99 matches found
CVE-2010-0272
Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to discover process memory locations via crafted data to TCP port 80, as demonstrated by the vdsjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information...
CVE-2010-0273
Affected product/versions: Sun Java System Web Server 7.0 Update 7 (and related disclosures mentioning 7.0 Update 6/7). Vulnerability/root cause: Remote attackers can overwrite heap memory and read memory contents by sending a malformed HTTP TRACE request containing a long URI and many empty head...
CVE-2010-0272
CVE-2010-0272 is discussed across multiple sources as a Sun Java System Web Server 7.0–era issue. Connected Red Hat data ties CVE-2010-0360 to a heap-overflow condition caused by a malformed HTTP TRACE request that can overwrite and reveal memory contents, suggesting a related memory-overwrite vu...
Sun Java System Web Server 6.17.0 - TRACE Heap Buffer Overflow (PoC)
Sun Java System Web Server 6.17.0 - TRACE Heap Buffer Overflow PoC source: https://www.securityfocus.com/bid/37648/info Sun Java System Web Server is prone to a remote heap-based buffer-overflow vulnerability. Attackers can exploit this issue to crash the affected application or to obtain...
Sun Java System Web Server Buffer Overflow Vulnerability (Linux)
This host has Sun Java Web Server running which is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservbofvulnlin.nasl 4869 2016-12-29 11:01:45Z teissa $ Sun Java System Web Server Buffer Overflow Vulnerability Linux Authors: Sharath S Copyright: Copyright c...
Sun Java System Web Server Buffer Overflow Vulnerability (Windows)
This host has Sun Java Web Server running which is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservbofvulnwin.nasl 5369 2017-02-20 14:48:07Z cfi $ Sun Java System Web Server Buffer Overflow Vulnerability Windows Authors: Sharath S Copyright: Copyright c...
Sun Java System Web Server < 7.0 Update 7 Buffer Overflow Vulnerability
Sun Java Web Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Sun Java System Web Server Buffer Overflow Vulnerability - Windows
Sun Java Web Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-3878
Buffer overflow in Sun Java System Web Server 7.0 Update 6 has unspecified impact and remote attack vectors, as demonstrated by the vdsjws module in VulnDisco Pack Professional 8.12. NOTE: as of 20091105, this disclosure has no actionable information. However, because the VulnDisco Pack author is...
CVE-2009-3878
The CVE refers to a buffer overflow in Sun Java System Web Server 7.0 Update 6. The connected OpenVAS entries confirm Windows and Linux variants of a Sun Java System Web Server Buffer Overflow vulnerability (CPE: s sun java_system_web_server). The root cause is a buffer overflow in the server com...
Sun Java System Web Server未明远程缓冲区溢出漏洞
Bugraq ID: 36813 Sun Java System Web Server是一款基于Java的WEB服务程序。 Sun Java System Web Server存在一个未明安全漏洞,远程攻击者可以利用漏洞进行缓冲区溢出,可导致任意代码执行。 目前没有详细漏洞细节提供。 Sun Java System Web Server 7.0 Update 6 目前没有解决方案提供: http://wwws.sun.com/software/products/websrvr/homewebsrvr.html...
Sun Java System Web Server '.jsp' Information Disclosure Vulnerability - Windows
Sun Java Web Server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Sun Java System Web Proxy Server Vulnerabilities (Windows)
This host has Sun Java Web Server running on Windows, which is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservxssvulnwin.nasl 5369 2017-02-20 14:48:07Z cfi $ Sun Java System Web Server XSS Vulnerability Windows Authors: Sharath S Copyright: Copyrig...
Sun Java System Web Proxy Server Vulnerabilities (Windows)
This host has Sun Java Web Server running on Linux, which is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservxssvulnlin.nasl 5158 2017-02-01 14:53:04Z mime $ Sun Java System Web Server XSS Vulnerability Linux Authors: Sharath S Copyright: Copyright ...
Sun/Oracle Web Server Detection (HTTP)
HTTP based detection of various Sun/Oracle Web Server products. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free softwar...
Cross site scripting
Cross-site scripting XSS vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error...
CVE-2009-1934
Cross-site scripting XSS vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error...
CVE-2009-1934
Cross-site scripting XSS vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error...
CVE-2009-1934
Sun Java System Web Server 6.1 (Reverse Proxy Plug-in) is vulnerable to an XSS issue (CVE-2009-1934) in scenarios that trigger a 502 Gateway error. The vulnerability affects the Reverse Proxy Plug-in before SP11, allowing remote attackers to inject arbitrary script via the query string. The avail...
CVE-2008-2518
CVE-2008-2518 is an XSS vulnerability in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3, affecting the advanced search (webapps/search/advanced.jsp). The underlying issue is an HTML/script injection via unspecified vectors (likely related to the next parameter). Exploitation de...