Cross-Site Scripting Vulnerability in Sun Java System Web Server Reverse Proxy Plug-in
CVE-2009-1934
Currently unrated
Key Information:
- Vendor
- Oracle
- Vendor
- CVE Published:
- 5 June 2009
Summary
The Reverse Proxy Plug-in in Sun Java System Web Server 6.1 prior to SP11 is vulnerable to Cross-Site Scripting. This flaw allows remote attackers to inject arbitrary web scripts or HTML through the query string. The vulnerability may be exploited in circumstances that trigger a 502 Gateway error, potentially compromising the security of users interacting with the affected system.
References
Timeline
Vulnerability published
Vulnerability Reserved