Cross-site request forgery (CSRF) vulnerability in Sun Java System Identity Manager 6.0 through 6.0 SP4, 7.0, and 7.1 allows remote attackers to hijack the authentication of administrators for requests that update the password via idm/admin/changeself.jsp.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-11-18T00:00:00

Updated: 2024-08-07T10:40:17.158Z

Reserved: 2008-11-17T00:00:00

Link: CVE-2008-5115

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2008-11-18T00:30:00.360

Modified: 2018-10-11T20:54:06.617

Link: CVE-2008-5115

cve-icon Redhat

No data.