Lucene search

[email protected]NVD:CVE-2008-0241

HistoryJan 11, 2008 - 10:46 p.m.

CVE-2008-0241

2008-01-1122:46:00

CWE-20

[email protected]

web.nvd.nist.gov

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

6.7 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

81.0%

JSON

Open redirect vulnerability in /idm/user/login.jsp in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the nextPage parameter.

Affected configurations

NVD

Node

sunjava_system_identity_managerMatch6.0sp1

sunjava_system_identity_managerMatch6.0sp2

sunjava_system_identity_managerMatch6.0sp3

sunjava_system_identity_managerMatch7.0

sunjava_system_identity_managerMatch7.1

References

secunia.com/advisories/28356

securityreason.com/securityalert/3535

sunsolve.sun.com/search/document.do?assetkey=1-26-103180-1

sunsolve.sun.com/search/document.do?assetkey=1-66-200558-1

www.procheckup.com/Vulnerability_PR07-12.php

www.securityfocus.com/archive/1/486076/100/0/threaded

www.securityfocus.com/bid/27214

www.vupen.com/english/advisories/2008/0089

exchange.xforce.ibmcloud.com/vulnerabilities/39590

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

6.7 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

81.0%

JSON

Related for NVD:CVE-2008-0241

prion1 cvelist1 cve1 nessus1