Sun ONE/iPlanet Messaging Server Webmail MSIE HTML Injection Vulnerability

Sun ONE/iPlanet Messaging Server Webmail is prone to an HTML injection vulnerability. This issue may allow a remote attacker to inject hostile HTML and script code into the session of a Webmail user.

Sun has stated that this issue only affects users who access Webmail with Internet Explorer. This issue appears distinct from the vulnerability described in BID 11972 "Sun ONE/iPlanet Messaging Server Webmail HTML Injection Vulnerability".


 

Privacy Statement
Copyright 2010, SecurityFocus