CVE-2016-8999

Summary

IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows attackers to render a page in quirks mode thereby facilitating an attacker to inject malicious CSS.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationInfoSphere Information Server8.1affected
IBM CorporationInfoSphere Information Server8.5affected
IBM CorporationInfoSphere Information Server8.0affected
IBM CorporationInfoSphere Information Server8.5.0.1affected
IBM CorporationInfoSphere Information Server8.7affected
IBM CorporationInfoSphere Information Server9.1affected
IBM CorporationInfoSphere Information Server8.0.1affected
IBM CorporationInfoSphere Information Server10.0affected
IBM CorporationInfoSphere Information Server11.3affected
IBM CorporationInfoSphere Information Server10affected
IBM CorporationInfoSphere Information Server11.3.0.0affected
IBM CorporationInfoSphere Information Server11.3.1.0affected
IBM CorporationInfoSphere Information Server11.5affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References