Lucene search
K

2636 matches found

Cvelist
Cvelist
added 2006/12/26 11:0 p.m.55 views

CVE-2006-6737

Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 5 and earlier, Java System Development Kit SDK and JRE 1.4.210 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...

6.1AI score0.02311EPSS
Exploits0References24
CVE
CVE
added 2006/12/26 11:0 p.m.75 views

CVE-2006-6731

CVE-2006-6731 describes multiple buffer overflow vulnerabilities in Sun JDK/JRE 5.0 Update 7 and earlier, J2SE 1.4.2_12 and earlier (1.4.x), and JRE/JDK 1.3.1_18 and earlier. The issues affect Java applets’ ability to read, write, or execute local files, with root causes including (1) integer ove...

9.3CVSS6.8AI score0.03632EPSS
Exploits0References33Affected Software1
NVD
NVD
added 2005/11/16 7:42 a.m.29 views

CVE-2005-3583

1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.208, 1.4.209, and 1.5.005 and possibly other versions allow remote attackers to cause a denial of service JVM unresponsive via a crafted serialized object, such as a font object as demonstrated on JBoss...

7.8CVSS6.7AI score0.02887EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/11/16 7:37 a.m.35 views

CVE-2005-3583

1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.208, 1.4.209, and 1.5.005 and possibly other versions allow remote attackers to cause a denial of service JVM unresponsive via a crafted serialized object, such as a font object as demonstrated on JBoss...

6.7AI score0.02887EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/11/16 7:37 a.m.39 views

CVE-2004-2540

readObject in 1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.0 through 1.4.205 allows remote attackers to cause a denial of service JVM unresponsive via crafted serialized data...

6.4AI score0.02492EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/05/10 4:0 a.m.27 views

CVE-2003-1156

Java Runtime Environment JRE and Software Development Kit SDK 1.4.2 through 1.4.202 allows local users to overwrite arbitrary files via a symlink attack on 1 unpack.log, as created by the unpack program, or 2 .mailcap1 and .mime.types1, as created by the RPM program...

6.5AI score0.00495EPSS
Exploits1References3
Cvelist
Cvelist
added 2005/02/06 5:0 a.m.31 views

CVE-2005-0223

The Software Development Kit SDK and Run Time Environment RTE 1.4.1 and 1.4.2 for Tru64 UNIX allows remote attackers to cause a denial of service Java Virtual Machine hang via object deserialization...

6.7AI score0.01825EPSS
Exploits0References1
NVD
NVD
added 2004/12/31 5:0 a.m.33 views

CVE-2004-2540

readObject in 1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.0 through 1.4.205 allows remote attackers to cause a denial of service JVM unresponsive via crafted serialized data...

5CVSS6.4AI score0.02492EPSS
Exploits0References4
NVD
NVD
added 2003/12/31 5:0 a.m.19 views

CVE-2003-1156

Java Runtime Environment JRE and Software Development Kit SDK 1.4.2 through 1.4.202 allows local users to overwrite arbitrary files via a symlink attack on 1 unpack.log, as created by the unpack program, or 2 .mailcap1 and .mime.types1, as created by the RPM program...

4.6CVSS6.5AI score0.00495EPSS
Exploits1References3
securityvulns
securityvulns
added 2003/11/03 12:0 a.m.51 views

Multiple jre/jdk installation symbolic link bugs

No description provided...

1.4AI score
Exploits0References1Affected Software2
securityvulns
securityvulns
added 2001/03/29 12:0 a.m.38 views

CHINANSL Security Advisory(CSA-200106)

Topic: JavaServer Web Dev KitJSWDK1.0.1 for win2000 Directory traversal Vulnerability vulnerable: Microsoft Win2000 ЎЎЎЎ+JSWDK1.0.1 maybe for other operating system also. discussion: A security vulnerability has been found in Windows NT/2000 systems that have JSWDK 1.0.1 installed.The vulnerabili...

0.9AI score
Exploits0
CVE
CVE
added 2001/01/22 5:0 a.m.68 views

CVE-2000-1099

CVE-2000-1099 affects the Java Runtime Environment in JDK 1.2.2_05 and earlier . The vulnerability allows an untrusted Java class to call into a disallowed class, potentially allowing sandbox escape and unauthorized activities. The available documents do not provide a specific patch version or re...

5.1CVSS6.9AI score0.01965EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2001/01/09 5:0 a.m.31 views

CVE-2000-1099

Java Runtime Environment in Java Development Kit JDK 1.2.205 and earlier can allow an untrusted Java class to call into a disallowed class, which could allow an attacker to escape the Java sandbox and conduct unauthorized activities...

5.1CVSS6.5AI score0.01965EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2000/08/29 12:0 a.m.34 views

WDK_v1.0.vuln.txt

../ bugs in the Java Web server Development kit built in servlet engine http://localhost:8080/../../../../etc/passwd below is my version info. JavaServertm WDK v1.0 EA elguapo@localhost elguapo$ telnet localhost 8080 Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^'...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 1996/03/01 12:0 a.m.6 views

PT-1996-1030 · Oracle +1 · Java Applet Security Manager +2

Name of the Vulnerable Software and Affected Versions: Netscape Navigator version 2.0 Java Developer's Kit version 1.0 Description: The issue concerns the Java Applet Security Manager implementation, which allows an applet to connect to arbitrary hosts. Recommendations: For Netscape Navigator...

7.5CVSS6.7AI score0.01547EPSS
Exploits0References2
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.13 views

Microsoft StreamInsight 1.2 (KB2587551)

This update is the Microsoft StreamInsight 1.2 release. It is installed side by side with your existing StreamInsight installation. It contains the SDK to develop applications and adapters, runtime libraries, and the event flow debugger. Read the Installation and Programming Considerations sectio...

2.2AI score
Exploits0
Rows per page
Query Builder