Cross-site scripting (XSS) vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.6 SP11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309.
https://exchange.xforce.ibmcloud.com/vulnerabilities/43976
http://www.vupen.com/english/advisories/2007/4313
http://www.securityfocus.com/bid/26978
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103002-1
http://secunia.com/advisories/28216
http://secunia.com/advisories/28186
http://docs.sun.com/source/820-3637-10/relnotes36sp11_unix.html#wp19247