CVE-2008-0241

Open redirect vulnerability in /idm/user/login.jsp in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the nextPage parameter.
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:N/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM