Cross-Site Scripting Vulnerability in Sun Java System Web Server Reverse Proxy Plug-in
CVE-2009-1934

Currently unrated

Key Information:

Vendor
Oracle
Vendor
CVE Published:
5 June 2009

Summary

The Reverse Proxy Plug-in in Sun Java System Web Server 6.1 prior to SP11 is vulnerable to Cross-Site Scripting. This flaw allows remote attackers to inject arbitrary web scripts or HTML through the query string. The vulnerability may be exploited in circumstances that trigger a 502 Gateway error, potentially compromising the security of users interacting with the affected system.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.