VYPR
Unrated severityNVD Advisory· Published Oct 24, 2006· Updated Jun 16, 2026

CVE-2006-5486

CVE-2006-5486

Description

Cross-site scripting (XSS) vulnerability in Webmail in Sun Java System Messaging Server 6.0 through 6.2 and iPlanet Messaging Server 5.2 allows remote attackers to execute arbitrary Javascript via crafted messages.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:sun:iplanet_messaging_server:5.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sun:iplanet_messaging_server:5.2:*:*:*:*:*:*:*
    • (no CPE)range: =5.2
  • cpe:2.3:a:sun:java_system_messaging_server:6.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:sun:java_system_messaging_server:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_messaging_server:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_messaging_server:6.2:*:*:*:*:*:*:*
    • (no CPE)range: >=6.0 <=6.2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.