EUVD-2005-0472

Malware in sbrugna...

Sun Java JRE Multiple Vulnerabilities (269868 / 269869 / 270476 ...) (Unix)

The version of Sun Java Runtime Environment JRE installed on the remote host is earlier than 6 Update 17 / 5.0 Update 22 / 1.4.224 / 1.3.127. Such versions are potentially affected by the following security issues : - The Java update mechanism on non-English versions does not update the JRE when ...

Sun Java JRE XML Signature Command Injection (102993) (Unix)

The version of Sun Java Runtime Environment JRE installed on the remote host reportedly does not securely process XSLT stylesheets containing XSLT Transforms in XML Signatures. If an attacker can pass a specially crafted XSLT stylesheet to a trusted Java application running on the remote host, it...

Sun Java JRE Multiple Vulnerabilities (254569 / 254611 / 254608 ..) (Unix)

The version of Sun Java Runtime Environment JRE installed on the remote host is earlier than 6 Update 13 / 5.0 Update 18 / 1.4.220 / 1.3.125. Such versions are potentially affected by the following security issues : - A denial of service vulnerability affects the JRE LDAP implementation. 254569. ...

Sun Java JRE Plug-in Capability Arbitrary Package Access (Unix)

The remote host is using an unmanaged version of Sun Java Runtime Environment that has vulnerabilities in its Java Runtime Plug-in, a web browser add-on used to display Java applets : - An untrusted applet may escalate its privileges in order to read, write or execute files on the remote system. ...

Sun Java JRE Multiple Vulnerabilities (233321-233327) (Unix)

The version of Sun Java Runtime Environment JRE installed on the remote host is affected by one or more security issues : - Two vulnerabilities in the JRE VM may independently allow an untrusted application or applet downloaded from a website to elevate its privileges 233321. - When processing XS...

Sun Java JRE Multiple Vulnerabilities (102729 / 102732) (Unix)

According to its version number, the Sun JRE installed on the remote host has two buffer overflow issues that may allow an untrusted applet to elevate its privileges to, for example, read or write local files or to execute local applications subject to the privileges of the user running the apple...

Sun Java JRE - getSoundbank 'file://' URI Buffer Overflow (Metasploit)

$Id: javagetsoundbankbof.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Index Vulnerability

VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Index Vulnerability http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Java is a programming language and computing platform released by Sun Microsystems. It is the underlying technology that powers...

Sun Java JRE getSoundbank file:// URI Buffer Overflow

This module exploits a flaw in the getSoundbank function in the Sun JVM. The payload is serialized and passed to the applet via PARAM tags. It must be a native payload. The effected Java versions are JDK and JRE 6 Update 16 and earlier, JDK and JRE 5.0 Update 21 and earlier, SDK and JRE 1.4.223 a...

Sun Java JRE < 6 Update 17 RCE Vulnerability - Linux

Sun Java JRE is prone to a remote code execution RCE vulnerability. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Sun Java JRE < 6 Update 17 RCE Vulnerability - Windows

Sun Java JRE is prone to a remote code execution RCE vulnerability. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Sun Java JRE Remote Code Execution Vulnerability (Linux)

This host is installed with Sun Java JRE and is prone to Remote Code Execution Vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavajrecodeexevulnlin.nasl 7699 2017-11-08 12:10:34Z santu $ Sun Java JRE Remote Code Execution Vulnerability Linux Authors: Nikita MR Copyright: Copyright c 2009...

openSUSE 10 Security Update : java-1_5_0-sun (java-1_5_0-sun-6396)

The Sun Java JRE /JDK 5 was updated to Update 20 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

openSUSE 10 Security Update : java-1_6_0-sun (java-1_6_0-sun-6395)

The Sun Java JRE /JDK 6 was updated to Update 15 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

Sun Java SE Unspecified Vulnerability In JDK/JRE/SDK - Aug09

This host is installed with Sun Java JDK/JRE/SDK and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavaseunspecifiedvulnaug09.nasl 7699 2017-11-08 12:10:34Z santu $ Sun Java SE Unspecified Vulnerability In JDK/JRE/SDK - Aug09 Authors: Sharath S Copyright: Copyright c...

SuSE Security Advisory SUSE-SA:2009:043 (java-1_5_0-sun,java-1_6_0-sun)

The remote host is missing updates announced in advisory SUSE-SA:2009:043. OpenVAS Vulnerability Test $Id: susesa2009043.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:043 java-150-sun,java-160-sun Authors: Thomas Reinke Copyright: Copyright c 200...

openSUSE Security Update : java-1_5_0-sun (java-1_5_0-sun-1162)

The Sun Java JRE /JDK 5 was updated to Update 20 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

CVE-2009-2672

The proxy mechanism implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted 1 applets and 2 Java Web Start applications, which allows remote attackers to hijack web sessions...

Sun Java JRE Multiple Vulnerabilities (263408 / 263409 / 263428 ..)

The version of Sun Java Runtime Environment JRE installed on the remote host is earlier than 6 Update 15 / 5.0 Update 20 / 1.4.222 / 1.3.126. Such version are potentially affected by the following security issues : - A vulnerability in the JRE audio system may allow system properties to be...