Apache JackRabbit 2.0.0 webapp XPath Injection

No description provided by source. Title: Apache JackRabbit webapp XPath Injection Author: ADEO Security Published: 11/08/2010 Version: 2.0.0 Possible all versions Vendor: http://www.apache.org Download: http://www.apache.org/dyn/closer.cgi/jackrabbit/2.0.0/jackrabbit-2.0.0-src.zip Description:...

Multiple vulnerabilities in current releases of the IBM SDK Java Technology Edition

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Thu Jun 19 09:10:49 CDT 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javaapr2014advisory.asc...

Code injection

The IBMSecureRandom component in the IBMJCE and IBMSecureRandom cryptographic providers in IBM SDK Java Technology Edition 5.0 before Service Refresh 16 FP6, 6 before Service Refresh 16, 6.0.1 before Service Refresh 8, 7 before Service Refresh 7, and 7R1 before Service Refresh 1 makes it easier f...

Sun Java GIF File Handling Memory Corruption - Improved Performance (CVE-2007-0243)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java is wide...

Sun Microsystems (Print) - Cross Site Scripting Vulnerability

Document Title: =============== Sun Microsystems Print - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=404 Release Date: ============= 2012-01-31 Vulnerability Laboratory ID VL-ID: ====================================...

Sun Microsystems (Print) - Cross Site Scripting Vulnerability

Document Title: =============== Sun Microsystems Print - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=404 Release Date: ============= 2012-01-31 Vulnerability Laboratory ID VL-ID: ====================================...

OpenKM 5.1.7 Privilege Escalation

COMPASS SECURITY ADVISORY http://www.csnc.ch/ ID: COMPASS-2012-001 Product: OpenKM Document Management System 5.1.7 1 Vendor: OpenKM http://www.openkm.com/ Subject: Privilege Escalation, Improper Access Control Risk: High Effect: Remotely exploitable Author: Cyrill Brunschwiler...

OpenKM Document Management System 5.1.7 Privilege Escalation

COMPASS SECURITY ADVISORY http://www.csnc.ch/ ID: COMPASS-2012-001 Product: OpenKM Document Management System 5.1.7 1 Vendor: OpenKM http://www.openkm.com/ Subject: Privilege Escalation, Improper Access Control Risk: High Effect: Remotely exploitable Author: Cyrill Brunschwiler...

Java Signed Applet (CVE-2008-5353; CVE-2010-0094; CVE-2010-0840)

Java Technology is a programming platform which aims to provide a system for developing and deploying cross-platform applications. It is distributed in the form of various tools such as Java Runtime Environment JRE and Java Development Kit JDK. Multiple Vulnerabilities in JRE can be exploited by...

CVE-2011-0311

The class file parser in IBM Java before 1.4.2 SR13 FP9, as used in IBM Runtimes for Java Technology 5.0.0 before SR13 and 6.0.0 before SR10, allows remote authenticated users to cause a denial of service JVM segmentation fault, and possibly memory consumption or an infinite loop via a crafted...

Oracle Java Applet2ClassLoader Remote Code Execution (CVE-2010-4452)

Java Technology is a programming platform which aims to provide a system for developing and deploying cross-platform applications. It is distributed in the form of various tools such as Java Runtime Environment JRE and Java Development Kit JDK. A remote code execution vulnerability has been...

Apache JackRabbit 2.0.0 XPath Injection

Title: Apache JackRabbit webapp XPath Injection Author: ADEO Security Published: 11/08/2010 Version: 2.0.0 Possible all versions Vendor: http://www.apache.org Download: http://www.apache.org/dyn/closer.cgi/jackrabbit/2.0.0/jackrabbit-2.0.0-src.zip Description: "Apache Jackrabbit is a fully...

Apache JackRabbit 2.0.0 - webapp XPath Injection

Apache JackRabbit 2.0.0 - webapp XPath Injection Title: Apache JackRabbit webapp XPath Injection Author: ADEO Security Published: 11/08/2010 Version: 2.0.0 Possible all versions Vendor: http://www.apache.org Download: http://www.apache.org/dyn/closer.cgi/jackrabbit/2.0.0/jackrabbit-2.0.0-src.zip...

Sun Java Runtime Environment JPEGImageReader Heap Overflow

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java...

Sun Java Runtime Environment JAR File Processing Stack Buffer Overflow (CVE-2008-5354)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java...

Sun JDK Hard Coded Image in Java File (CVE-2007-2788)

Java Technology is a programming platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is widely used for web applications in numerous forms, one of which are Java Applets. The Java Development Kit JDK is a Sun...

Sun Java Web Start Charset Encoding Stack Buffer Overflow (CVE-2008-1188)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety of programs that are deployed on personal computers as well as embedded devices and cell phones. Java is...

Sun Java Runtime Environment Type1 Font Parsing Integer Overflow (CVE-2009-1099)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java...

Sun Java HsbParser.getSoundBank Stack Buffer Overflow (CVE-2009-3867)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java is wide...

Sun Java GIF File Handling Memory Corruption (CVE-2007-0243)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java is wide...