63 matches found
Solaris Update for Sun Java Web Console (Lockhart) 121212-02
Check for the Version of Sun Java Web Console Lockhart OpenVAS Vulnerability Test Solaris Update for Sun Java Web Console Lockhart 121212-02 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
CVE-2008-5550
Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirecturl parameter...
Open redirect
Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirecturl parameter...
CVE-2008-5549
Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the product's configuration information via unknown vectors related to "access to secure files by ThemeServlet."...
CVE-2008-5550
CVE-2008-5550 is an open redirect vulnerability in Sun Java Web Console, affecting Sun Java Web Console 3.0.2–3.0.5 and Solaris 10. It stems from BeginLogin.jsp (console/faces/jsp/login/BeginLogin.jsp) and allows remote attackers to redirect users to arbitrary sites via the redirect_url parameter...
CVE-2008-5550
Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirecturl parameter...
Solaris 8 (sparc) : 136987-03
Sun Java Web Console 3.0.2: Security fixes. Date this patch was last updated by Sun : Jun/11/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 8 (x86) : 136986-03
Sun Java Web Console 3.0.2x86: Security fixes. Date this patch was last updated by Sun : Jun/25/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Sun Java Web Console < 3.0.5 Remote File Enumeration
According to its version, the installation of Sun Java Web Console on the remote host may allow a local or remote unprivileged user to determine the existence of files or directories in access restricted directories, which could result in a loss of confidentiality. C Tenable Network Security, Inc...
CVE-2008-1286
Unspecified vulnerability in Sun Java Web Console 3.0.2, 3.0.3, and 3.0.4 allows remote attackers to bypass intended access restrictions and determine the existence of files or directories via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in Sun Java Web Console 3.0.2, 3.0.3, and 3.0.4 allows remote attackers to bypass intended access restrictions and determine the existence of files or directories via unknown vectors...
CVE-2008-1286
Unspecified vulnerability in Sun Java Web Console 3.0.2, 3.0.3, and 3.0.4 allows remote attackers to bypass intended access restrictions and determine the existence of files or directories via unknown vectors...
Solaris 10 (x86) : 125953-20 (deprecated)
Oracle Java Web Console 3.1x86. Date this patch was last updated by Sun : May/14/10 This plugin has been deprecated and either replaced with individual 125953 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on...
Solaris 9 (x86) : 125951-20
Oracle Java Web Console 3.1x86. Date this patch was last updated by Sun : May/14/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 10 (sparc) : 125952-20 (deprecated)
Oracle Java Web Console 3.1. Date this patch was last updated by Sun : May/14/10 This plugin has been deprecated and either replaced with individual 125952 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on...
Solaris 9 (sparc) : 125950-20
Oracle Java Web Console 3.1. Date this patch was last updated by Sun : May/14/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Sun Java Web Console LibWebconsole_Services.SO Remote Format String
The remote host is running SUN Java Web Console. The remote version of this service does not properly sanitize calls to the syslog function. By sending a specially crafted request it is possible to exploit this format string error. An attacker can exploit it to execute code with the privileges of...
Format string
Format string vulnerability in libwebconsoleservices.so in Sun Java Web Console 2.2.2 through 2.2.5 allows remote attackers to cause a denial of service application crash, obtain sensitive information, and possibly execute arbitrary code via unspecified vectors during a failed login attempt,...
CVE-2007-1681
CVE-2007-1681 relates to a format-string vulnerability in Sun Java Web Console (Lockhart) specifically in libwebconsole_services.so, affecting Sun Java Web Console versions 2.2.2–2.2.5. The issue allows remote attackers to crash the application, potentially disclose sensitive information, and pos...
CVE-2007-1681
Format string vulnerability in libwebconsoleservices.so in Sun Java Web Console 2.2.2 through 2.2.5 allows remote attackers to cause a denial of service application crash, obtain sensitive information, and possibly execute arbitrary code via unspecified vectors during a failed login attempt,...