21 matches found
EUVD-2005-2739
Malware in sbrugna...
EUVD-2000-0707
Malware in sbrugna...
EUVD-2010-3557
Malware in sbrugna...
[SECURITY] Fedora 40 Update: naga-3.0-26.20200930git6f1e95d.fc40
Naga aims to be a very small NIO library that provides a handful of java classes to wrap the usual Socket and ServerSocket with asynchronous NIO counterparts similar to NIO2 planned for Java 1.7. All of this is driven from a single thread, making it useful for both client e.g. allowing I/O to be...
Authorization Bypass
java is vulnerable to authorization bypass. The vulnerability exists as the privileged accept method of the ServerSocket class in the Common Object Request Broker Architecture CORBA implementation in OpenJDK allowed it to receive connections from any host, instead of just the host of the current...
Unix Command Shell, Bind TCP (via jjs)
Listen for a connection and spawn a command shell via jjs This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 795 include Msf::Payload::Single include Msf::Sessions::CommandShellOption...
Sun JDK 1.1.x,Sun JRE 1.1.x Listening Socket Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1545/info A set of flaws in multiple vendors' Java implementation allows a malicious applet to open a listening socket to accept network connections against the security policy. Java applications use the...
CentOS Update for java CESA-2010:0768 centos5 i386
Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2010:0768 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Ubuntu Update for openjdk-6, openjdk-6b18 vulnerabilities USN-1010-1
Ubuntu Update for Linux kernel vulnerabilities USN-1010-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10101.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for openjdk-6, openjdk-6b18 vulnerabilities USN-1010-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks Gmb...
Ubuntu: Security Advisory (USN-1010-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : openjdk-6, openjdk-6b18 vulnerabilities (USN-1010-1)
Marsh Ray and Steve Dispensa discovered a flaw in the TLS and SSLv3 protocols. If an attacker could perform a man in the middle attack at the start of a TLS connection, the attacker could inject arbitrary content at the beginning of the user's session. USN-923-1 disabled SSL/TLS renegotiation by...
CVE-2010-3561
Unspecified vulnerability in the CORBA component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle...
Design/Logic Flaw
Unspecified vulnerability in the CORBA component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle...
CVE-2010-3561
CVE-2010-3561 is a concrete OpenJDK/OpenJDK-derived issue described as a Privileged ServerSocket.accept vulnerability that allows remote hosts to connect without proper restrictions. The connected advisories/plugins (e.g., openSUSE Java updates, Gentoo GLSA, and Nessus plugins) include CVE-2010-3...
RedHat Update for java-1.6.0-openjdk RHSA-2010:0768-01
Check for the Version of java-1.6.0-openjdk OpenVAS Vulnerability Test RedHat Update for java-1.6.0-openjdk RHSA-2010:0768-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
CVE-2010-3561
Unspecified vulnerability in the CORBA component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle...
UltraVNC/TightVNC Multiple VNC Clients Multiple Integer Overflow PoC
No description provided by source. !/usr/bin/env python POC: Multiple VNC Clients Multiple Integer Overflow VulnerabilitiesUltraVNC and TightVNC, BID 33568 Author: Andres Lopez Luksenberg [email protected] Visit: http://208.66.16.113/andres/ import socket serversocket =...
CVE-2000-0711
Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice...
CVE-2000-0711
Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice...
CVE-2000-0711
Vulnerability summary (CVE-2000-0711) : Netscape Communicator fails to prevent a ServerSocket object from being created by untrusted entities, enabling a remote attacker to start a server on the victim’s system via a malicious applet (as demonstrated by Brown Orifice). The underlying issue is a f...