IBM Sterling Connect: Direct is a file-based peer-to-peer file transfer solution from IBM, U.S.A. A clickjacking vulnerability exists in IBM Sterling Connec versions 1.4.1.1 and 1.5.0.2, which stems from a program that does not adequately protect HTML iframes. A remote attacker could exploit The vulnerability hijacks the victim’s click action and could launch further attacks against the victim.
CPE | Name | Operator | Version |
---|---|---|---|
ibm ibm sterling connect 1. | eq | 4.1.1 | |
ibm ibm sterling connect 1. | eq | 5.0.2 |