CVE-2006-6276

Loading...

General

Score:6.8/10.0
Severity:Medium
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Published on 04/12/06 - Updated on 29/07/17

Description

HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting (XSS), and poison web caches via unspecified attack vectors.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2006-6276

Exploits

SecurityFocusBID-21371

Relative technologies

VendorProduct
sunjava_system_application_server
sunjava_system_web_proxy_server
sunjava_system_web_server
sunone_application_server

Share this vulnerability with:

Twitter Facebook LinkedIn Mail