Sun Java Applet2ClassLoader Remote Code Execution Exploit

Exploit for multiple platform in category remote exploits $Id: javacodebasetrust.rb 11983 2011-03-16 05:01:29Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information ...

Mac OS X : Java for Mac OS X 10.5 Update 9

The remote Mac OS X host is running a version of Java for Mac OS X 10.5 that is missing Update 9. As such, it is affected by several security vulnerabilities, the most serious of which may allow an untrusted Java applet to execute arbitrary code with the privileges of the current user outside the...

Sun Java Web Start BasicServiceImpl Remote Code Execution Exploit

$Id: javabasicserviceimpl.rb 10488 2010-09-26 23:55:03Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Gentoo Security Advisory GLSA 200501-16 (Konqueror, kde, kdelibs)

The remote host is missing updates announced in advisory GLSA 200501-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200501-16 (Konqueror, kde, kdelibs)

The remote host is missing updates announced in advisory GLSA 200501-16. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-200806-11 : IBM JDK/JRE: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200806-11 IBM JDK/JRE: Multiple vulnerabilities Because of sharing the same codebase, IBM JDK and JRE are affected by the vulnerabilities mentioned in GLSA 200804-20. Impact : A remote attacker could entice a user to run a special...

GLSA-200804-28 : JRockit: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200804-28 JRockit: Multiple vulnerabilities Because of sharing the same codebase, JRockit is affected by the vulnerabilities mentioned in GLSA 200804-20. Impact : A remote attacker could entice a user to run a specially crafted...

[ GLSA 200804-28 ] JRockit: Multiple vulnerabilities

Gentoo Linux Security Advisory GLSA 200804-28 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

JRockit: Multiple vulnerabilities

Background JRockit is BEA WebLogic's J2SE Development Kit. Description Because of sharing the same codebase, JRockit is affected by the vulnerabilities mentioned in GLSA 200804-20. Impact A remote attacker could entice a user to run a specially crafted applet on a website or start an application ...

Ubuntu 5.04 / 6.06 LTS : openoffice.org-amd64, openoffice.org vulnerabilities (USN-313-1)

It was possible to embed Basic macros in documents in a way that OpenOffice.org would not ask for confirmation about executing them. By tricking a user into opening a malicious document, this could be exploited to run arbitrary Basic code including local file access and modification with the user...

Ubuntu 5.10 : openoffice.org2-amd64, openoffice.org2 vulnerabilities (USN-313-2)

USN-313-1 fixed several vulnerabilities in OpenOffice for Ubuntu 5.04 and Ubuntu 6.06 LTS. This followup advisory provides the corresponding update for Ubuntu 5.10. For reference, these are the details of the original USN : It was possible to embed Basic macros in documents in a way that...

GLSA-200705-23 : Sun JDK/JRE: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200705-23 Sun JDK/JRE: Multiple vulnerabilities An unspecified vulnerability involving an 'incorrect use of system classes' was reported by the Fujitsu security team. Additionally, Chris Evans from the Google Security Team reporte...

Debian DSA-1104-2 : openoffice.org - several vulnerabilities

Loading malformed XML documents can cause buffer overflows in OpenOffice.org, a free office suite, and cause a denial of service or execute arbitrary code. It turned out that the correction in DSA 1104-1 was not sufficient, hence, another update. For completeness please find the original advisory...

USN-313-2: OpenOffice.org vulnerabilities

USN-313-1 fixed several vulnerabilities in OpenOffice for Ubuntu 5.04 and Ubuntu 6.06 LTS. This followup advisory provides the corresponding update for Ubuntu 5.10. For reference, these are the details of the original USN: It was possible to embed Basic macros in documents in a way that...

USN-313-1: OpenOffice.org vulnerabilities

It was possible to embed Basic macros in documents in a way that OpenOffice.org would not ask for confirmation about executing them. By tricking a user into opening a malicious document, this could be exploited to run arbitrary Basic code including local file access and modification with the user...

openoffice.org security update

CentOS Errata and Security Advisory CESA-2006:0573 Updated openoffice.org packages are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that includes desktop applications such as a...

CVE-2006-2199

Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x aka StarOffice up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents...

[SECURITY] [DSA 1104-1] New OpenOffice.org packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1104-1 [email protected] http://www.debian.org/security/ Martin Schulze June 30th, 2006 http://www.debian.org/security/faq -...

DSA-1104 openoffice.org - several vulnerabilities

Bulletin has no description...

CVE-2006-0614

Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 3 and earlier, SDK and JRE 1.3.x through 1.3.116 and 1.4.x through 1.4.208 allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "first issue."...