205 matches found
CVE-2010-3564
CVE-2010-3564 is evidenced in connected documents as a Kerberos AP-REQ check vulnerability in OpenJDK/OpenJDK, which could cause a denial of service in the Java VM. Remediation in the sources shown includes OpenJDK/IcedTea updates (e.g., RHSA-2010:0768, ELSA-2010-0768) upgrading to patched OpenJD...
CVE-2010-3564
Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...
OpenJDK kerberos vulnerability (6958060)
Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...
Beanstalkd Detection
Beanstalkd, a messaging server, is running on the remote host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; ifdescription scriptid46883; scriptversion"1.7"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/04/11";...
CVE-2004-2766
Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows remote attackers to obtain unspecified "access" to e-mail via a crafted e-mail message, related to a "session hijacking" issue, a different vulnerability than CVE-2005-2022 and CVE-2006-5486...
CVE-2004-2765
Cross-site scripting XSS vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, a different vulnerability than...
CVE-2004-2766
CVE-2004-2766 affects Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 prior to 5.2hf2.02. A crafted e-mail message can enable remote attackers to obtain unspecified access to e-mail, described as related to a session hijacking issue. The description does not specify the affected pro...
CVE-2004-2766
Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows remote attackers to obtain unspecified "access" to e-mail via a crafted e-mail message, related to a "session hijacking" issue, a different vulnerability than CVE-2005-2022 and CVE-2006-5486...
CVE-2004-2765
Cross-site scripting XSS vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, a different vulnerability than...
CVE-2004-2765
CVE-2004-2765 is an XSS vulnerability in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 prior to 5.2hf2.02. The issue occurs in Webmail when using Internet Explorer, where a crafted e-mail message can cause arbitrary web script/HTML to be injected. Connected sources (Red Hat and NV...
Microsoft IIS 5.0 WebDAV Authentication Bypass Vulnerability
Description Microsoft Internet Information Services IIS is prone to an authentication-bypass vulnerability because it fails to properly enforce access restrictions on certain requests to a site that requires authentication. An attacker can exploit this issue to gain unauthorized access to protect...
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Spreadsheet Buffer Overflow Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 05.14.09 http://labs.idefense.com/intelligence/vulnerabilities/ May 14, 2009 I. BACKGROUND Oracle Corp.'s Outside In Technology is a document conversion engine supporting a large number of binary file formats. Prior to...
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Integer Overflow Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 05.14.09 http://labs.idefense.com/intelligence/vulnerabilities/ May 14, 2009 I. BACKGROUND Oracle Corp.'s Outside In Technology is a document conversion engine supporting a large number of binary file formats. Prior to...
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Integer Overflow Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 05.14.09 http://labs.idefense.com/intelligence/vulnerabilities/ May 14, 2009 I. BACKGROUND Oracle Corp.'s Outside In Technology is a document conversion engine supporting a large number of binary file formats. Prior to...
Solaris 9 (sparc) : 116568-99
Messaging Server 6.1: core patch. Date this patch was last updated by Sun : Feb/09/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 8 (sparc) : 116568-99
Messaging Server 6.1: core patch. Date this patch was last updated by Sun : Feb/09/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 9 (x86) : 116569-99
Messaging Server 6.1x86: core patch. Date this patch was last updated by Sun : Feb/09/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if descriptio...
Solaris 5.4 (sparc) : 104272-13
Solstice X.400 9.0 Messaging Server Patch. Date this patch was last updated by Sun : Dec/07/01 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
Cross site scripting
Cross-site scripting XSS vulnerability in Sun Java System Messaging Server 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2007-2904...
CVE-2008-5098
CVE-2008-5098 is an XSS vulnerability in Sun Java System Messaging Server versions 6.2 and 6.3. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, and it is noted as a different vulnerability from CVE-2007-2904. The connected sources provide the affe...