This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 2009-06-05
Product One Web Server Last view 2009-06-05
Version 6.1 Type Application
Update *  
Edition windows  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:sun:one_web_server

Activity : Overall

Related : CVE

  Date Alert Description
4.3 2009-06-05 CVE-2009-1934

Cross-site scripting (XSS) vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')

Open Source Vulnerability Database (OSVDB)

id Description
54872 Sun Java System Web Server Reverse Proxy Plug-in Unspecified XSS

OpenVAS Exploits

id Description
2009-06-19 Name : Sun Java System Web Proxy Server Vulnerabilities (Win)
File : nvt/gb_sun_java_sys_web_serv_xss_vuln_lin.nasl
2009-06-19 Name : Sun Java System Web Proxy Server Vulnerabilities (Win)
File : nvt/gb_sun_java_sys_web_serv_xss_vuln_win.nasl

Nessus® Vulnerability Scanner

id Description
2006-11-06 Name: The remote host is missing Sun Security Patch number 116648-25
File: solaris10_116648.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 116648-25
File: solaris8_116648.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 116648-25
File: solaris9_116648.nasl - Type: ACT_GATHER_INFO