CENTER.HU groups

|

| site-map | e-mail

Archive

Nyomtatóbarát verzió Oldal küldése email-ben

Kapcsolódó linkek:

www.center.hu / Archive / Security news / february, 2005 / Jakarta Lucene Results.jsp cross-site scripting vulnerability

Jakarta Lucene Results.jsp cross-site scripting vulnerabilit

Jakarta Lucene Results.jsp cross-site scripting vulnerabilit

Date Discovered: December 3, 2004
Date Published: February 1, 2005
Last Updated: February 1, 2005

Vulnerability Description

Vulnerability ID:          32124
Discovered by:            vendor
Exploitable Locally:     No
Exploitable Remotely: Yes
Impact:                        Remote attackers can execute arbitrary code.
Root Cause:                 Software Vulnerability

Jakarta Lucene contains a vulnerability that can allow a remote attacker to launch cross-site scripting attacks. The vulnerability is due to insufficient filtering of user-supplied data passed to the Results.jsp. Remote attackers can exploit this vulnerability to execute arbitrary HTML code.

More information on CA Vulnerability Information Center:
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=32124

Computer Associates – the Trusted Source of Security Knowledge

2005-02-02 09:53

Back

IT News:

Chrome comes to Android, but only for the 1 percent
A beta version of Chrome for Android is available to people running Ice Cream Sandwich.
2012-02-09 15:27
Microsoft to roll out wave of native mobile apps for its CRM software
Windows Phone 7, iOS, Android and BlackBerry will all be represented.
2012-02-09 15:26
Apple to sell 60m iPads in 2012 - analyst
2012-02-09 15:24
Cloudyn monitors and optimizes AWS usage
2012-02-07 10:50
Micron appoints COO Durcan as CEO after Appleton´s death
2012-02-07 10:47
Kinect for Xbox 360 Teams With NFL PLAY 60 and Drew Brees to Unveil ´Kinect for Xbox 360 Super Sunday Challenge´
2012-02-05 17:47
Profitero Named IBM Global Entrepreneur of the Year
2012-02-05 17:45
IBM Completes Acquisition of Emptoris to Expand Smarter Commerce Initiative
2012-02-04 12:36
Lease program would offer users new phone every year
2012-02-04 12:31
162,000 sign petition targeting Apple\'s Chinese factory conditions
2012-02-03 14:57

Copyright © CENTER.HU Ltd, 2000-2010. All rights reserved

sitemap | privacy policy |

copyrights | new pages |

terms of purchase | contact us

Member of IVSZ
Member of SZEK
Acer Affinity Gold partner
Dell Registered Partner

OKI System Shinrai Partner
XEROX Viszonteladó
APC megbízható szállító
EATON Authorized Partner
Cisco partner

Symantec Software Partner
ESET Partner
FUJITSU partner
LENOVO Premium Partner
IBM Business Partner

PARTNERS: Computerworld.hu | GameStar.hu | PCWorld.hu | SG.hu | PC Guru | Hitel