2526 matches found
CVE-2007-5273
CVE-2007-5273 affects Sun JRE/JDK across multiple versions (JDK/JRE 6 Update 2 and earlier; 5.0 Update 12 and earlier; 1.4.2_15 and earlier; 1.3.1_20 and earlier). Root cause described as a multi-pin DNS rebinding issue when using an HTTP proxy: the applet download relies on DNS on the proxy whil...
CVE-2007-5274
Sun Java Runtime Environment JRE in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier, when Firefox or Opera is used, allows remote attackers to violate the security model for JavaScript outbound...
CVE-2007-5240
Visual truncation vulnerability in the Java Runtime Environment in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier allows remote attackers to circumvent display of the untrusted-code warning banner...
Design/Logic Flaw
Visual truncation vulnerability in the Java Runtime Environment in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier allows remote attackers to circumvent display of the untrusted-code warning banner...
CVE-2007-5240
CVE-2007-5240: Visual truncation vulnerability in Sun JDK/JRE (Java Runtime Environment) affecting JRE/JDK 6 Update 2 and earlier, JDK/JRE 5.0 Update 12 and earlier, SDK/JRE 1.4.2_15 and earlier, and SDK/JRE 1.3.1_20 and earlier. An attacker could bypass the display of the untrusted-code warning ...
CVE-2007-5232
Sun Java Runtime Environment JRE in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier, when applet caching is enabled, allows remote attackers to violate the security model for an applet's outbound...
Sun Java JRE vulnerable to unauthorized network access
Overview The Sun Java Runtime Environment JRE contains a vulnerability that may allow unintended access to network resources. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for multiple...
CVE-2007-5019
Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment JRE 1.6.0X allows remote attackers to have an unknown impact via a long argument to the dnsResolve isInstalled.dnsResolve method...
Buffer overflow
Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment JRE 1.6.0X allows remote attackers to have an unknown impact via a long argument to the dnsResolve isInstalled.dnsResolve method...
CVE-2007-5019
Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment JRE 1.6.0X allows remote attackers to have an unknown impact via a long argument to the dnsResolve isInstalled.dnsResolve method...
Sun jre1.6.0_X isInstalled.dnsResolve Function Overflow PoC
No description provided by source. html body center Sun jre1.6.0X isInstalled.dnsResolve function overflow PoCbr Bug founded and code released by Yag Kohha. br Greetz to: br Shinnai, Str0ke br /center object classid="CLSID:5852F5ED-8BF4-11D4-A245-0080C6F74284" id="target"/OBJECT SCRIPT...
Sun jre1.6.0_X isInstalled.dnsResolve Function Overflow PoC
Exploit for multiple platform in category dos / poc =========================================================== Sun jre1.6.0X isInstalled.dnsResolve Function Overflow PoC =========================================================== Sun jre1.6.0X isInstalled.dnsResolve function overflow PoC Bug...
Sun jre1.6.0_X - isInstalled.dnsResolve Function Overflow
Sun jre1.6.0X isInstalled.dnsResolve function overflow PoC Bug founded and code released by Yag Kohha. Greetz to: Shinnai, Str0ke var b = 'XXXX'; while b.length milw0rm.com 2007-09-19...
[slackware-security] java (jre, jdk)
Sun has released security advisories pertaining to both the Java Runtime Environment and the Standard Edition Development Kit. One such advisory may be found here: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1 Updated versions of both the jre and jdk packages are provided whic...
Vulnerability in the Java Runtime Environment May Allow an Untrusted Applet to Circumvent Network Access Restrictions
Unspecified vulnerability in the Java Runtime Environment JRE Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.214 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to...
BMP image parser vulnerability
The BMP image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.119 and earlier, when running on Unix/Linux systems,...
Vulnerability in the Java Runtime Environment May Allow an Untrusted Applet to Circumvent Network Access Restrictions
Unspecified vulnerability in the Java Runtime Environment JRE Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.214 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to...
Critical: Red Hat Security Advisory: java-1.5.0-sun security update
Updated java-1.5.0-sun packages that correct several security issues are available for Red Hat Enterprise Linux 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Java Runtime Environment JRE contains the software and tools that user...
EEYE: Sun Java WebStart JNLP Stack Buffer Overflow Vulnerability
Sun Java WebStart JNLP Stack Buffer Overflow Vulnerability Release Date: July 5, 2007 Date Reported: Jan 19, 2007 Severity: High Remote Code Execution Vendor: Sun Microsystems Systems Affected: Java Runtime Environment 6 Update 1, and earlier Java Runtime Environment 5 Update 11, and earlier...
Sun Java Runtime Environment 1.6 - Web Start .JNLP File Stack Buffer Overflow
Sun Java Runtime Environment 1.6 - Web Start .JNLP File Stack Buffer Overflow source: https://www.securityfocus.com/bid/24832/info Sun Java Runtime Environment is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it...