CVE-2009-2705
11.08.2009, 10:30
CA SiteMinder allows remote attackers to bypass cross-site scripting (XSS) protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters.Enginsight
| Vendor | Product | Version |
|---|---|---|
| sun | j2ee | * |
| broadcom | siteminder | * |
𝑥
= Vulnerable software versions
Common Weakness Enumeration