Vulnerability Solutions

The WatchMouse Periodic Vulnerability Scan checks for the vulnerability below. To see the most recently added vulnerability solutions that are scanned by WatchMouse, go to the Vulnerability Solutions overview

Sun Java Web Console 'helpwindow.jsp' Multiple Cross-Site Scripting Vulnerabilities
Category: CGI abuses : XSS	Risk factor: Medium	Added: 2 Jul 2009
Synopsis: The remote web application has multiple cross-site scripting vulnerabilities. Description: The version of Sun Java Web Console running on the remote host has multiple cross-site scripting vulnerabilities in 'helpwindow.jsp'. A remote attacker could exploit these to trick a user into executing arbitrary HTML or script code in the context of the web server. This version reportedly has other cross-site scripting vulnerabilities in a different help file, though Scanner did not check for those issues. See also: http://sunsolve.sun.com/search/document.do?assetkey=1-66-262428-1 Solution: Apply the relevant patch referenced in the vendor's advisory. Risk factor: Medium / CVSS Base Score : 4.3 (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)