Cross site scripting

2008-03-0800:44:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Administration Console in Sun Java System Access Manager 7.1 and 7 2005Q4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the (1) Help and (2) Version windows.

CPENameOperatorVersion
java_system_access_managereq7.1 windows
java_system_access_managereq7.1 linux
java_system_access_managereq7.02005q4 solarisx86
java_system_access_managereq7.0-2005q4 windows
java_system_access_managereq7.1 solaris-x86
java_system_access_managereq7.02005q4 solarissparc
java_system_access_managereq7.0.0-2005-q4
java_system_access_managereq7.1 solaris-sparc
java_system_access_managereq7.1
java_system_access_managereq7.0 linux

Name	Operator	Version
java_system_access_manager	eq	7.1 windows
java_system_access_manager	eq	7.1 linux
java_system_access_manager	eq	7.02005q4 solarisx86
java_system_access_manager	eq	7.0-2005q4 windows
java_system_access_manager	eq	7.1 solaris-x86
java_system_access_manager	eq	7.02005q4 solarissparc
java_system_access_manager	eq	7.0.0-2005-q4
java_system_access_manager	eq	7.1 solaris-sparc
java_system_access_manager	eq	7.1
java_system_access_manager	eq	7.0 linux