Lucene search
PRIOn knowledge basePRION:CVE-2010-1227HistoryApr 01, 2010 - 10:30 p.m.
Design/Logic Flaw
2010-04-0122:30:00
PRIOn knowledge base
www.prio-n.com
2
Cross-site scripting (XSS) vulnerability in Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via the subject field of a message, as demonstrated by a subject containing an IMG element with a SRC attribute that performs a cross-site request forgery (CSRF) attack involving the cmd and argv parameters to cmd.msc.
Related
cve
cve
CVE-2010-1227
2010-04-01 22:30:00
cvelist
cvelist
CVE-2010-1227
2010-04-01 22:00:00
nvd
nvd
CVE-2010-1227
2010-04-01 22:30:00
nessus
nessus
Solaris 10 (x86) : 122794-36 (deprecated)
2007-04-19 00:00:00
Solaris 10 (sparc) : 122793-36 (deprecated)
2007-04-19 00:00:00
Solaris 9 (x86) : 122794-36
2007-04-19 00:00:00
securityvulns
securityvulns
oracle
oracle
Oracle Critical Patch Update - January 2011
2011-01-18 00:00:00