CVE-2006-5486 Information

Description

Cross-site scripting (XSS) vulnerability in Webmail in Sun Java System Messaging Server 6.0 through 6.2 and iPlanet Messaging Server 5.2 allows remote attackers to execute arbitrary Javascript via crafted messages.

Reference

http://secunia.com/advisories/22575 http://securitytracker.com/id?1017113 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102497-1 http://www.securityfocus.com/bid/20708 http://www.vupen.com/english/advisories/2006/4183 https://exchange.xforce.ibmcloud.com/vulnerabilities/29806