Cross-Site Scripting Vulnerability in Solaris AnswerBook2 from Sun Microsystems
CVE-2005-0548

Currently unrated

Key Information:

Vendor: Oracle
Status: Solaris Answerbook2
Vendor: CVE Published:; 7 March 2005

What is CVE-2005-0548?

An XSS vulnerability exists in Solaris AnswerBook2 Documentation versions 1.4.4 and earlier, allowing remote attackers to inject arbitrary web scripts or HTML through the Search function. This security flaw can lead to unauthorized access and manipulation of user data, emphasizing the need for immediate remediation.

References

http://marc.info/?l=bugtraq&m=111205163531628&w=2

mailing-listx_refsource_BUGTRAQ

http://sunsolve.sun.com/search/document.do?assetkey=1-77-...

vendor-advisoryx_refsource_SUNALERT

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

Timeline

Vulnerability published
Mar 7, 2005
Vulnerability Reserved
Feb 25, 2005

Oracle

What is CVE-2005-0548?

References

Timeline