Sun Java Web Console BeginLogin.jsp redirect_url Parameter URI Redirection
Medium Nessus Plugin ID 17725
SynopsisThe remote web server has a URI redirection vulnerability.
DescriptionThe version of Sun Java Web Console running on the remote host may have a URI redirection vulnerability. An attacker could exploit this by tricking a user into requesting a specially crafted URL, which would redirect the user to an arbitrary website. This could result in further attacks (e.g. phishing).
SolutionApply the relevant patch referenced in Sun Alert 243786.