12 matches found
SUSE CVE-2007-5237
Java Web Start in Sun JDK and JRE 6 Update 2 and earlier does not properly enforce access restrictions for untrusted applications, which allows user-assisted remote attackers to read and modify local files via an untrusted application, aka "two vulnerabilities."...
SLES9: Security update for Sun Java 2
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java2 java2-jre For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5020427 within...
SLES9: Security update for Sun Java 2
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java2 java2-jre For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5020427 within...
VMSA-2008-0010 : Updated Tomcat and Java JRE packages for VMware ESX 3.5 and VirtualCenter
ESX patches and updates for VirtualCenter fix the following application vulnerabilities. a. Tomcat Server Security Update The ESX patches and the updates for VirtualCenter update the Tomcat Server package to version 5.5.26, which addresses multiple security issues that existed in earlier releases...
Gentoo Security Advisory GLSA 200806-11 (ibm-jdk-bin ibm-jre-bin)
The remote host is missing updates announced in advisory GLSA 200806-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200804-20 (sun-jdk, sun-jre-bin, emul-linux-x86-java)
The remote host is missing updates announced in advisory GLSA 200804-20. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-200804-20 : Sun JDK/JRE: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200804-20 Sun JDK/JRE: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Sun Java: Daniel Soeder discovered that a long codebase attribute string in a JNLP file will overflow a stack variable when launched ...
Sun JDK/JRE: Multiple vulnerabilities
Background The Sun Java Development Kit JDK and the Sun Java Runtime Environment JRE provide the Sun Java platform. Description Multiple vulnerabilities have been discovered in Sun Java: Daniel Soeder discovered that a long codebase attribute string in a JNLP file will overflow a stack variable...
SuSE 10 Security Update : Sun Java 1.4.2 (ZYPP Patch Number 4533)
The Sun JAVA JDK 1.4.2 was upgraded to release 16 to fix various bugs, including the following security bugs : http://sunsolve.sun.com/search/document.do?assetkey=1-26-103079-1 - Sun Java Runtime Environment JRE in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and...
openSUSE 10 Security Update : java-1_4_2-sun (java-1_4_2-sun-4536)
The Sun JAVA JDK 1.4.2 was upgraded to release 16 to fix various bugs, including the following security bugs : http://sunsolve.sun.com/search/document.do?assetkey=1-26-103 079-1 CVE-2007-5232: Sun Java Runtime Environment JRE in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and...
CVE-2007-5237
CVE-2007-5237 affects Sun Java Web Start in JDK/JRE 6 Update 2 and earlier. The issue arises from insufficient access restriction enforcement for untrusted applications, enabling user-assisted remote attackers to read and modify local files via an untrusted application. In the provided documents,...
Sun Java JRE / Web Start Multiple Vulnerabilities (103072, 103073, 103078, 103079, 103112)
According to its version number, the Sun Java Runtime Environment JRE and/or Web Start installed on the remote host reportedly is affected by several issues that could be abused to move / copy local files, read or write local files, circumvent network access restrictions, or elevate privileges...