Cross-Site Scripting Vulnerabilities in Sun Java System Access Manager Administration Console
CVE-2008-1204
Currently unrated
Summary
The Administration Console of Sun Java System Access Manager versions 7.1 and 7 2005Q4 has multiple cross-site scripting (XSS) vulnerabilities. These flaws allow remote attackers to inject arbitrary web scripts or HTML, potentially compromising user data and sessions. The vulnerabilities are specifically related to the Help and Version windows within the console, which can be exploited through unspecified vectors, making it essential for organizations to implement security measures and updates.
References
Timeline
Vulnerability published
Vulnerability Reserved