VYPR
Unrated severityNVD Advisory· Published Dec 12, 2008· Updated Jun 16, 2026

CVE-2008-5550

CVE-2008-5550

Description

Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirect_url parameter.

Affected products

9
  • cpe:2.3:a:sun:java_web_console:3.0.2:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:sun:java_web_console:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_web_console:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_web_console:3.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_web_console:3.0.5:*:*:*:*:*:*:*
    • (no CPE)range: 3.0.2 - 3.0.5
  • cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*+ 2 more
    • cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*
    • cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*
    • (no CPE)range: 10
  • cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.