9852 matches found
Microsoft Exchange Server EMSMDB2 MAPI Command Remote Denial of Service Vulnerability
Description Microsoft Exchange Server is prone to a remote denial-of-service vulnerability. A successful exploit allows a remote attacker to cause the application to stop responding, denying service to legitimate users. Technologies Affected Avaya Messaging Application Server Avaya Messaging...
Sun Java System Application Server Information Disclosure vulnerability
The host is running Java Application Server and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: secpodsunjavaappservinfodiscvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ Sun Java System Application Server Information Disclosure vulnerability Authors: Sharath S...
Sun Java System/ONE Application Server Detection (HTTP)
HTTP based detection of the Sun Java System/ONE Application Server. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Sun Java System Application Server Information Disclosure vulnerability
Java Application Server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2009-0391
Unspecified vulnerability in IBM WebSphere Application Server WAS 6.0.1 on z/OS allows attackers to read arbitrary files via unknown vectors...
Code injection
Unspecified vulnerability in IBM WebSphere Application Server WAS 6.0.1 on z/OS allows attackers to read arbitrary files via unknown vectors...
CVE-2009-0391
Technical details about CVE-2009-0391 (affected WAS component, root cause, exploit vectors or fixes) are not publicly available in the provided documents. Monitor for updates.
CVE-2009-0391
Unspecified vulnerability in IBM WebSphere Application Server WAS 6.0.1 on z/OS allows attackers to read arbitrary files via unknown vectors...
Sun Java系统应用服务器远程信息泄露漏洞
CVECAN ID: CVE-2009-0278 Sun Java系统应用服务器是与J2EE平台兼容的应用服务器。 Sun Java应用服务器在处理用户请求时存在漏洞,远程攻击者可能利用此漏洞非授权获取WEB-INF及META-INF目录内的配置文件,导致敏感信息泄露。 Sun Java System Application Server 8.2 Sun Java System Application Server 8.1 Sun --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Oracle Application Server Portal 10g Cross Site Scripting Vulnerability
OracleAS Portal is a Web-based application for building and deploying portals. It provides a secure, manageable environment for accessing and interacting with enterprise software services and information resources. A vulnerability has been identified in Oracle Application Server 10g, This could b...
Oracle AS Portal Cross Site Scripting
Oracle AS Portal is a Web-based application for building and deploying portals. It provides a secure, manageable environment for accessing and interacting with enterprise software services and information resources. A vulnerability has been identified in Oracle Application Server 10g, This could ...
CVE-2009-0278
Sun Java System Application Server AS 8.1 and 8.2 allows remote attackers to read the Web Application configuration files in the 1 WEB-INF or 2 META-INF directory via a malformed request...
CVE-2009-0278
CVE-2009-0278 affects Sun Java System Application Server (AS) 8.1 and 8.2. A remote attacker can read Web Application configuration files in WEB-INF or META-INF via a malformed request, exposing sensitive information. Connected sources indicate vendor patches exist (e.g., SunSolve documents such ...
Oracle Application Server - multiple security vulnerabilities
Application: Oracle Application Server Versions Affected: Oracle Application Server 10.1.2.0.2 Vendor URL: http://oracle.com Bugs: Response Splitting XSS Exploits: YES Reported: 21.01.2009 Vendor response: 23.01.2009 Date of Public Advisory: 22.02.2012 Author: Alexandr Polyakov Description Oracle...
[Full-disclosure] Oracle Containers For Java Directory Traversal (OC4J) Oracle Application Server 10g (10.1.3.1.0) Oracle HTTP Server
Server Version Info: Oracle-Application-Server-10g/10.1.3.1.0 Oracle-HTTP-Server PoC: http://OC4J/web-app/foobar/c0aec0ae/WEB-INF/web.xml Related: https://vulners.com/cve/CVE-2008-2938 Explaination: The "c0aec0ae" is interpreted as: ".." because on Java's side: "c0ae" is interpreted as: "uC0AE"...
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-001
Digital Security Research Group DSecRG Advisory DSECRG-09-001 Application: Oracle Application Server SOA Versions Affected: Oracle Application Server SOA version 10.1.3.1.0 Vendor URL: http://www.oracle.com Bugs: XSS Exploits: YES Reported: 10.01.2008 Vendor response: 11.01.2008 Date of Public...
US-CERT Technical Cyber Security Alert TA09-015A -- Oracle Updates for Multiple Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA09-015A Oracle Updates for Multiple Vulnerabilities Original release date: January 15, 2009 Last revised: -- Source: US-CERT Systems Affected Oracle Database 11g, version 11.1.0.6 Oracle...
Oracle Application Server Cross Site Scripting
Digital Security Research Group DSecRG Advisory DSECRG-09-001 Application: Oracle Application Server SOA Versions Affected: Oracle Application Server SOA version 10.1.3.1.0 Vendor URL: http://www.oracle.com Bugs: XSS Exploits: YES Reported: 10.01.2008 Vendor response: 11.01.2008 Date of Public...
CVE-2008-2623
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Application Server 10.1.2.3 allows local users to affect confidentiality via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Application Server 10.1.2.3 allows local users to affect confidentiality via unknown vectors...