Lucene search
K

719 matches found

RedHat Linux
RedHat Linux
added 2013/04/18 6:18 p.m.4 views

OpenJDK: JAXP missing security restrictions (JAXP, 6657673)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX...

10CVSS6.7AI score0.07077EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/03/11 6:48 p.m.4 views

OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...

5CVSS7.3AI score0.04911EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/03/11 6:47 p.m.3 views

OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...

5CVSS7.3AI score0.04911EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2013/03/09 12:0 a.m.49 views

Ubuntu 10.10 : openjdk-6b18 vulnerabilities (USN-1079-3)

USN-1079-2 fixed vulnerabilities in OpenJDK 6 for armel ARM architectures in Ubuntu 9.10 and Ubuntu 10.04 LTS. This update fixes vulnerabilities in OpenJDK 6 for armel ARM architectures for Ubuntu 10.10. It was discovered that untrusted Java applets could create domain name resolution cache...

10CVSS6.4AI score0.2349EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2013/02/22 12:0 a.m.43 views

Sun Java JDK/JRE 5 < Update 16 Multiple Vulnerabilities (Unix)

The version of Sun Java Runtime Environment JRE 5.0 installed on the remote host is affected by multiple security issues : - A vulnerability in the XML processing module of the JRE could allow an untrusted applet/application unauthorized access to certain URL resources 238628. - A buffer overflow...

10CVSS8.5AI score0.25727EPSS
Exploits5References17
RedHat Linux
RedHat Linux
added 2013/02/08 7:20 p.m.3 views

OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...

5CVSS7.3AI score0.04911EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/02/08 7:6 p.m.5 views

OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...

5CVSS7.3AI score0.04911EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/02/08 7:4 p.m.3 views

OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...

5CVSS7.3AI score0.04911EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/02/04 11:51 p.m.10 views

OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...

5CVSS7.3AI score0.04911EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/02/04 11:50 p.m.3 views

OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...

5CVSS7.3AI score0.04911EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2012/12/14 12:0 a.m.270 views

IBM Lotus Symphony < 3.0.1 Fix Pack 2 Multiple Vulnerabilities

The version of IBM Lotus Symphony is a version prior to 3.0.1 Fix Pack 2. Such versions are affected by multiple vulnerabilities : - Flaws exist in the way certain XML components are processed for external entities in ODF documents. These flaws can be utilized to access and inject the content of...

7.5CVSS6.9AI score0.13734EPSS
Exploits4References6
Ubuntu
Ubuntu
added 2012/10/17 1:9 p.m.102 views

USN-1613-1: Python 2.5 vulnerabilities

It was discovered that Python would prepend an empty string to sys.path under certain circumstances. A local attacker with write access to the current working directory could exploit this to execute arbitrary code. CVE-2008-5983 It was discovered that the audioop module did not correctly perform...

6.9CVSS6.8AI score0.14643EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2012/08/27 12:0 a.m.37 views

Debian DSA-2534-1 : postgresql-8.4 - several vulnerabilities

Two vulnerabilities related to XML processing were discovered in PostgreSQL, a SQL database. - CVE-2012-3488 contrib/xml2's xsltprocess can be used to read and write external files and URLs. - CVE-2012-3489 xmlparse fetches external files or URLs to resolve DTD and entity references in XML values...

6.5CVSS7AI score0.03297EPSS
Exploits2References6
Debian
Debian
added 2012/08/25 4:24 p.m.35 views

[SECURITY] [DSA 2534-1] postgresql-8.4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2534-1 [email protected] http://www.debian.org/security/ Florian Weimer August 25, 2012 http://www.debian.org/security/faq -...

6.5CVSS7.3AI score0.03297EPSS
Exploits2
OSV
OSV
added 2012/08/25 12:0 a.m.37 views

DSA-2534-1 postgresql-8.4 - several

Bulletin has no description...

6.5CVSS6.7AI score0.03297EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.39 views

Scientific Linux Security Update : java-1.6.0-openjdk on SL5.x i386/x86_64

A flaw was found in the Swing library. Forged TimerEvents could be used to bypass SecurityManager checks, allowing access to otherwise blocked files and directories. CVE-2010-4465 A flaw was found in the HotSpot component in OpenJDK. Certain bytecode instructions confused the memory management...

10CVSS7.9AI score0.04132EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2012/06/13 1:4 p.m.6 views

OpenJDK: XML parsing infinite loop (JAXP, 7157609)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect availability, related to JAXP...

5CVSS7.2AI score0.0392EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/04/12 12:0 a.m.35 views

LibreOffice < 3.4.6 / 3.5.1 XML External Entity RDF Document Handling Information Disclosure

The remote host is running a version of LibreOffice 3.4.6 / 3.5.1 that has flaws in the way certain XML components are processed for external entities in ODF documents. These flaws can be utilized to access and inject the content of local files into an ODF document without a user's knowledge or...

6.5CVSS6.6AI score0.13682EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2012/01/11 5:43 p.m.8 views

libxml2: Off-by-one error leading to heap-based buffer overflow in encoding

Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow and application crash via a crafted web site...

9.3CVSS8AI score0.0531EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2011/03/07 12:0 a.m.42 views

Ubuntu Update for openjdk-6 vulnerabilities USN-1079-1

Ubuntu Update for Linux kernel vulnerabilities USN-1079-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10791.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for openjdk-6 vulnerabilities USN-1079-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

10CVSS0.9AI score0.2349EPSS
Exploits2References2
Rows per page
Query Builder