NVD Vulnerability Detail

CVE-2007-6569

Summary	Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246.
Publication Date	Dec. 29, 2007, 6:46 a.m.
Registration Date	Jan. 29, 2021, 2:25 p.m.
Last Update	March 8, 2011, 12:03 p.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::aix:::::
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::hp_ux:::::
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::sparc:::::
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::windows:::::
cpe:2.3:a:sun:java_system_web_proxy_server:::hp_ux:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::linux:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::sparc:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::windows:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::x86:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_server:6.1::aix:::::
cpe:2.3:a:sun:java_system_web_server:6.1::hp_ux:::::
cpe:2.3:a:sun:java_system_web_server:6.1::linux:::::
cpe:2.3:a:sun:java_system_web_server:6.1::sparc:::::
cpe:2.3:a:sun:java_system_web_server:6.1::windows:::::
cpe:2.3:a:sun:java_system_web_server:6.1::x86:::::
cpe:2.3:a:sun:java_system_web_server:7.0::hp_ux:::::
cpe:2.3:a:sun:java_system_web_server:7.0::linux:::::
cpe:2.3:a:sun:java_system_web_server:7.0::sparc:::::
cpe:2.3:a:sun:java_system_web_server:7.0::windows:::::
cpe:2.3:a:sun:java_system_web_server:7.0::x86:::::

Related information, measures and tools

No	URL	refsource	タグ
1	http://docs.sun.com/app/docs/doc/820-2499/aeaaa?a=view	CONFIRM
2	http://secunia.com/advisories/28186	SECUNIA	Patch
3	http://secunia.com/advisories/28216	SECUNIA
4	http://sunsolve.sun.com/search/document.do?assetkey=1-26-103002-1	SUNALERT	Patch
5	http://www.securityfocus.com/bid/26978	BID	Patch
6	http://www.vupen.com/english/advisories/2007/4313	VUPEN

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::aix:::::
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::hp_ux:::::
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::sparc:::::
cpe:2.3:a:sun:java_system_web_proxy_server:3.6::windows:::::
cpe:2.3:a:sun:java_system_web_proxy_server:::hp_ux:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::linux:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::sparc:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::windows:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_proxy_server:::x86:::::*		4.0.6
cpe:2.3:a:sun:java_system_web_server:6.1::aix:::::
cpe:2.3:a:sun:java_system_web_server:6.1::hp_ux:::::
cpe:2.3:a:sun:java_system_web_server:6.1::linux:::::
cpe:2.3:a:sun:java_system_web_server:6.1::sparc:::::
cpe:2.3:a:sun:java_system_web_server:6.1::windows:::::
cpe:2.3:a:sun:java_system_web_server:6.1::x86:::::
cpe:2.3:a:sun:java_system_web_server:7.0::hp_ux:::::
cpe:2.3:a:sun:java_system_web_server:7.0::linux:::::
cpe:2.3:a:sun:java_system_web_server:7.0::sparc:::::
cpe:2.3:a:sun:java_system_web_server:7.0::windows:::::
cpe:2.3:a:sun:java_system_web_server:7.0::x86:::::