Lucene search
+L

55 matches found

Ubuntu
Ubuntu
added 2009/08/11 5:45 a.m.87 views

USN-814-1: OpenJDK vulnerabilities

It was discovered that the XML HMAC signature system did not correctly check certain lengths. If an attacker sent a truncated HMAC, it could bypass authentication, leading to potential privilege escalation. CVE-2009-0217 It was discovered that JAR bundles would appear signed if only one element w...

10CVSS6.9AI score0.3038EPSS
Exploits4
securityvulns
securityvulns
added 2009/08/11 12:0 a.m.84 views

[USN-814-1] openjdk-6 vulnerabilities

=========================================================== Ubuntu Security Notice USN-814-1 August 11, 2009 openjdk-6 vulnerabilities CVE-2009-0217, CVE-2009-2475, CVE-2009-2476, CVE-2009-2625, CVE-2009-2670, CVE-2009-2671, CVE-2009-2672, CVE-2009-2673, CVE-2009-2674, CVE-2009-2675, CVE-2009-267...

10CVSS7.8AI score0.3038EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2009/08/10 12:0 a.m.32 views

openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-1161)

The Sun Java JRE /JDK 6 was updated to Update 15 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

10CVSS5.9AI score0.0639EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2009/08/06 9:27 p.m.7 views

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Buffer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...

10CVSS6.5AI score0.08233EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 9:14 p.m.4 views

Java Web Start Buffer unpack200 processing integer overflow (6830335)

Integer overflow in the unpack200 utility in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via unspecified length fields in the header of a Pack200-compressed JAR file, which leads to...

10CVSS6.2AI score0.04324EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.6 views

Java Web Start Buffer unpack200 processing integer overflow (6830335)

Integer overflow in the unpack200 utility in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via unspecified length fields in the header of a Pack200-compressed JAR file, which leads to...

10CVSS6.2AI score0.04324EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:38 p.m.6 views

Java Web Start Buffer unpack200 processing integer overflow (6830335)

Integer overflow in the unpack200 utility in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via unspecified length fields in the header of a Pack200-compressed JAR file, which leads to...

10CVSS6.2AI score0.04324EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/05/07 11:45 a.m.5 views

OpenJDK Jar200 Decompression buffer overflow (6755943)

Integer overflow in the JAR unpacking utility unpack200 in the unpack library unpack.dll in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JA...

9.3CVSS7.7AI score0.0306EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/07 6:36 p.m.8 views

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Integer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...

10CVSS6.5AI score0.07099EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/03/26 4:6 p.m.5 views

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Buffer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...

10CVSS6.5AI score0.08233EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/03/26 4:3 p.m.7 views

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Buffer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...

10CVSS6.5AI score0.08233EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/03/26 4:3 p.m.6 views

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Integer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...

10CVSS6.5AI score0.07099EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/01/13 9:39 p.m.6 views

OpenJDK Jar200 Decompression buffer overflow (6755943)

Integer overflow in the JAR unpacking utility unpack200 in the unpack library unpack.dll in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JA...

9.3CVSS7.7AI score0.0306EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/12/04 3:45 p.m.7 views

OpenJDK Jar200 Decompression buffer overflow (6755943)

Integer overflow in the JAR unpacking utility unpack200 in the unpack library unpack.dll in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JA...

9.3CVSS7.7AI score0.0306EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/12/04 3:45 p.m.7 views

OpenJDK Jar200 Decompression buffer overflow (6755943)

Integer overflow in the JAR unpacking utility unpack200 in the unpack library unpack.dll in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JA...

9.3CVSS7.7AI score0.0306EPSS
Exploits1References4
Rows per page
Query Builder