Description
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.0 through 6.3, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly a related issue to CVE-2006-5653.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018106
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102909-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/38146
Scores
EPSS
0.0032
EPSS Percentile
55.2%
Details
Status
published
Products (4)
sun/java_system_messaging_server
6.0
sun/java_system_messaging_server
6.1
sun/java_system_messaging_server
6.2
sun/java_system_messaging_server
6.3
Published
May 30, 2007
Tracked Since
Feb 18, 2026