Vulnerabilities > CVE-2014-5127 - Unspecified vulnerability in III Encore Discovery Solution 4.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Open redirect vulnerability in Innovative Interfaces Encore Discovery Solution 4.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in an unspecified parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://packetstormsecurity.com/files/128013/Encore-Discovery-Solution-4.3-Open-Redirect-Session-Token-In-URL.html
- http://packetstormsecurity.com/files/128013/Encore-Discovery-Solution-4.3-Open-Redirect-Session-Token-In-URL.html
- http://www.securityfocus.com/archive/1/533233/100/0/threaded
- http://www.securityfocus.com/archive/1/533233/100/0/threaded
- http://www.securityfocus.com/bid/69427
- http://www.securityfocus.com/bid/69427
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95568
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95568