Clickjacking vulnerability in IBM Sterling Secure Proxy versions 3.2.0 - 3.4.1.7

Clickjacking vulnerability in IBM Sterling Secure Proxy versions 3.2.0 - 3.4.1.7

CVE-2013-0518 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 does not refuse to be rendered in different-origin frames, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

Learn more about our Web App Pen Testing.