CVE-2007-5520

Technical details for CVE-2007-5520 are not publicly provided in the supplied documents; the entry remains with unspecified impact and remote vectors. Monitor for updates from official advisories to obtain affected products, versions, and remediation guidance.

CVE-2007-5522

Technical details for CVE-2007-5522 are not publicly provided in the supplied documents. No confirmed affected products, impact, or remediation are specified here. Monitor for updates from official advisories.

CVE-2007-5518

Technical details about CVE-2007-5518 are not publicly provided in the supplied documents. No confirmed affected products, impact, or remediation are described here. Monitor official advisories and vendor notices for updates.

CVE-2007-5521

Technical details about CVE-2007-5521 are not provided in the connected documents. The materials show only a generic description of an unspecified vulnerability in Oracle Containers for J2EE; no product/version-specific exploits, impact, or fixes are included. Monitor for updates.

CVE-2007-5525

Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0.1; Collaboration Suite 10.1.2; and Enterprise Manager 10.1.2 has unknown impact and remote attack vectors, aka AS10...

CVE-2007-5516

Technical details about CVE-2007-5516 are not provided in the supplied documents; no affected versions, impact, or remediation are specified. Monitor for updates from official advisories.

CVE-2007-5524

Technical details for CVE-2007-5524 are not publicly provided in the supplied documents; no specific affected products/versions, root cause, or remediation are disclosed. Monitor for updates.

CVE-2007-5520

Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8 and 9.2.0.8DV, and Oracle Application Server 9.0.4.3, 10.1.3.0.0 up to 10.1.3.3.0, and 10.1.2.0.1 up to 10.1.2.2.0, has unknown impact and remote attack vectors, aka AS05...

CVE-2007-5524

Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS09 or AS9...

CVE-2007-5531

Technical details are not publicly available in the provided documents for CVE-2007-5531. The entry only notes an unspecified vulnerability in Oracle Help for Web with unknown impact and remote vectors. No vendor/version/patch details are given. Monitor for updates.

CVE-2007-5525

Technical details about CVE-2007-5525 are not provided in the supplied documents; the entries describe an unspecified vulnerability without impact or vectors. Monitor for updates.

CVE-2007-5516

Unspecified vulnerability in the Oracle Process Mgmt & Notification component in Oracle Application Server 10.1.3.3 has unknown impact and remote attack vectors, aka AS01...

Oracle 10g Application Server SQL Injection

Binary data 4251.prm...

IBM WebSphere Application Server管理脚本工具未明漏洞

IBM WebSphere Application Server是一款企业级应用服务程序。 IBM WebSphere Application Server多个管理脚本存在输入验证问题，远程攻击者可以利用漏洞获得敏感信息或进行其他各种攻击。 目前没有详细漏洞细节提供。 IBM Websphere Application Server 6.0.2 .9 IBM Websphere Application Server 6.0.2 .7 IBM Websphere Application Server 6.0.2 .5 IBM Websphere Application Server 6.0...

CVE-2007-5483

Unspecified vulnerability in the Administrative Scripting Tools such as wsadmin or ANT in IBM WebSphere Application Server 5.x and 6.0.x has unknown impact and attack vectors...

CVE-2007-5366

The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information web root path via unspecified vectors that trigger an error message, probably related to enabling...

CVE-2007-5366

The CVE concerns Fujitsu Interstage components (Interstage Application Server/Tomcat 4.1-based Servlet Service) and Interstage Apworks/Studio from 7.0 to 9.0.0. Affected: the Tomcat 4.1-based Servlet Service; vulnerability allows remote attackers to obtain the web root path via unspecified vector...

Microsoft Windows URI Handler Command Execution Vulnerability

Description Microsoft Windows XP and Server 2003 with Internet Explorer 7 is prone to a command-execution vulnerability because it fails to properly sanitize input. Successfully exploiting this issue allows remote attackers to execute arbitrary commands in the context of users that follow malicio...

Sun Java系统访问管理器多个安全漏洞

BUGTRAQ ID: 25842 Sun Java系统访问管理器是一个安全单点登录、认证、授权解决方案。 Sun Java系统访问管理器实现上存在多个漏洞，远程攻击者可能利用这些漏洞实现非授权访问。 如果在Sun Java系统应用服务器9.1容器中安装了Sun Java系统访问管理器7.1且重启了容器，就不会显示认证屏。任何基于认证使用容器的应用程序都无法正确运行，因为任何用户都会未经认证便给予访问。这可能导致非特权的非管理用户执行管理任务，例如，管理控制台在访问这个应用时不再提示用户进行认证。因此，任何用户无论是否拥有管理权限，都可以管理应用服务器。 在Sun...

CVE-2007-5153

Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote attackers to execute arbitrary code via unspecified vectors...