8 matches found
SUSE CVE-2007-3503
The Javadoc tool in Sun JDK 6 and JDK 5.0 Update 11 can generate HTML documentation pages that contain cross-site scripting XSS vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Scientific Linux Security Update : jdk (java) on SL3.x, SL4.x i386/x86_64
NOTE: This combination of rpm's replaces j2sdk-1.4.2 with jdk-1.5.0. So your java will change from version 1.4.2 to 1.5.0. We apologize if this causes any problems, but it needed to be done for security reasons. A flaw in the applet caching mechanism of the Java Runtime Environment JRE did not...
RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2007:0829)
Updated java-1.5.0-ibm packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.5.0 Java release includes the IBM Java 2...
Gentoo Security Advisory GLSA 200709-15 (jrockit-jdk-bin)
The remote host is missing updates announced in advisory GLSA 200709-15. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mac OS X : Java for Mac OS X 10.4 Release 6
The remote Mac OS X 10.4 host is running a version of Java for Mac OS X that is older than release 6. The remote version of this software contains several security vulnerabilities that may allow a rogue Java applet to escalate its privileges and to add or remove arbitrary items from the user's...
Cross site scripting
The javadoc tool in Cosminexus Developer's Kit for Java in Cosminexus 7 and 7.5 can generate HTML documents that contain cross-site scripting XSS vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this is probably the same issue as...
CVE-2007-3503
The Javadoc tool in Sun JDK 6 and JDK 5.0 Update 11 can generate HTML documentation pages that contain cross-site scripting XSS vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2007-3503
The CVE-2007-3503 issue affects Sun JDK 6 and JDK 5.0 Update 11 where the Javadoc tool can generate HTML documentation pages containing cross-site scripting (XSS). A remote attacker could inject arbitrary web script or HTML via unspecified vectors. Supported documents note this as part of broader...