icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Sun Java System Identity Manager XSS

High

Synopsis

The remote host is vulnerable to a Cross-Site Scripting (XSS) attack.

Description

The remote host is running Sun Java System Identity Manager. The reported version is vulnerable to multiple cross-site scripting (XSS) attacks. An attacker exploiting these flaws would be able to inject script code into the browsers of other clients of the Identity Manager. Successful exploitation could result in the loss of confidential client data.

Solution

Upgrade or patch according to vendor recommendations.