Whole Network AJAX Basics conference E-Commerce Monthly Contest Programming Security

« Access free Ajax programm... | Main | Are we inching closer tow... »

 

Redirect vulnerability reported in Sun Java System Web Server

Filed in archive Security by gautam on August 3, 2007

Sun Java System Web Server vulnerability.jpg
Here is another security threat as vulnerability has been figured out in Sun Java System Web Server which can be exploited for carrying out HTTP header injection and HTTP response splitting attacks and at the same time there is a risk of losing sensitive information.

The reason behind the vulnerability is an unspecified error within the redirect feature which can be exploited in case redirect Server Application Function is set to use the url-prefix parameter coupled with escape parameter being set to no or Error directive uses the url-prefix parameter in the obj.conf file. One needs to apply Web Server 6.1 service packlinks 8 or later and Web Server 7.0 Update 1 or later to counter this problem. Click here for the solution.






Permalink: Redirect vulnerability reported in Sun Java System Web Server
Tags: Sun  Java  System  Web  Server  vulnerability  SunJava  java  java+system 

Trackback: http://www.creative-weblogging.com/cgi-bin/mt-tb.pl/84584

Bookmark this entry:

img Addthis img Ask img Blinklist img del.icio.us img Digg img Fark img Facebook img Google img Lycos img Ma.gnolia Add this page to Mister Wong Mr Wong img Netscape img Netvousz img Newsvine img Reddit img StumbleUpon img Slashdot img Tailrank img Technorati img Wink img Yahoo

Related Entries:

Vulnerability Reported In Sun Java System Products - 08 November 2006

Vulnerability reported in Sun Java System Web Server - 16 March 2007

Vulnerability reported in Java System Directory Server - 03 April 2007

Vulnerability reported in Sun Java System Application Server - 26 July 2007





RSSrss   | See all blog subscribe options
Google google   |   What is RSS?
Yahoo! yahoo
Addthis Subscribe using any feed reader!
Bloglines Bloglines
Newsletter
Grouptivity

Use the search to look for other interesting posts



 

  • Advertise with us

  • Learn more about our advertising options or email advertising - at - creative-weblogging.com or give us a call at +1 (650) 331 4900.


  • Testimonials

  • 'Great looking blog. Good quality posts with useful information.'


  • Other blogs in the same channel in the Creative Weblogging Network







 

Find other popular posts from our other blogs:

On Storage

200GB laptop drives for Q3

1TB of free online storage

Reactive Maintenance

1TB - Portable, LaCie Little Big Disk...

OpenSolaris Storage keeps rolling along

BlogWealth

AOL Woes Hit Bloggers

Tell All About Your New iPhone?

The Ultimate List of CPM Networks

Blog Network Sued

Tips For Getting Blogging Jobs

Nanotechbuzz

And the 2006 nanotech product of the...

Bullet-proof t-shirt uses carbon...

The coming age of nanosensors

Amazing 2008 Beijing Olympics Opening...

Hummer O2 beats nano-cars to win Design...

The VoIP Weblog

FreeCall from Finarea with 36 Free...

magicJack - enjoy cheap VoIP calls with...

VoIP/Broadband Internet Accelerator: A...

Send free SMS to cell phones worldwide...

AT&T and Yahoo Launch Co-Branded...

Googlestack

Common MapReduce misconceptions

Columns versus Rows

Hypertable installation guide.

Open-source alternatives to BigTable

KFS at Quantcast

HackITLinux

Run Linux With Gmail

Mac OS X Dock for Linux

"Photoshop" Linux version

Sony Mylo Built On Qtopia Linux

10 Helpful Linux Commands

About the company | Advertise with us | Disclaimer | Privacy Policy | Refund/Return Policy

All Creative Weblogging sites are built in accordance with the Google Webmaster Guidelines and IAB guidelines.

Tagcloud: AJAX Application Development Awards Basics Business conference E-Commerce Management Mobile Devices mobile phones Monthly Contest Personal Programming Security Service Oriented Architectures Sponsored Posts updates Web Services