Soluções para vulnerabilidades

O Exame Periódico de Vulnerabilidade do WatchMouse verifica a vulnerabilidade abaixo. Para ver as soluções para vulneralidades adicionadas mais recentemente que são examinadas pelo WatchMouse, acesse a visão geral das Soluções para vulnerabilidades

Categoria: CGI abuses : XSS Fator de risco: Medium Adicionado: 2 Jul 2009
Synopsis:

The remote web application has multiple cross-site scripting vulnerabilities.

Description:

The version of Sun Java Web Console running on the remote host has multiple cross-site scripting vulnerabilities in 'helpwindow.jsp'. A remote attacker could exploit these to trick a user into executing arbitrary HTML or script code in the context of the web server.

This version reportedly has other cross-site scripting vulnerabilities in a different help file, though Scanner did not check for those issues.

See also:

http://sunsolve.sun.com/search/document.do?assetkey=1-66-262428-1

Solution:

Apply the relevant patch referenced in the vendor's advisory.

Risk factor:

Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)