Open redirect in WebSphere Portal - CVE-2017-1156
Published: May 5, 2017 / Updated: May 5, 2017
Vulnerability identifier: #VU6422
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2017-1156
CWE-ID: CWE-601
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: IBM Corporation
Affected software:
WebSphere Portal
WebSphere Portal
Detailed vulnerability description
The vulnerability allows a remote attacker to perform phishing attacks.
Successful exploitation of the vulnerability will allow to steal valid user's credentials and use the information to conduct further attacks.
The weakness exists due to improper validation of user-supplied data used to redirect visitors to external pages. A remote attacker can create a specially crafted link, trick the victim into following it, spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted and obtain potentially sensitive information.
Successful exploitation of the vulnerability will allow to steal valid user's credentials and use the information to conduct further attacks.
How to mitigate CVE-2017-1156
Install update from vendor's website.