Security Bulletin: Open Redirect and Cross-Site Scripting Vulnerabilities in Administration Client for ASF Help System (CVE-2012-2159, CVE-2012-2161)
Administration Client for ASF bundles the IBM Eclipse Help System (IEHS) which has two known security vulnerabilities.
CVE(s): CVE-2012-2159, CVE-2012-2161
Affected product(s): Administration Client for ASF running on Microsoft Windows.
Affected version(s): 1.0
Refer to the following reference URLs for remediation and additional vulnerability details.
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21611767
X-Force Database: http://xforce.iss.net/xforce/xfdb/74832
X-Force Database: http://xforce.iss.net/xforce/xfdb/74833