Security Bulletin: Open redirect and cross-site scripting vulnerabilities in the IBM Data Studio help system (CVE-2012-2159, CVE-2012-2161, CVE-2013-0467)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  psirtim psirtmedium
0 Comments | 1,009 Visits
The Eclipse components that display the help content in IBM Data Studio version 3.1 and 3.1.1 are vulnerable to redirect and cross-site scripting attacks.
IBM Data Studio version 3.1 and 3.1.1 running on Microsoft Windows or Linux operating systems.
Refer to the following reference URLs for remediation and additional vulnerability details.