CPE-F025A014-CFFD-42D2-8668-1832BCD0C55D Detail

CPE Details

IBM Lotus Mobile Connect (LMC) 6.1.3

Vendor

ibm

Product

lotus_mobile_connect

Version

6.1.3

Created

2010-12-23
16h06 +00:00

Modified

2011-12-19
19h00 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:ibm:lotus_mobile_connect:6.1.3:::::::*

Informations

Vendor

ibm

Product

lotus_mobile_connect

Version

6.1.3

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score
CVE-2010-4590	2010-12-22 20h00 +00:00	Cross-site scripting (XSS) vulnerability in HTTP Access Services (HTTP-AS) in the Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	4.3
CVE-2010-4594	2010-12-22 20h00 +00:00	The Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not properly process TCP connection requests, which allows remote attackers to cause a denial of service (memory consumption and HTTP-AS hang) by making many connection requests that trigger "queue size delta errors," related to a "timing hole" issue.	4.3
CVE-2010-4595	2010-12-22 20h00 +00:00	The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 disables the http.device.stanza blacklisting functionality for HTTP Access Services (HTTP-AS), which allows remote attackers to bypass intended access restrictions via an HTTP request that contains a disallowed User-Agent header.	5
CVE-2010-4591	2010-12-22 19h00 +00:00	The Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not delete LTPA tokens in response to use of the iNotes Logoff button, which might allow physically proximate attackers to obtain access via an unattended client, related to a cookie domain mismatch.	4.4
CVE-2010-4592	2010-12-22 19h00 +00:00	The Mobile Network Connections functionality in the Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not properly handle failed attempts at establishing HTTP-TCP sessions, which allows remote attackers to cause a denial of service (memory consumption and daemon crash) by making many TCP connection attempts.	4.3
CVE-2010-4593	2010-12-22 19h00 +00:00	The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 does not properly maintain a certain reference count, which allows remote authenticated users to cause a denial of service (IP address exhaustion) by making invalid attempts to establish sessions with the same VPN ID from multiple devices.	4

IBM Lotus Mobile Connect (LMC) 6.1.3

CPE Details

CPE Name: cpe:2.3:a:ibm:lotus_mobile_connect:6.1.3:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:ibm:lotus_mobile_connect:6.1.3:::::::*