2 matches found
CVE-2008-1286
CVE-2008-1286 affects Sun Java Web Console 3.0.2/3.0.3/3.0.4, where remote attackers may bypass access restrictions and determine the existence of files/directories via unknown vectors, compromising confidentiality. Patches referenced in connected advisories include Solaris 8/9/10 updates (e.g., ...
CVE-2008-5550
CVE-2008-5550 is an open redirect vulnerability in Sun Java Web Console, affecting Sun Java Web Console 3.0.2–3.0.5 and Solaris 10. It stems from BeginLogin.jsp (console/faces/jsp/login/BeginLogin.jsp) and allows remote attackers to redirect users to arbitrary sites via the redirect_url parameter...