CVE-2009-2704

CA SiteMinder - XSS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-2704. PoCs published by Arshan Dabirsiaghi.

AI-analyzed exploit summary The provided text describes a security-bypass vulnerability in Computer Associates SiteMinder due to improper input validation, allowing XSS attacks via null byte injection. The example URL demonstrates how an attacker could bypass protections to execute arbitrary JavaScript.

Description

CA SiteMinder allows remote attackers to bypass cross-site scripting (XSS) protections for J2EE applications via a request containing a %00 (encoded null byte).

Exploits (1)

exploitdb WRITEUP VERIFIED

by Arshan Dabirsiaghi · textwebappsphp

https://www.exploit-db.com/exploits/33178

View Code ZIP pw:eip

The provided text describes a security-bypass vulnerability in Computer Associates SiteMinder due to improper input validation, allowing XSS attacks via null byte injection. The example URL demonstrates how an attacker could bypass protections to execute arbitrary JavaScript.

Classification

Writeup 80%

Attack Type

Xss

Complexity

Trivial

Reliability

Theoretical

Target: Computer Associates SiteMinder (version unspecified)

No auth needed

Prerequisites: Access to a vulnerable SiteMinder instance

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

URL Repurposed x_refsource_misc

http://i8jesus.com/?p=55

Scores

EPSS 0.0395

EPSS Percentile 89.1%

Details

CWE

CWE-264

Status published

Products (1)

sun/j2ee

Published Aug 11, 2009

Tracked Since Feb 18, 2026