850 matches found
CVE-2007-3700
Sun Java System Access Manager formerly Java System Identity Server before 20070710, when the message debug level is configured in the com.iplanet.services.debug.level property in AMConfig.properties, logs cleartext login passwords, which allows local users to gain privileges by reading...
CVE-2007-3700
Sun Java System Access Manager formerly Java System Identity Server before 20070710, when the message debug level is configured in the com.iplanet.services.debug.level property in AMConfig.properties, logs cleartext login passwords, which allows local users to gain privileges by reading...
CVE-2007-3715
Sun Java System Application Server and Web Server 7.0 through 9.0 before 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3716...
CVE-2007-3225
Unspecified vulnerability in Sun Java System Directory Server slapd 6.0, and 5.2 with Patch 3 or 4, allows remote attackers to modify certain data via unknown vectors...
Code injection
Unspecified vulnerability in Sun Java System Directory Server slapd 6.0, and 5.2 with Patch 3 or 4, allows remote attackers to modify certain data via unknown vectors...
Code injection
Unspecified vulnerability in Sun ONE/Java System Directory Server slapd 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors...
CVE-2007-3224
Unspecified vulnerability in Sun ONE/Java System Directory Server slapd 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors...
CVE-2007-3224
CVE-2007-3224 refers to an information-disclosure vulnerability in Sun Java System Directory Server (slapd) affecting versions 6.0 and 5.x before 5.2 Patch 5. The issue allows remote attackers to determine the existence of attributes of an entry via unspecified vectors. Connected sources (includi...
CVE-2007-3225
Sun Java System Directory Server (slapd) 6.0 and 5.2 with Patch 3 or 4 are affected by CVE-2007-3225. The vulnerability allows remote attackers to modify certain data via unknown vectors. The available documents do not specify the exact component/function/file/root cause, nor provide a confirmed ...
Solaris 5.8 (x86) : 120982-18
Sun Java System Web Proxy Server 4.0.11, x86 SVR4 patch: Mainte. Date this patch was last updated by Sun : Aug/04/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network...
Solaris 5.10 (x86) : 120982-18
Sun Java System Web Proxy Server 4.0.11, x86 SVR4 patch: Mainte. Date this patch was last updated by Sun : Aug/04/09 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network...
Solaris 5.8 (sparc) : 120981-18
Sun Java System Web Proxy Server 4.0.11, Solaris SVR4 patch: Mai. Date this patch was last updated by Sun : Aug/04/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network...
Cross site scripting
Cross-site scripting XSS vulnerability in Sun Java System Messaging Server 6.0 through 6.3, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly a related issue to CVE-2006-5653...
CVE-2007-2904
Sun Java System Messaging Server 6.0–6.3 is affected by CVE-2007-2904, a cross-site scripting (XSS) vulnerability exploitable via unspecified vectors when using Internet Explorer. The issue allows remote attackers to inject arbitrary web script or HTML. The vulnerability is related to CVE-2006-56...
Sun Java System Web Proxy Server fails to properly process malformed packets
Overview A vulnerability in the way Sun Java System Web Proxy Server processes malformed packets may allow execution of arbitrary code. Description SOCKS is a network protocol that provides a framework that allows client-server applications to securely use network firewall services. A vulnerabili...
Sun Java System Web Proxy sockd buffer overflow
Added: 05/30/2007 CVE: CVE-2007-2881 BID: 24165 OSVDB: 35841 Background The Sun Java System Web Proxy Server formerly Sun ONE Web Proxy Server provides content filtering and caching capabilities. It is a companion product to the Sun Java System Web Server. Problem A buffer overflow vulnerability ...
Sun Java System Web Proxy sockd buffer overflow
Added: 05/30/2007 CVE: CVE-2007-2881 BID: 24165 OSVDB: 35841 Background The Sun Java System Web Proxy Server formerly Sun ONE Web Proxy Server provides content filtering and caching capabilities. It is a companion product to the Sun Java System Web Server. Problem A buffer overflow vulnerability ...
Sun Java System Web Proxy sockd buffer overflow
Added: 05/30/2007 CVE: CVE-2007-2881 BID: 24165 OSVDB: 35841 Background The Sun Java System Web Proxy Server formerly Sun ONE Web Proxy Server provides content filtering and caching capabilities. It is a companion product to the Sun Java System Web Server. Problem A buffer overflow vulnerability ...
Sun Java System Web Proxy sockd buffer overflow
Added: 05/30/2007 CVE: CVE-2007-2881 BID: 24165 OSVDB: 35841 Background The Sun Java System Web Proxy Server formerly Sun ONE Web Proxy Server provides content filtering and caching capabilities. It is a companion product to the Sun Java System Web Server. Problem A buffer overflow vulnerability ...
CVE-2007-2466
Unspecified vulnerability in the LDAP Software Development Kit SDK for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service crash via certain BER encodings...