Xxe

An XXE vulnerability in JnlpSupport in Yet Another Java Service Wrapper YAJSW 12.14, as used in NSA Ghidra and other products, allows attackers to exfiltrate data from remote hosts and potentially cause denial-of-service...

Yet Another Java Service Wrapper Code Issue Vulnerability

NSA Ghidra is an open source reverse engineering tool from the National Security Agency NSA. A code issue vulnerability exists in JnlpSupport in Yet Another Java Service Wrapper YAJSW version 12.14 used in NSA Ghidra and other products. A remote attacker could exploit this vulnerability to obtain...

CVE-2020-6958

CVE-2020-6958 describes an XXE vulnerability in JAWS’ JnlpSupport (YAJSW) version 12.14, used by NSA Ghidra and others. The flaw could allow data exfiltration from remote hosts and may cause a denial of service. The provided documents do not include concrete exploit details or remediation steps. ...

Use integrated Windows Auth for Proxy Authentication

Hi, I'm looking to secure access to the internet via an authenticated proxy and would like to avoid username passwords within init strings. https://confluence.atlassian.com/display/JIRAKB/How+to+Configure+an+Outbound+HTTP+and+HTTPS+Proxy+for+JIRA describes a scenario where this may be possible,...

Juniper Network and Security Manager XDB Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Juniper Network and Security Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the XDB service. The issue lies in the ability to connect to the...

CVE-2011-0902

Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified 1 PATH or 2 LDLIBRARYPATH environment variable...

Path traversal

Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified 1 PATH or 2 LDLIBRARYPATH environment variable...

CVE-2011-0902

Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified 1 PATH or 2 LDLIBRARYPATH environment variable...

Sun Microsystems SunScreen Firewall vulnerability-vulnerability warning-the black bar safety net

SunScreen is sun a firewall, which is running in sun OS 3 8 5 8 on the port, you can through a java service program for remote management. This java service contains a large number of buffer overflow vulnerabilities, at least two, and in addition, if an attacker can upload files to the system is...