Cross-Site Scripting Vulnerability in Sun Java System Web Server by Sun Microsystems
CVE-2007-6572

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Web Server; Java System Web Proxy Server
Vendor: CVE Published:; 28 December 2007

Summary

A cross-site scripting vulnerability exists in Sun Java System Web Server versions 6.1 before SP8 and 7.0 before Update 1. This flaw allows remote attackers to inject arbitrary web scripts or HTML through unspecified vectors, potentially compromising the integrity and security of affected web applications.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/43978

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/26978

vdb-entryx_refsource_BID

http://secunia.com/advisories/28216

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Dec 28, 2007
Vulnerability Reserved
Dec 28, 2007