CA SiteMinder allows remote malicious users to bypass cross-site scripting (XSS) protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun j2ee |
||
broadcom siteminder |