PT-2007-2084 · Sun · Sun Java System Access Manager
Published
2007-01-31
·
Updated
2017-07-29
·
CVE-2007-0628
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Sun Java System Access Manager versions 6.1 through 7.0
Description
The issue allows remote attackers to inject arbitrary web script or HTML via the
goto or gx-charset parameter.Recommendations
For Sun Java System Access Manager versions 6.1 through 7.0, update to a version released after 20070129 to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sun Java System Access Manager