2636 matches found
CVE-2006-6737
Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 5 and earlier, Java System Development Kit SDK and JRE 1.4.210 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...
CVE-2006-6731
CVE-2006-6731 describes multiple buffer overflow vulnerabilities in Sun JDK/JRE 5.0 Update 7 and earlier, J2SE 1.4.2_12 and earlier (1.4.x), and JRE/JDK 1.3.1_18 and earlier. The issues affect Java applets’ ability to read, write, or execute local files, with root causes including (1) integer ove...
CVE-2005-3583
1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.208, 1.4.209, and 1.5.005 and possibly other versions allow remote attackers to cause a denial of service JVM unresponsive via a crafted serialized object, such as a font object as demonstrated on JBoss...
CVE-2005-3583
1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.208, 1.4.209, and 1.5.005 and possibly other versions allow remote attackers to cause a denial of service JVM unresponsive via a crafted serialized object, such as a font object as demonstrated on JBoss...
CVE-2004-2540
readObject in 1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.0 through 1.4.205 allows remote attackers to cause a denial of service JVM unresponsive via crafted serialized data...
CVE-2003-1156
Java Runtime Environment JRE and Software Development Kit SDK 1.4.2 through 1.4.202 allows local users to overwrite arbitrary files via a symlink attack on 1 unpack.log, as created by the unpack program, or 2 .mailcap1 and .mime.types1, as created by the RPM program...
CVE-2005-0223
The Software Development Kit SDK and Run Time Environment RTE 1.4.1 and 1.4.2 for Tru64 UNIX allows remote attackers to cause a denial of service Java Virtual Machine hang via object deserialization...
CVE-2004-2540
readObject in 1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.0 through 1.4.205 allows remote attackers to cause a denial of service JVM unresponsive via crafted serialized data...
CVE-2003-1156
Java Runtime Environment JRE and Software Development Kit SDK 1.4.2 through 1.4.202 allows local users to overwrite arbitrary files via a symlink attack on 1 unpack.log, as created by the unpack program, or 2 .mailcap1 and .mime.types1, as created by the RPM program...
Multiple jre/jdk installation symbolic link bugs
No description provided...
CHINANSL Security Advisory(CSA-200106)
Topic: JavaServer Web Dev KitJSWDK1.0.1 for win2000 Directory traversal Vulnerability vulnerable: Microsoft Win2000 ЎЎЎЎ+JSWDK1.0.1 maybe for other operating system also. discussion: A security vulnerability has been found in Windows NT/2000 systems that have JSWDK 1.0.1 installed.The vulnerabili...
CVE-2000-1099
CVE-2000-1099 affects the Java Runtime Environment in JDK 1.2.2_05 and earlier . The vulnerability allows an untrusted Java class to call into a disallowed class, potentially allowing sandbox escape and unauthorized activities. The available documents do not provide a specific patch version or re...
CVE-2000-1099
Java Runtime Environment in Java Development Kit JDK 1.2.205 and earlier can allow an untrusted Java class to call into a disallowed class, which could allow an attacker to escape the Java sandbox and conduct unauthorized activities...
WDK_v1.0.vuln.txt
../ bugs in the Java Web server Development kit built in servlet engine http://localhost:8080/../../../../etc/passwd below is my version info. JavaServertm WDK v1.0 EA elguapo@localhost elguapo$ telnet localhost 8080 Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^'...
PT-1996-1030 · Oracle +1 · Java Applet Security Manager +2
Name of the Vulnerable Software and Affected Versions: Netscape Navigator version 2.0 Java Developer's Kit version 1.0 Description: The issue concerns the Java Applet Security Manager implementation, which allows an applet to connect to arbitrary hosts. Recommendations: For Netscape Navigator...
Microsoft StreamInsight 1.2 (KB2587551)
This update is the Microsoft StreamInsight 1.2 release. It is installed side by side with your existing StreamInsight installation. It contains the SDK to develop applications and adapters, runtime libraries, and the event flow debugger. Read the Installation and Programming Considerations sectio...