2013-06-28 23:00:00
mitre
PUBLISHED
ServerAdmin/ErrorViewer.jsp in DS3 Authentication Server allow remote attackers to inject arbitrary error-page text via the message parameter.