CVE-2009-2283

Published: Jul 1, 2009Modified: Apr 23, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected (23)

Products: Sun: Java Web Console, Solaris

Sun

2 products

Java Web Console

Solaris

Configuration A

23 vulnerable

Vulnerable Software	Affected Versions
Sun Java Web Console	Version 3.0.2
Sun Java Web Console	Version 3.0.2
Sun Java Web Console	Version 3.0.2
Sun Java Web Console	Version 3.0.2
Sun Java Web Console	Version 3.0.2
Sun Java Web Console	Version 3.0.2
Sun Java Web Console	Version 3.0.3
Sun Java Web Console	Version 3.0.3
Sun Java Web Console	Version 3.0.3
Sun Java Web Console	Version 3.0.3
Sun Java Web Console	Version 3.0.3
Sun Java Web Console	Version 3.0.4
Sun Java Web Console	Version 3.0.4
Sun Java Web Console	Version 3.0.4
Sun Java Web Console	Version 3.0.4
Sun Java Web Console	Version 3.0.4
Sun Java Web Console	Version 3.0.5
Sun Java Web Console	Version 3.0.5
Sun Java Web Console	Version 3.0.5
Sun Java Web Console	Version 3.0.5
Sun Java Web Console	Version 3.0.5
Sun Solaris	Version 10
Sun Solaris	Version 10