662 matches found
Solaris 5.9 (x86) : 120091-15
AM 6.2x86: Sun Java System Access Manager. Date this patch was last updated by Sun : Feb/05/08 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security if !...
Sun Java System Content Delivery Server信息泄露漏洞
Sun Java System Content Delivery Server可为移动用户提供可以下载的数据服务。 Sun Java System Content Delivery Server的实现上存在漏洞,本地或远程非特权用户可能利用此漏洞读取系统上任意文件的数据。 Sun Java System Content Delivery Server 5.0 Sun Java System Content Delivery Server 4.1 Sun Java System Content Delivery Server 4.0...
Solaris 9 (sparc) : 119466-17
Sun JavaTM System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 9 (x86) : 119467-17
IS 6.3x86: Sun JavaTM System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 9 (sparc) : 119166-43
Sun Java System App Server Enterprise Ed 8.1 2005Q1, Solaris Patch. Date this patch was last updated by Sun : Oct/18/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 9 (sparc) : 115732-10
Sun Java System Instant Messaging SunOS 5.8 5.9. Date this patch was last updated by Sun : May/25/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; i...
Solaris 9 (sparc) : 118540-42
Sun Java System Communications Express 6.2. Date this patch was last updated by Sun : Jan/16/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 9 (x86) : 115615-28
Sun JavaTM System Directory Server 5.2 patch 6 : Solarisx86. Date this patch was last updated by Sun : Sep/21/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 8 (sparc) : 119465-17
Sun JavaTM System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 9 (sparc) : 115766-15
AM 6.2: Sun Java System Access Manager. Date this patch was last updated by Sun : Feb/05/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
CVE-2006-5653
Cross-site scripting XSS vulnerability in the errorHTML function in the index script in Sun Java System Messenger Express 6 allows remote attackers to inject arbitrary web script or HTML via the error parameter. NOTE: this issue might be related to CVE-2006-5486, however due to the vagueness of t...
CVE-2006-5654
Unspecified vulnerability in the Network Security Services NSS in Sun Java System Web Server 6.0 before SP 10 and ONE Application Server 7 before Update 3, when SSLv2 is enabled, allows remote authenticated users to cause a denial of service application crash via unspecified vectors. NOTE: due to...
CVE-2006-5654
CVE-2006-5654 concerns the NSS component used by Sun Java System Web Server 6.0 (pre-SP10) and ONE Application Server 7 (pre-Update 3) when SSLv2 is enabled, allowing remote authenticated users to cause a denial of service. Connected documents indicate related NSS issues (e.g., CVE-2006-5201) and...
SystemMessenger_xss.txt
------=Part15425083137.1162268411579 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Sun java System Messenger Express remote XSS vulnerabilities By: Handrix 29 November 2006 MorX security research team www.morx.org...
Sun Java System 6.x - Messenger Express Cross-Site Scripting
source: https://www.securityfocus.com/bid/20832/info Sun Java System Messenger Express is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser ...
Sun Java System 6.x - Messenger Express Cross-Site Scripting
Sun Java System 6.x - Messenger Express Cross-Site Scripting source: https://www.securityfocus.com/bid/20832/info Sun Java System Messenger Express is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage thi...
CVE-2006-5486
Cross-site scripting XSS vulnerability in Webmail in Sun Java System Messaging Server 6.0 through 6.2 and iPlanet Messaging Server 5.2 allows remote attackers to execute arbitrary Javascript via crafted messages...
CVE-2006-5486
Cross-site scripting XSS vulnerability in Webmail in Sun Java System Messaging Server 6.0 through 6.2 and iPlanet Messaging Server 5.2 allows remote attackers to execute arbitrary Javascript via crafted messages...
CVE-2006-5486
CVE-2006-5486: Cross-site scripting in Webmail of Sun Java System Messaging Server 6.0–6.2 and iPlanet Messaging Server 5.2. Remote attackers can trigger arbitrary Javascript via crafted e-mails. Affected: Webmail component of Sun/ iPlanet Messaging Server. Root cause described as XSS via crafted...
CVE-2006-4353
Unspecified vulnerability in Sun Java System Content Delivery Server 4.0, 4.1, and 5.0 allows local and remote attackers to read data from arbitrary files via unspecified vectors...