Open Redirect Vulnerability in Sun Java System Identity Manager
CVE-2008-5117

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Identity Manager
Vendor: CVE Published:; 18 November 2008

Summary

The vulnerability allows remote attackers to execute open redirect attacks within Sun Java System Identity Manager versions 6.0 through 6.0 SP4, 7.0, and 7.1. This weakness can be exploited through unspecified vectors, enabling attackers to redirect users to arbitrary and potentially malicious websites. Such attacks may facilitate phishing attempts, compromising user security and sensitive information.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

http://secunia.com/advisories/32606

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/32262

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 18, 2008
Vulnerability Reserved
Nov 17, 2008