First published: Tue May 26 2009(Updated: )
Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to an error page.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sun Java System Portal Server | =6.3.1 | |
Sun Java System Portal Server | =7.1 | |
Sun Java System Portal Server | =7.2 | |
Sun Java System Portal Server | =7.1 | |
Sun Java System Portal Server | =6.3.1 | |
Sun Java System Portal Server | =6.3.1 | |
Sun Java System Portal Server | =7.1 | |
Sun Java System Portal Server | =7.1 | |
Sun Java System Portal Server | =7.2 | |
Sun Java System Portal Server | =6.3.1 | |
Sun Java System Portal Server | =7.2 | |
Sun Java System Portal Server | =7.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2009-1796 is classified as a medium severity vulnerability due to its potential for cross-site scripting attacks.
To fix CVE-2009-1796, update your Sun Java System Portal Server to a version that has addressed this vulnerability.
CVE-2009-1796 affects Sun Java System Portal Server versions 6.3.1, 7.1, and 7.2.
CVE-2009-1796 is a cross-site scripting (XSS) vulnerability allowing remote attackers to inject scripts into web pages.
Yes, CVE-2009-1796 can potentially lead to unauthorized access to user data through malicious script injection.