CVE-2008-5117

Open redirect vulnerability in Sun Java System Identity Manager 6.0 through 6.0 SP4, 7.0, and 7.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
VendorProductVersion
sunjava_system_identity_manager
6.0
sunjava_system_identity_manager
6.0:sp1
sunjava_system_identity_manager
6.0:sp2
sunjava_system_identity_manager
6.0:sp3
sunjava_system_identity_manager
6.0:sp4
sunjava_system_identity_manager
7.0
sunjava_system_identity_manager
7.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/49768
http://secunia.com/advisories/32606
http://sunsolve.sun.com/search/document.do?assetkey=1-26-243386-1
http://www.securityfocus.com/bid/32262
http://www.securitytracker.com/id?1021170
http://www.vupen.com/english/advisories/2008/3128
https://exchange.xforce.ibmcloud.com/vulnerabilities/46556
http://osvdb.org/49768
http://secunia.com/advisories/32606
http://sunsolve.sun.com/search/document.do?assetkey=1-26-243386-1
http://www.securityfocus.com/bid/32262
http://www.securitytracker.com/id?1021170
http://www.vupen.com/english/advisories/2008/3128
https://exchange.xforce.ibmcloud.com/vulnerabilities/46556