| Title |
Livelink ECM UTF-7 Cross Site Scripting Vulnerability |
| Published |
2008-01-31-12:00AM |
| Updated |
2008-01-31-09:17PM |
| Class |
Input Validation Error |
| CVE |
|
| Remote |
Yes |
| Local |
No |
| Credit |
David Kierznowski is credited with the discovery of this vulnerability. |
| Vulnerable |
Open Text Corporation Livelink ECM 9.7
Open Text Corporation Livelink ECM 9.6
Open Text Corporation Livelink ECM 9.5
Open Text Corporation Livelink ECM 9.2
Open Text Corporation Livelink ECM 9.1
Open Text Corporation Livelink ECM 9.0
|
| Not Vulnerable |
Open Text Corporation Livelink ECM 10
|
| Code |
To exploit this issue, an attacker must entice an unsuspecting victim into following a malicious URI. |
| TXT |
 |
