CVE-2009-2283

CVE-2009-2283 : The Sun Java Web Console 3.0.2–3.0.5 (Sun Solaris 10) contains multiple XSS vulnerabilities in the help jsp scripts (e.g., helpwindow.jsp, masthead.jsp). An attacker could inject arbitrary HTML/script in the user’s browser session. The vectors are not specified in the provided doc...

CVE-2007-1681

CVE-2007-1681 relates to a format-string vulnerability in Sun Java Web Console (Lockhart) specifically in libwebconsole_services.so, affecting Sun Java Web Console versions 2.2.2–2.2.5. The issue allows remote attackers to crash the application, potentially disclose sensitive information, and pos...

CVE-2008-1286

CVE-2008-1286 affects Sun Java Web Console 3.0.2/3.0.3/3.0.4, where remote attackers may bypass access restrictions and determine the existence of files/directories via unknown vectors, compromising confidentiality. Patches referenced in connected advisories include Solaris 8/9/10 updates (e.g., ...

CVE-2008-5550

CVE-2008-5550 is an open redirect vulnerability in Sun Java Web Console, affecting Sun Java Web Console 3.0.2–3.0.5 and Solaris 10. It stems from BeginLogin.jsp (console/faces/jsp/login/BeginLogin.jsp) and allows remote attackers to redirect users to arbitrary sites via the redirect_url parameter...