CVE-2009-2283

Name of the Vulnerable Software and Affected Versions Sun Java Web Console versions 3.0.2 through 3.0.5 Sun Java Web Console in Solaris 10 (affected versions not specified)

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Recommendations For Sun Java Web Console versions 3.0.2 through 3.0.5, update to a version outside of this range to mitigate the risk. For Sun Java Web Console in Solaris 10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.