850 matches found
Sun Java System Calendar Server 6.3 Duplicate URI Request Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34150/info Sun Java System Calendar Server is prone to a denial-of-service vulnerability because it fails to handle certain duplicate URI requests. An attacker can exploit this issue to crash the Calendar Server, resultin...
Sun Java System Identity Manager 6.0/7.0/7.1 /idm/help/index.jsp helpUrl Variable Remote Frame Injection
No description provided by source. source: http://www.securityfocus.com/bid/27214/info Sun Java System Identity Manager is prone to multiple input-validation vulnerabilities, including an HTML-injection issue and cross-site scripting issues, because it fails to adequately sanitize user-supplied...
Sun Java System Messenger Express 6.3-0.15 'error' Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34140/info Sun Java System Messenger Express is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...
Sun Java System Identity Manager 6.0/7.0/7.1 /idm/account/findForSelect.jsp resultsForm Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27214/info Sun Java System Identity Manager is prone to multiple input-validation vulnerabilities, including an HTML-injection issue and cross-site scripting issues, because it fails to adequately sanitize user-supplied...
Sun Java System Web Server 7.0 Update 6 'admin' Server Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37909/info Sun Java System Web Server is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the effected application, denying service to legitimate users. Sun Java System Web Server 7....
Sun Java System Access Manager <= 7.1 Username Enumeration Weakness
No description provided by source...
Sun Calendar Express Web Server - (DoS/XSS) Multiple Remote Vulns
No description provided by source. Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Multiple vulnerabilities in Sun Calendar Express Web Server 1. Advisory Information Title: Multiple vulnerabilities in Sun Calendar Express Web Server Advisory ID: CORE-2009-010...
Sun Java System Web Server 6.1/7.0 WebDAV Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37910/info Sun Java System Web Server is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input. The issue affects the WebDAV functionality. Currently very few technical details a...
Sun Java System Identity Manager 6.0/7.x Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/32262/info Sun Java System Identity Manager is prone to multiple web-interface vulnerabilities, including a cross-site request-forgery issue, multiple cross-site scripting issues, multiple HTML-injection issues, and a...
Sun Java System Delegated Administrator 6.x HTTP Response Splitting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34643/info Sun Java System Delegated Administrator is prone to an HTTP response-splitting vulnerability because it fails to sufficiently sanitize user-supplied data. Attackers can leverage this issue to influence or...
Sun Java System Web Server 6.1/7.0 Digest Authentication Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37896/info Sun Java System Web Server is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute...
Sun/Oracle GlassFish Server Authenticated Code Execution
This module logs in to a GlassFish Server Open Source or Commercial using various methods such as authentication bypass, default credentials, or user-supplied login, and deploys a malicious war file in order to get remote code execution. It has been tested on Glassfish 2.x, 3.0, 4.0 and Sun Java...
Sun Java System Application Server Information Disclosure
The version of Sun Java System Application Server installed on the remote host is potentially affected by an information disclosure vulnerability. A remote, unauthenticated attacker could exploit this flaw to read the Web Application configuration files in the WEB-INF or META-INF directory via a...
Oracle GlassFish/Java System Application Server CORBA ORB Subcomponent DoS Vulnerability
This host is running Oracle GlassFish/Java System Application Server and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodoracleglassfishnsjascorbaorbcompdosvuln.nasl 5963 2017-04-18 09:02:14Z teissa $ Oracle GlassFish/Java System Application Server CORBA ORB...
Oracle GlassFish / Java System Application Server CORBA ORB Subcomponent DoS Vulnerability (Oct 2012)
Oracle GlassFish / Java System Application Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
UBUNTU-CVE-2012-3155
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB...
CVE-2012-3155
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB...
Code injection
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB...
CVE-2012-3155
The CVE-2012-3155 entry concerns an unspecified DoS vulnerability in the CORBA ORB subcomponent affecting Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1/3.1.2, and Sun Java System Application Server 8.1/8.2. The flaw targets the CORBA ORB component and is described as allowi...
CVE-2012-3155
Removed by vendor...