662 matches found
CVE-2007-0008
CVE-2007-0008 is an NSS heap-based overflow caused by an integer underflow when processing an SSLv2 server message with a key too short to encrypt the Master Secret. It affects SeaMonkey, Firefox, and Thunderbird around NSS usage and was addressed by updating to fixed NSS-containing packages (e.g...
Sun Network Security Services (NSS) vulnerable to DoS due to an unspecified vulnerability
Overview The NSS libraries used in the Sun One Application Server and the Sun Java System web server contain an unspecified vulnerability that may allow an attacker to create a denial-of-service condition. Description The Sun One Application Server provides a Java 2 Platform for delivering Java...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Sun Java System Access Manager 6.1, 6.2, 6 2005Q1 6.3, and 7 2005Q4 7.0 before 20070129 allow remote attackers to inject arbitrary web script or HTML via the 1 goto or 2 gx-charset parameter. NOTE: some of these details are obtained from third...
CVE-2007-0628
Multiple cross-site scripting XSS vulnerabilities in Sun Java System Access Manager 6.1, 6.2, 6 2005Q1 6.3, and 7 2005Q4 7.0 before 20070129 allow remote attackers to inject arbitrary web script or HTML via the 1 goto or 2 gx-charset parameter. NOTE: some of these details are obtained from third...
CVE-2007-0628
CVE-2007-0628 concerns multiple XSS vulnerabilities in Sun Java System Access Manager versions 6.1, 6.2, 6 2005Q1 (6.3), and 7 2005Q4 (7.0) prior to 20070129. The flaws allow remote attackers to inject arbitrary web script or HTML through the goto or gx-charset parameters. The NVD entry lists a C...
CVE-2007-0628
Multiple cross-site scripting XSS vulnerabilities in Sun Java System Access Manager 6.1, 6.2, 6 2005Q1 6.3, and 7 2005Q4 7.0 before 20070129 allow remote attackers to inject arbitrary web script or HTML via the 1 goto or 2 gx-charset parameter. NOTE: some of these details are obtained from third...
CVE-2007-0114
The CVE-2007-0114 issue affects Sun Java System Content Delivery Server 5.0 and 5.0 PU1. It permits remote attackers to obtain sensitive information about content details via unspecified vectors, indicating an information-disclosure vulnerability. The available documentation does not specify the ...
Sun Java系统服务器嵌入式HTTP请求处理漏洞
Sun Java系统应用和WEB服务器都是与J2EE平台兼容的应用服务器。 Sun Java System Application Server在处理HTTP请求时存在漏洞,远程攻击者可能利用此漏洞执行各种攻击。 如果Sun Java System Application Server或Sun Java System Web Server使用Sun Java System Proxy Server的话,由于未能正确地实现HTTP/1.1...
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web...
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web...
CVE-2006-6276
Sun Java System Proxy Server versions prior to 20061130 are affected by an HTTP request smuggling vulnerability when used with Sun Java System Application Server or Sun Java System Web Server. Exploitation could bypass HTTP request filtering, enable web session hijacking, permit cross-site script...
Solaris 8 (sparc) : 115732-10
Sun Java System Instant Messaging SunOS 5.8 5.9. Date this patch was last updated by Sun : May/25/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; i...
Solaris 10 (x86) : 119167-43 (deprecated)
Sun Java System App Server Enterprise Ed 8.1 2005Q1, x86 Patch32. Date this patch was last updated by Sun : Oct/18/11 This plugin has been deprecated and either replaced with individual 119167 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security,...
Solaris 8 (sparc) : 119466-17
Sun JavaTM System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 9 (x86) : 119465-17
Sun JavaTM System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 8 (sparc) : 119166-43
Sun Java System App Server Enterprise Ed 8.1 2005Q1, Solaris Patch. Date this patch was last updated by Sun : Oct/18/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 9 (x86) : 119167-43
Sun Java System App Server Enterprise Ed 8.1 2005Q1, x86 Patch32. Date this patch was last updated by Sun : Oct/18/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 8 (x86) : 116645-10
Sun Java System Instant Messaging SunOS 5.8x86 5.9. Date this patch was last updated by Sun : May/25/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'...
Solaris 8 (sparc) : 115614-28
Sun JavaTM System Directory Server 5.2 patch 6 : Solaris sparc. Date this patch was last updated by Sun : Sep/21/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 8 (sparc) : 115766-15
AM 6.2: Sun Java System Access Manager. Date this patch was last updated by Sun : Feb/05/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...