CVE-2008-5115

2008-11-17T19:30:00
ID CVE-2008-5115
Type cve
Reporter NVD
Modified 2017-08-07T21:33:07

Description

Cross-site request forgery (CSRF) vulnerability in Sun Java System Identity Manager 6.0 through 6.0 SP4, 7.0, and 7.1 allows remote attackers to hijack the authentication of administrators for requests that update the password via idm/admin/changeself.jsp.