CVE-2010-4456

CVE-2010-4456 affects Oracle Sun Java System Communications Express 6.2 and 6.3. The vulnerability allows remote attackers to affect integrity via unknown vectors related to Web Mail. The description does not specify concrete exploit details, affected versions beyond 6.2/6.3, or a remediation. No...

CVE-2010-4431

CVE-2010-4431 affects Oracle Sun Java System Portal Server 7.1 Update 2 on Solaris (SPARC/X86). The vulnerability is described as an unspecified local-confidentiality issue related to the Portal’s proxy handling. Nessus/NVD references suggest patches are available: Solaris patch 124301-16 (SPARC)...

Oracle iPlanet Web Server Multiple Unspecified Vulnerabilities (cpuoct2010)

Oracle iPlanet Web Server is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Oracle Sun Java System Web Server - HTTP Response Splitting

Oracle Sun Java System Web Server - HTTP Response Splitting Description Security-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied inpu...

Oracle Sun Java System Web Server - HTTP Response Splitting

Description Security-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied input is used to generate the value of an HTTP header, as shown ...

CVE-2010-3575

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 6.0, 6.2, 6.3, and 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Mail...

CVE-2010-3564

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

CVE-2010-3544

CVE-2010-3544 is a CSRF vulnerability in Oracle iPlanet Web Server (Sun Java System Web Server) prior to 7.0U9 that allows an attacker to stop a server instance via the management console when a user views a malicious page while authenticated. The issue is documented across multiple sources (JVN/...

CVE-2010-3564

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

CVE-2010-3575

CVE-2010-3575 affects Oracle Communications Messaging Server (Sun Java System Messaging Server) within Oracle Sun Product Suite 6.0, 6.2, 6.3, and 7.0. In the Oracle Sun Products Suite risk matrix, the vulnerability is tied to the Web Mail component and is remotely exploitable without authenticat...

CVE-2010-3545

CVE-2010-3545 affects Oracle iPlanet Web Server (Sun Java System Web Server), part of Oracle Sun Product Suite 7.0. The vulnerability is in the Administration component and allows remote attackers to affect confidentiality and integrity via unknown vectors. Public sources in connected docs corrob...

CVE-2010-3545

Unspecified vulnerability in the Oracle iPlanet Web Server Sun Java System Web Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration...

Design/Logic Flaw

Unspecified vulnerability in the Oracle iPlanet Web Server Sun Java System Web Server component in Oracle Sun Products Suite 6.1 and 7.0 allows remote attackers to affect integrity via unknown vectors related to Web Container...

CVE-2010-3512

CVE-2010-3512 affects Oracle iPlanet Web Server (Sun Java System Web Server) 7.0u8. The vulnerability is an unspecified issue in the WebDAV-related functionality that could allow remote authenticated users to affect confidentiality. The NVD entry describes an unspecified vulnerability in the WebD...

CVE-2010-3514

Unspecified vulnerability in the Oracle iPlanet Web Server Sun Java System Web Server component in Oracle Sun Products Suite 6.1 and 7.0 allows remote attackers to affect integrity via unknown vectors related to Web Container...

CVE-2010-3514

CVE-2010-3514 affects Oracle iPlanet Web Server (Sun Java System Web Server) 7.0.x prior to 7.0.9. The vulnerability is in the Web Container and enables HTTP response splitting via crafted responses (CR/LF handling in headers). CVSS 2.0 base score is 4.3 (Network, Medium complexity, no auth; inte...

Sun Java System Portal Server Multiple Cross Site Scripting Vulnerabilities

Sun Java System Portal Server is prone to multiple unspecified Cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Sun Java System Portal Server Multiple Cross Site Scripting Vulnerabilities

This host is running Sun Java System Portal Server and is prone to multiple unspecified Cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsunjavasystemportalserverxssvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ Sun Java System Portal Server Multiple Cross Site Scripting...

Sun Java System Portal Server Version Detection

This script finds the running Sun Java System Portal Server version. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...