CVE-2009-0576

Sun Java System Directory Server 5.2 p6 and earlier, and Enterprise Edition 5, are affected by CVE-2009-0576. An unspecified vulnerability allows remote attackers to cause a denial of service (daemon crash) via crafted LDAP requests. The provided documents do not specify the exact root cause, vul...

CVE-2009-0576

Unspecified vulnerability in Sun Java System Directory Server 5.2 p6 and earlier, and Enterprise Edition 5, allows remote attackers to cause a denial of service daemon crash via crafted LDAP requests...

Sun Java System Directory Server 6.x < 6.3.1 LDAP JDBC Backend DoS

The remote host is running the Sun Java System Directory Server, an LDAP server from Sun Microsystems. The installed version is older than 6.3.1, and the proxy server included with such versions is reportedly affected by a denial of service vulnerability. By sending a specially crafted request to...

Sun Java System/ONE Application Server Detection (HTTP)

HTTP based detection of the Sun Java System/ONE Application Server. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sun Java系统应用服务器远程信息泄露漏洞

CVECAN ID: CVE-2009-0278 Sun Java系统应用服务器是与J2EE平台兼容的应用服务器。 Sun Java应用服务器在处理用户请求时存在漏洞，远程攻击者可能利用此漏洞非授权获取WEB-INF及META-INF目录内的配置文件，导致敏感信息泄露。 Sun Java System Application Server 8.2 Sun Java System Application Server 8.1 Sun --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Code injection

The login module in Sun Java System Access Manager 6 2005Q1 aka 6.3, 7 2005Q4 aka 7.0, and 7.1 responds differently to a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames...

CVE-2009-0348

The login module in Sun Java System Access Manager 6 2005Q1 aka 6.3, 7 2005Q4 aka 7.0, and 7.1 responds differently to a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames...

CVE-2009-0348

CVE-2009-0348 affects Sun Java System Access Manager: login module responsiveness difference during failed logins allows remote username enumeration. Versions implicated: 6 2005Q1 (aka 6.3), 7 2005Q4 (aka 7.0), and 7.1. The description does not specify an exploit or affected patch level beyond th...

SuSE Update for IBM Java, Sun Java SUSE-SA:2007:045

Check for the Version of IBM Java, Sun Java OpenVAS Vulnerability Test $Id: gbsuse2007045.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for IBM Java, Sun Java SUSE-SA:2007:045 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This...

SuSE Update for IBMJava2 SUSE-SA:2007:010

Check for the Version of IBMJava2 OpenVAS Vulnerability Test $Id: gbsuse2007010.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for IBMJava2 SUSE-SA:2007:010 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

SuSE Update for Sun Java SUSE-SA:2007:055

Check for the Version of Sun Java OpenVAS Vulnerability Test $Id: gbsuse2007055.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for Sun Java SUSE-SA:2007:055 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

SuSE Update for Sun Java SUSE-SA:2007:003

Check for the Version of Sun Java OpenVAS Vulnerability Test $Id: gbsuse2007003.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for Sun Java SUSE-SA:2007:003 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

CVE-2009-0278

Sun Java System Application Server AS 8.1 and 8.2 allows remote attackers to read the Web Application configuration files in the 1 WEB-INF or 2 META-INF directory via a malformed request...

CVE-2009-0278

CVE-2009-0278 affects Sun Java System Application Server (AS) 8.1 and 8.2. A remote attacker can read Web Application configuration files in WEB-INF or META-INF via a malformed request, exposing sensitive information. Connected sources indicate vendor patches exist (e.g., SunSolve documents such ...

CVE-2009-0278

Sun Java System Application Server AS 8.1 and 8.2 allows remote attackers to read the Web Application configuration files in the 1 WEB-INF or 2 META-INF directory via a malformed request...

Sun Java System Access Manager 7.1 - &#039;Username&#039; Enumeration

source: https://www.securityfocus.com/bid/33489/info Sun Java System Access Manager is prone to a username-enumeration weakness because of a design error in the application when verifying user-supplied input. Attackers may exploit this weakness to discern valid usernames. This may aid them in...

Sun Java System Access Manager 7.1 - Username Enumeration

Sun Java System Access Manager 7.1 - Username Enumeration source: https://www.securityfocus.com/bid/33489/info Sun Java System Access Manager is prone to a username-enumeration weakness because of a design error in the application when verifying user-supplied input. Attackers may exploit this...

SuSE Update for Sun Java SUSE-SA:2008:018

Check for the Version of Sun Java OpenVAS Vulnerability Test $Id: gbsuse2008018.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for Sun Java SUSE-SA:2008:018 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

SuSE Update for Sun Java security update SUSE-SA:2008:042

Check for the Version of Sun Java security update OpenVAS Vulnerability Test $Id: gbsuse2008042.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for Sun Java security update SUSE-SA:2008:042 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

CVE-2009-0169

Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as amadmin in the root realm...