Skip to main content
This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)
Previous Next
Subject: xss vulnerabilities
Feedback Type: Question
Product Area: iNotes - Full mode
Technical Area: Functionality
Platform: ALL
Release: 8.5
Reproducible: Always

Hi

I submitted a report detailing 5 Cross Site Scripting ( XSS ) vulnerabilities in Lotus iNotes 8.5 about 5 weeks ago, and have not yet received a response from the security team at IBM.

I was wondering whether anyone here regularly submits security concerns to Lotus, and how long it takes for them to acknowledge such reports, or issue fixes.

Can anyone offer advice on how I can speed this process up, or obtain a fix from Lotus before someone does any damage?

Since this is an application layer security issue, it will affect all platforms for the 8,5 release.

Matt


Feedback number WEBB7TY2TF created by ~Ted Chuniter on 07/15/2009

Status: Open
Comments:

xss vulnerabilities (~Ted Chuniter 15.Jul.09)
. . Did you open a PMR? (~Cheryl Opfreet... 15.Jul.09)




Printer-friendly

Search this forum

Member Tools


RSS Feeds

 RSS feedsRSS
All forum posts RSS
All main topics RSS