The Management Console in BlackBerry Enterprise Server (BES) 12 prior to 12.2 does not properly restrict use of FRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks via a crafted web site, related to a "cross frame scripting" issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blackberry enterprise server 12.1 |
||
blackberry enterprise server 12.0 |