CVE-2010-4444

Unspecified vulnerability in Oracle Sun Java System Access Manager and Oracle OpenSSO 7, 7.1, and 8 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

CVE-2010-4456

CVE-2010-4456 affects Oracle Sun Java System Communications Express 6.2 and 6.3. The vulnerability allows remote attackers to affect integrity via unknown vectors related to Web Mail. The description does not specify concrete exploit details, affected versions beyond 6.2/6.3, or a remediation. No...

CVE-2010-4431

CVE-2010-4431 affects Oracle Sun Java System Portal Server 7.1 Update 2 on Solaris (SPARC/X86). The vulnerability is described as an unspecified local-confidentiality issue related to the Portal’s proxy handling. Nessus/NVD references suggest patches are available: Solaris patch 124301-16 (SPARC)...

CVE-2010-4438

Removed by vendor...

CVE-2010-4438

CVE-2010-4438 relates to a local privilege escalation in Oracle GlassFish Server (notably GlassFish 2.x/3.0.1 and JMS components). The OpenVAS entries confirm a GlassFish privilege-escalation vulnerability with CVSS base 5.7 (local access, partial confidentiality/integrity impact, complete availa...

CVE-2010-4438

Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service JMS...

Oracle Java System Web Server HTTP Response Splitting Vulnerability

The host is running Oracle Java System Web Server and is prone to HTTP response splitting vulnerability. OpenVAS Vulnerability Test $Id: gboraclesjswebserverresponsesplittingvuln.nasl 5390 2017-02-21 18:39:27Z mime $ Oracle Java System Web Server HTTP Response Splitting Vulnerability Authors: Ant...

Oracle Java System Web Server HTTP Response Splitting Vulnerability - Active Check

Oracle Java System Web Server is prone to an HTTP response splitting vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

Oracle iPlanet Web Server Multiple Unspecified Vulnerabilities (cpuoct2010)

Oracle iPlanet Web Server is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Oracle Sun Java System Web Server - HTTP Response Splitting

Exploit for jsp platform in category web applications =========================================================== Oracle Sun Java System Web Server - HTTP Response Splitting =========================================================== Description Security-Assessment.com discovered that is possible...

Oracle Sun Java System Web Server - HTTP Response Splitting

Oracle Sun Java System Web Server - HTTP Response Splitting Description Security-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied inpu...

Oracle Sun Java System Web Server - HTTP Response Splitting

Description Security-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied input is used to generate the value of an HTTP header, as shown ...

CVE-2010-3575

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 6.0, 6.2, 6.3, and 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Mail...

CVE-2010-3564

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

CVE-2010-3564

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

CVE-2010-3544

CVE-2010-3544 is a CSRF vulnerability in Oracle iPlanet Web Server (Sun Java System Web Server) prior to 7.0U9 that allows an attacker to stop a server instance via the management console when a user views a malicious page while authenticated. The issue is documented across multiple sources (JVN/...

CVE-2010-3575

CVE-2010-3575 affects Oracle Communications Messaging Server (Sun Java System Messaging Server) within Oracle Sun Product Suite 6.0, 6.2, 6.3, and 7.0. In the Oracle Sun Products Suite risk matrix, the vulnerability is tied to the Web Mail component and is remotely exploitable without authenticat...

CVE-2010-3545

CVE-2010-3545 affects Oracle iPlanet Web Server (Sun Java System Web Server), part of Oracle Sun Product Suite 7.0. The vulnerability is in the Administration component and allows remote attackers to affect confidentiality and integrity via unknown vectors. Public sources in connected docs corrob...

CVE-2010-3545

Unspecified vulnerability in the Oracle iPlanet Web Server Sun Java System Web Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration...