Lucene search
K

62 matches found

Prion
Prion
added 2013/02/02 12:55 a.m.18 views

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs...

7.6CVSS6.2AI score0.0671EPSS
Exploits0References14Affected Software2
OpenVAS
OpenVAS
added 2012/09/03 12:0 a.m.43 views

Oracle Java SE JRE AWT Component Unspecified Vulnerability - Windows

Oracle Java SE JRE is prone to an unspecified vulnerability. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

9.5AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2012/09/03 12:0 a.m.42 views

CVE-2012-1682

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not...

10CVSS7.2AI score0.05402EPSS
Exploits0References2
NVD
NVD
added 2012/08/30 11:55 p.m.26 views

CVE-2012-3136

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-1682...

10CVSS5.6AI score0.0395EPSS
Exploits0References5
CVE
CVE
added 2012/08/30 11:0 p.m.357 views

CVE-2012-0547

CVE-2012-0547 is a Java SE/JRE issue affecting Oracle JRE 7u6 and earlier and 6u34 and earlier. The vulnerability is described as a security-in-depth, AWT-related issue that is not directly exploitable on its own, but can aggravate vulnerabilities that are exploitable when combined with others. A...

8.8AI score0.12471EPSS
Exploits1References19Affected Software2
canvas
canvas
added 2012/08/28 12:55 a.m.60 views

Immunity Canvas: JAVA_FORNAME_GETFIELD

Name| javaforNamegetField ---|--- CVE| CVE-2012-4681 Exploit Pack| CANVAS Description| Java forName/getField Method Invocation Sandbox Bypass Notes| CVE Name: CVE-2012-4681 VENDOR: Sun Notes: There is a method invocation vulnerability using sun.awt.SunToolkit.getField This vulnerability can then ...

10CVSS0.6AI score0.98536EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2012/08/27 12:0 a.m.26 views

Oracle Java SE 7 <= Update 6 Code Execution

Binary data 6554.prm...

10CVSS7.3AI score0.98536EPSS
Exploits10References6
Prion
Prion
added 2012/06/16 9:55 p.m.28 views

Security feature bypass

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier allows remote attackers to affect availability via unknown vectors related to Security...

5CVSS7.9AI score0.04262EPSS
Exploits0References23Affected Software2
Tenable Nessus
Tenable Nessus
added 2011/11/09 12:0 a.m.265 views

Mac OS X : Java for Mac OS X 10.6 Update 6 (BEAST)

The remote Mac OS X host is running a version of Java for Mac OS X 10.6 that is missing Update 6, which updates the Java version to 1.6.029. It is, therefore, affected by multiple security vulnerabilities, the most serious of which may allow an untrusted Java applet to execute arbitrary code with...

10CVSS8AI score0.96714EPSS
Exploits19References21
RedHat Linux
RedHat Linux
added 2010/06/14 11:19 p.m.4 views

JDK unspecified vulnerability in JavaWS/Plugin component

Unspecified vulnerability in the Java Web Start, Java Plug-in component in Oracle Java SE and Java for Business 6 Update 18 allows remote attackers to affect integrity and availability via unknown vectors...

5.8CVSS5.8AI score0.02879EPSS
Exploits0References4
NVD
NVD
added 2010/01/25 7:30 p.m.27 views

CVE-2010-0388

Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service daemon crash and possibly have unspecified other impact via format string specifiers in the encoding attribute of the XML declaratio...

7.5CVSS7.1AI score0.07184EPSS
Exploits1References3
Prion
Prion
added 2010/01/25 7:30 p.m.16 views

Null pointer dereference

The admin server in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an HTTP request that lacks a method token...

5CVSS7AI score0.01741EPSS
Exploits1References1Affected Software1
exploitpack
exploitpack
added 2010/01/22 12:0 a.m.14 views

Sun Java System Web Server 7.0 Update 6 - admin Server Denial of Service

Sun Java System Web Server 7.0 Update 6 - admin Server Denial of Service source: https://www.securityfocus.com/bid/37909/info Sun Java System Web Server is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the effected application, denying service to legitima...

0.3AI score
Exploits0
NVD
NVD
added 2010/01/08 5:30 p.m.39 views

CVE-2010-0273

Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to execute arbitrary code by sending a process memory address and crafted data to TCP port 80, as demonstrated by the vdsjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no...

7.5CVSS7.5AI score0.03573EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/12/04 12:0 a.m.45 views

Mac OS X : Java for Mac OS X 10.5 Update 6

The remote Mac OS X host is running a version of Java for Mac OS X 10.5 that is missing Update 6. The remote version of this software contains several security vulnerabilities, including some that may allow untrusted Java applets to obtain elevated privileges and lead to execution of arbitrary co...

9.3CVSS5.8AI score0.73376EPSS
Exploits24References17
OpenVAS
OpenVAS
added 2009/11/12 12:0 a.m.23 views

Sun Java System Web Server Buffer Overflow Vulnerability - Windows

Sun Java Web Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.1AI score0.02454EPSS
Exploits0References5
Prion
Prion
added 2009/11/05 4:30 p.m.20 views

Buffer overflow

Buffer overflow in Sun Java System Web Server 7.0 Update 6 has unspecified impact and remote attack vectors, as demonstrated by the vdsjws module in VulnDisco Pack Professional 8.12. NOTE: as of 20091105, this disclosure has no actionable information. However, because the VulnDisco Pack author is...

9.3CVSS7.4AI score0.02454EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2009/11/05 4:0 p.m.33 views

CVE-2009-3878

Buffer overflow in Sun Java System Web Server 7.0 Update 6 has unspecified impact and remote attack vectors, as demonstrated by the vdsjws module in VulnDisco Pack Professional 8.12. NOTE: as of 20091105, this disclosure has no actionable information. However, because the VulnDisco Pack author is...

6.8AI score0.02454EPSS
Exploits0References7
seebug.org
seebug.org
added 2009/10/28 12:0 a.m.15 views

Sun Java System Web Server未明远程缓冲区溢出漏洞

Bugraq ID: 36813 Sun Java System Web Server是一款基于Java的WEB服务程序。 Sun Java System Web Server存在一个未明安全漏洞,远程攻击者可以利用漏洞进行缓冲区溢出,可导致任意代码执行。 目前没有详细漏洞细节提供。 Sun Java System Web Server 7.0 Update 6 目前没有解决方案提供: http://wwws.sun.com/software/products/websrvr/homewebsrvr.html...

6.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2008/07/09 11:41 p.m.26 views

CVE-2008-3115

Secure Static Versioning in Sun Java JDK and JRE 6 Update 6 and earlier, and 5.0 Update 6 through 15, does not properly prevent execution of applets on older JRE releases, which might allow remote attackers to exploit vulnerabilities in these older releases...

7.5CVSS6.2AI score0.06811EPSS
Exploits0References1
Rows per page
Query Builder