Cross-site scripting (XSS) vulnerability in the chat client in IBM Lotus Sametime 7.5 and 7.5.1 allows user-assisted remote malicious users to inject arbitrary web script or HTML via a crafted message, which triggers code execution after a mouseover event initiated by the victim.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm lotus sametime 7.5 |
||
ibm lotus sametime 7.5.1 |