Sun Java System Identity Manager 6.0/7.x Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/32262/info Sun Java System Identity Manager is prone to multiple web-interface vulnerabilities, including a cross-site request-forgery issue, multiple cross-site scripting issues, multiple HTML-injection issues, and a...

Sun Java System Delegated Administrator 6.x HTTP Response Splitting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34643/info Sun Java System Delegated Administrator is prone to an HTTP response-splitting vulnerability because it fails to sufficiently sanitize user-supplied data. Attackers can leverage this issue to influence or...

Sun Calendar Express Web Server - (DoS/XSS) Multiple Remote Vulns

No description provided by source. Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Multiple vulnerabilities in Sun Calendar Express Web Server 1. Advisory Information Title: Multiple vulnerabilities in Sun Calendar Express Web Server Advisory ID: CORE-2009-010...

Sun Java System Web Server 6.1/7.0 WebDAV Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37910/info Sun Java System Web Server is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input. The issue affects the WebDAV functionality. Currently very few technical details a...

Sun Java System Application Server Information Disclosure

The version of Sun Java System Application Server installed on the remote host is potentially affected by an information disclosure vulnerability. A remote, unauthenticated attacker could exploit this flaw to read the Web Application configuration files in the WEB-INF or META-INF directory via a...

CVE-2012-3155

Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB...

CVE-2012-3155

The CVE-2012-3155 entry concerns an unspecified DoS vulnerability in the CORBA ORB subcomponent affecting Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1/3.1.2, and Sun Java System Application Server 8.1/8.2. The flaw targets the CORBA ORB component and is described as allowi...

CVE-2012-3155

Removed by vendor...

Design/Logic Flaw

Unspecified vulnerability in Oracle Communications Server 2.0; GlassFish Enterprise Server 2.1.1, 3.0.1, and 3.1.1; and Sun Java System App Server 8.1 and 8.2 allows remote attackers to affect availability via unknown vectors related to Web Container...

CVE-2011-3559

Unspecified vulnerability in Oracle Communications Server 2.0; GlassFish Enterprise Server 2.1.1, 3.0.1, and 3.1.1; and Sun Java System App Server 8.1 and 8.2 allows remote attackers to affect availability via unknown vectors related to Web Container...

CVE-2011-3559

CVE-2011-3559 : Open vulnerability affecting Oracle GlassFish Server/Web Container components. Multiple Nessus/OpenVAS entries describe an unspecified DoS vulnerability in GlassFish/Web Container that could affect availability, with affected versions including GlassFish 2.1.1 (up to 2.1.1.14), 3....

CVE-2011-0847

Unspecified vulnerability in the OpenSSO Enterprise and Sun Java System Access Manager components in Oracle Sun Products Suite 7.1 and 8.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Authentication...

CVE-2011-0844

Unspecified vulnerability in the OpenSSO Enterprise and Sun Java System Access Manager components in Oracle Sun Products Suite 7.1 and 8.0 allows remote attackers to affect integrity via unknown vectors related to Authentication...

Authentication flaw

Unspecified vulnerability in the OpenSSO Enterprise and Sun Java System Access Manager components in Oracle Sun Products Suite 7.1 and 8.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Authentication...

CVE-2011-0847

CVE-2011-0847 concerns an unspecified vulnerability in Oracle Sun OpenSSO/ Sun Java System Access Manager components (Oracle Sun Products Suite 7.1 and 8.0). The NVD entry states remote authenticated users can affect confidentiality via unknown vectors related to Authentication (CVSSv2 base score...

CVE-2011-0844

CVE-2011-0844 describes an unspecified vulnerability in the OpenSSO Enterprise and Sun Java System Access Manager components (Oracle Sun Products Suite 7.1 and 8.0) that allows remote attackers to affect integrity via unknown vectors related to authentication. The connected documents confirm the ...

CVE-2011-0807

Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration...

Design/Logic Flaw

Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration...

CVE-2011-0807

Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration...

Design/Logic Flaw

Unspecified vulnerability in Oracle Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to affect integrity via unknown vectors related to Web Mail...