Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2268

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2009-2268
Last Modified 25 May 2010 01:45:29
Published 01 Jul 2009 09:00:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2009-2268

Summary

Cross-site scripting (XSS) vulnerability in the Cross-Domain Controller (CDC) servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Sun Java System Access Manager 6

  • Sun Java System Access Manager 6.0 2005q1

  • Sun Java System Access Manager 7 2005q4

  • Sun Java System Access Manager 7.0

  • Sun Java System Access Manager 7.0 2005q4

  • Sun Java System Access Manager 7.1


References

SUNALERT - 256568

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1

SUNALERT - 1020343

SECUNIA - 35651


Last Updated: 27 May 2016 10:50:50