CVE-2005-2022

iPlanet and Sun ONE Messaging Server - Cross-Site Scripting in Webmail

Title source: llm
STIX 2.1

Description

Unknown vulnerability in Webmail in iPlanet Messaging Server 5.2 Patch 1 and Sun ONE Messaging Server 6.2 allows remote attackers to execute arbitrary Javascript, possibly due to a cross-site scripting (XSS) vulnerability.

References (2)

Core 2
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/0816
Patch, Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101770-1

Scores

EPSS 0.0035
EPSS Percentile 57.4%

Details

CWE
CWE-79
Status published
Products (2)
sun/iplanet_messaging_server 5.2
sun/one_messaging_server 6.2
Published Jun 17, 2005
Tracked Since Feb 18, 2026