Cross-Site Scripting Vulnerability in CA SiteMinder
CVE-2009-2705

Currently unrated

Key Information:

Vendor: Oracle
Status: J2ee; Siteminder
Vendor: CVE Published:; 11 August 2009

What is CVE-2009-2705?

CA SiteMinder is susceptible to a cross-site scripting (XSS) vulnerability, enabling remote attackers to circumvent established protections for J2EE applications. This can be achieved through crafted requests that utilize non-canonical, 'overlong Unicode' representations in lieu of blacklisted characters, effectively allowing malicious actions that compromise application security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://i8jesus.com/?p=55

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 11, 2009

JSON

Oracle

What is CVE-2009-2705?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.