Lucene search
K

1309 matches found

Ubuntu
Ubuntu
added 2009/09/23 12:28 p.m.68 views

USN-836-1: WebKit vulnerabilities

It was discovered that WebKit did not properly handle certain SVGPathList data structures. If a user were tricked into viewing a malicious website, an attacker could exploit this to execute arbitrary code with the privileges of the user invoking the program. CVE-2009-0945 Several flaws were...

9.3CVSS6AI score0.09322EPSS
Exploits6
RedHat Linux
RedHat Linux
added 2009/08/28 8:57 a.m.2 views

OpenJDK Proxy mechanism information leaks (6801071)

The proxy mechanism implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted 1 applets and 2 Java Web Start applications, which allows remote attackers to hijack web sessions...

7.5CVSS6.2AI score0.04564EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/28 8:57 a.m.3 views

OpenJDK Untrusted applet System properties access (6738524)

The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted applets and 2 Java Web Start applications, which allows context-dependent attackers to obtain sensiti...

5CVSS6.1AI score0.03286EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2009/08/24 12:0 a.m.45 views

RHEL 3 / 4 / 5 : java-1.4.2-bea (RHSA-2008:1043)

java-1.4.2-bea as shipped in Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary, contains security flaws and should not be used. This update has been rated as having important security impact by the Red Hat Security Response Team. Th...

10CVSS6.1AI score0.04614EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2009/08/24 12:0 a.m.52 views

RHEL 3 / 4 / 5 : java-1.4.2-ibm (RHSA-2008:0132)

Updated java-1.4.2-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4 Extras, and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.4.2 SR10 Java release includes the IBM...

9.3CVSS8.2AI score0.16899EPSS
Exploits1References25
Tenable Nessus
Tenable Nessus
added 2009/08/24 12:0 a.m.34 views

RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2008:0790)

Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The IBM 1.5.0 Java release includes the IBM Java 2...

10CVSS8.6AI score0.25727EPSS
Exploits5References15
Tenable Nessus
Tenable Nessus
added 2009/08/24 12:0 a.m.45 views

RHEL 4 / 5 : java-1.5.0-bea (RHSA-2008:1044)

java-1.5.0-bea as shipped in Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 Supplementary, contains security flaws and should not be used. This update has been rated as having important security impact by the Red Hat Security Response Team. The BEA WebLogic JRockit JRE and SDK...

10CVSS8.2AI score0.05043EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2009/08/17 12:0 a.m.31 views

SuSE Security Advisory SUSE-SA:2009:043 (java-1_5_0-sun,java-1_6_0-sun)

The remote host is missing updates announced in advisory SUSE-SA:2009:043. OpenVAS Vulnerability Test $Id: susesa2009043.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:043 java-150-sun,java-160-sun Authors: Thomas Reinke Copyright: Copyright c 200...

10CVSS0.7AI score0.0639EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2009/08/10 12:0 a.m.32 views

openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-1161)

The Sun Java JRE /JDK 6 was updated to Update 15 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

10CVSS5.9AI score0.0639EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2009/08/06 9:27 p.m.6 views

OpenJDK: Files disclosure, arbitrary code execution via "deserializing applets" (6646860)

Unspecified vulnerability in the Java Plug-in in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.219 and earlier; and 1.3.124 and earlier allows remote attackers to access files and execute arbitrary code via unknown vectors...

6.4CVSS6.5AI score0.04519EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 9:14 p.m.5 views

OpenJDK private variable information disclosure (6777487)

The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants read access to private variables with unspecified names, which allows context-dependent attackers to obtain sensitive information via an untrusted 1 applet or 2 application...

5CVSS5.8AI score0.02579EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 9:14 p.m.6 views

OpenJDK Untrusted applet System properties access (6738524)

The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted applets and 2 Java Web Start applications, which allows context-dependent attackers to obtain sensiti...

5CVSS6.1AI score0.03286EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/08/06 9:14 p.m.5 views

OpenJDK JDK13Services grants unnecessary privileges (6777448)

JDK13Services.getProviders in Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, grants full privileges to instances of unspecified object types, which allows context-dependent attackers to bypass intended access restrictions via an untrusted 1 applet or 2 application...

10CVSS5.8AI score0.02839EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 9:14 p.m.4 views

OpenJDK Proxy mechanism information leaks (6801071)

The proxy mechanism implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted 1 applets and 2 Java Web Start applications, which allows remote attackers to hijack web sessions...

7.5CVSS6.2AI score0.04564EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.4 views

OpenJDK Untrusted applet System properties access (6738524)

The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted applets and 2 Java Web Start applications, which allows context-dependent attackers to obtain sensiti...

5CVSS6.1AI score0.03286EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.4 views

JRE applet launcher vulnerability

Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier and JDK and JRE 5.0 Update 19 and earlier; and Java SE for Business in SDK and JRE 1.4.221 and earlier; allows remote attackers to create or modify arbitrary files via vecto...

6.8CVSS6.2AI score0.03645EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.3 views

OpenJDK Proxy mechanism information leaks (6801071)

The proxy mechanism implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted 1 applets and 2 Java Web Start applications, which allows remote attackers to hijack web sessions...

7.5CVSS6.2AI score0.04564EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.4 views

OpenJDK private variable information disclosure (6777487)

The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants read access to private variables with unspecified names, which allows context-dependent attackers to obtain sensitive information via an untrusted 1 applet or 2 application...

5CVSS5.8AI score0.02579EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.5 views

OpenJDK Proxy mechanism information leaks (6801071)

The SOCKS proxy implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted 1 applet or 2 Java Web Start application via unspecified vectors...

5CVSS6.2AI score0.04326EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:38 p.m.6 views

JRE applet launcher vulnerability

Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier and JDK and JRE 5.0 Update 19 and earlier; and Java SE for Business in SDK and JRE 1.4.221 and earlier; allows remote attackers to create or modify arbitrary files via vecto...

6.8CVSS6.2AI score0.03645EPSS
Exploits1References4
Rows per page
Query Builder