CVE-2004-0742

Name of the Vulnerable Software and Affected Versions Sun Java System Portal Server version 6.2

Description The issue allows remote authenticated users to gain Calendar Server privileges and modify Calendar data. This is achieved by changing the display options to a non-default view.

Recommendations For Sun Java System Portal Server version 6.2, consider restricting access to the display options feature to prevent unauthorized modification of Calendar data. As a temporary workaround, limit the ability of remote authenticated users to change display options to a non-default view until a fix is available.