSRF filtering (aka csrf_status) feature is disabled, allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.ibm.com/support/docview.wss?uid=swg21609223
x_refsource_CONFIRM
infosphere-gaurdium-csrf(77745)
vdb-entry
x_refsource_XF
1027455
vdb-entry
x_refsource_SECTRACK
http://en.securitylab.ru/lab/PT-2012-15
x_refsource_MISC
http://en.securitylab.ru/lab/
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now