Whole Network Most Recent TOP10 AJAX E-Commerce Programming Security

 

Redirect vulnerability reported in Sun Java System Web Server

Filed in archive Security by gautam on August 03, 2007

Sun Java System Web Server vulnerability.jpg
Here is another security threat as vulnerability has been figured out in Sun Java System Web Server which can be exploited for carrying out HTTP header injection and HTTP response splitting attacks and at the same time there is a risk of losing sensitive information.

The reason behind the vulnerability is an unspecified error within the redirect feature which can be exploited in case redirect Server Application Function is set to use the url-prefix parameter coupled with escape parameter being set to no or Error directive uses the url-prefix parameter in the obj.conf file. One needs to apply Web Server 6.1 service packlinks 8 or later and Web Server 7.0 Update 1 or later to counter this problem. Click here for the solution.


Advertisement


Permalink: Redirect vulnerability reported in Sun Java System Web Server
Tags: Sun  Java  System  Web  Server  vulnerability  SunJava  java  java+system 

Trackback: http://www.creative-weblogging.com/cgi-bin/mt-tb.pl/84584



Advertisement


Advertisement


CW ToolbarInstall
RSSrss   | See all blog subscribe options
Googlegoogle   |   What is RSS?
Yahoo!yahoo
AddthisAddThis Feed Button
BloglinesBloglines
Newsletter
Advertisement - Book yours here.

Use our search feature to look for other interesting posts

Just this blog Whole network
Advertisement -
Book yours here..


 
Advertisement
Book yours here.



  • Testimonials

  • 'Great looking blog. Good quality posts with useful information.'
  • Other blogs in the same channel in the Creative Weblogging Network

Advertisement -
Book yours here..






Advertisement - Book yours here..
 
Tagcloud: AJAX Application Development Awards Basics Business conference E-Commerce Management Mobile Devices mobile phones Monthly Contest Personal Programming Security Service Oriented Architectures Sponsored Posts updates Web Services