CVE-2009-3878

Buffer overflow in Sun Java System Web Server 7.0 Update 6 has unspecified impact and remote attack vectors, as demonstrated by the vdsjws module in VulnDisco Pack Professional 8.12. NOTE: as of 20091105, this disclosure has no actionable information. However, because the VulnDisco Pack author is...

Sun Java System Web Server未明远程缓冲区溢出漏洞

Bugraq ID: 36813 Sun Java System Web Server是一款基于Java的WEB服务程序。 Sun Java System Web Server存在一个未明安全漏洞，远程攻击者可以利用漏洞进行缓冲区溢出，可导致任意代码执行。 目前没有详细漏洞细节提供。 Sun Java System Web Server 7.0 Update 6 目前没有解决方案提供： http://wwws.sun.com/software/products/websrvr/homewebsrvr.html...

Sun Java System Directory Server 'ns-slapd'拒绝服务漏洞

Bugraq ID: 36286 Sun Java System Directory Server是一款Java企业系统的一个组件，为企业管理大量用户信息提供用户管理基础架构。 Sun Java System Directory Server 'ns-slapd'存在拒绝服务攻击，远程攻击者可以利用漏洞使服务程序崩溃。 目前没有详细漏洞细节提供。 Sun Java System Directory Server Enterprise Edition 6.0 目前没有解决方案提供：...

Sun Java System Access Manager Version Detection

This script detects the installed version of Access Manager and sets the version in KB. OpenVAS Vulnerability Test $Id: secpodsjsaccessmanagerdetect.nasl 7076 2017-09-07 11:53:47Z teissa $ Sun Java System Access Manager Version Detection Authors: Sharath S Copyright: Copyright c 2009 SecPod,...

Sun Java System Access Manager Version Detection

This script detects the installed version of Access Manager. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sun Java System Access Manager 7.1 < Patch 3 Multiple Vulnerabilities

Binary data 5133.prm...

Sun Java System Web Proxy Server Denial Of Service Vulnerability - Linux

Java Web Proxy Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Sun Java System Web Proxy Server Detection (HTTP)

Detection of Java System Web Proxy Server. The script sends a connection request to the server and attempts to extract the version number from the reply. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Sun Java System Web Proxy Server Denial Of Service Vulnerability - Windows

Java Web Proxy Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2009-2713

The CDCServlet component in Sun Java System Access Manager 7.0 2005Q4 and 7.1, when Cross Domain Single Sign On CDSSO is enabled, does not ensure that "policy advice" is presented to the correct client, which allows remote attackers to obtain sensitive information via unspecified vectors...

CVE-2009-2713

Sun Java System Access Manager 7.0 (2005Q4) and 7.1 with Cross Domain Single Sign On enabled is affected by CVE-2009-2713. The issue is that the CDCServlet component does not ensure policy advice is presented to the correct client, enabling potential information disclosure via unspecified vectors...

CVE-2009-2712

Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files...

CVE-2009-2597

The Sun Java System SJS Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a denial of service daemon crash via a GET request...

CVE-2009-2597

The Sun Java System SJS Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a denial of service daemon crash via a GET request...

Sun Java System Web Server .jsp文件信息泄露漏洞

BUGTRAQ ID: 35577 Sun Java System Web Server是高性能的WEB服务器。 Sun Java System Web Server在处理对Java Server页面的请求时存在错误，远程攻击者可以在所请求文件的扩展名后附加::$DATA来读取JSP资源的内容。 Sun Java System Web Server 7.0 Update 5 Sun Java System Web Server 6.1 SP11 Sun Java System Web Server 6.1 SP10 厂商补丁： Sun ---...

Sun Java System Web Server ::$DATA Extension Request JSP Resource Disclosure

The remote Sun Java System Web Server or an older version, such as Sun ONE Web Server or iPlanet reveals the source code of '.jsp' files when an attacker appends '::$DATA' to the request. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid39618; scriptversion"1.10";...

CVE-2009-2268

Cross-site scripting XSS vulnerability in the Cross-Domain Controller CDC servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the Cross-Domain Controller CDC servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-2268

Cross-site scripting XSS vulnerability in the Cross-Domain Controller CDC servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-2268

CVE-2009-2268 affects Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 where the Cross-Domain Controller (CDC) servlet is vulnerable to cross‑site scripting via unspecified vectors. The issue is evidenced in Nessus/Solaris patches that reference CVE-2009-2268 among related fixes (e.g., ...