Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 up to and including 3.0.5 and Solaris 10 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the redirect_url parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun java web console 3.0.3 |
||
sun java web console 3.0.4 |
||
sun java web console 3.0.2 |
||
sun solaris 10 |
||
sun java web console 3.0.5 |
||
sun sunos 5.10 |