CVE-2009-0169

Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as amadmin in the root realm...

CVE-2009-0170

Technical details about CVE-2009-0170 are not publicly available in the provided connected documents. Monitor for updates from vendors and advisories to determine affected products, impact, and fixes.

CVE-2009-0169

Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as amadmin in the root realm...

CVE-2009-0169

CVE-2009-0169 affects Sun Java System Access Manager 7.1. The vulnerability allows a remote authenticated sub-realm administrator to escalate privileges by creating the amadmin account in the sub-realm and then logging in as amadmin in the root realm. The available data confirms an in-realm privi...

Sun Java System Access Manager 'sub-realm'特权提升漏洞

BUGTRAQ ID: 33266 CNCAN ID：CNCAN-2009011503 Sun Java System Access Manager是一款安全单点登录、认证、授权解决方案。 Sun Java System Access Manager存在安全漏洞，允许sub-real管理员提升特权或访问root realm作为管理员。 目前没有详细漏洞细节提供。 Sun Java System Access Manager 7.1 Windows Sun Java System Access Manager 7.1 Solaris x86 Sun Java System Access...

Java WebStart privilege escalation

Unspecified vulnerability in Java Web Start JWS and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows untrusted JWS applications to gain privileges to access local files or applications via unknown vectors,...

JRE allows unauthorized file access and connections to localhost

Unspecified vulnerability in Java Runtime Environment JRE with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier allows code that is loaded from a local filesystem to read arbitrary files and make...

SUSE: Security Advisory for Sun Java (SUSE-SA:2009:001)

The remote host is missing updates announced in advisory SUSE-SA:2009:001. Copyright C 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...

SuSE Security Advisory SUSE-SA:2009:001 (Sun Java)

The remote host is missing updates announced in advisory SUSE-SA:2009:001. OpenVAS Vulnerability Test $Id: susesa2009001.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:001 Sun Java Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

openSUSE 10 Security Update : java-1_5_0-sun (java-1_5_0-sun-5875)

The version update to SUN Java 1.5.0u17 fixes numerous security issues such as privilege escalations. CVE-2008-5360, CVE-2008-5359, CVE-2008-5358, CVE-2008-5357, CVE-2008-5356, CVE-2008-5344, CVE-2008-5343, CVE-2008-5342, CVE-2008-5341, CVE-2008-5340, CVE-2008-5339, CVE-2008-2086, CVE-2008-5355,...

openSUSE 10 Security Update : java-1_6_0-sun (java-1_6_0-sun-5876)

The version update to SUN Java 1.6.011-b03 fixes numerous security issues such as privilege escalations. CVE-2008-5360, CVE-2008-5359, CVE-2008-5358, CVE-2008-5357, CVE-2008-5356, CVE-2008-5344, CVE-2008-5343, CVE-2008-5342, CVE-2008-5341, CVE-2008-5340, CVE-2008-5339, CVE-2008-2086, CVE-2008-535...

CVE-2008-5662

Multiple buffer overflows in Sun Java Wireless Toolkit WTK for CLDC 2.5.2 and earlier allow downloaded programs to execute arbitrary code via unknown vectors...

Buffer overflow

Multiple buffer overflows in Sun Java Wireless Toolkit WTK for CLDC 2.5.2 and earlier allow downloaded programs to execute arbitrary code via unknown vectors...

CVE-2008-5662

Multiple buffer overflows in Sun Java Wireless Toolkit WTK for CLDC 2.5.2 and earlier allow downloaded programs to execute arbitrary code via unknown vectors...

CVE-2008-5662

CVE-2008-5662 relates to multiple buffer overflows in Sun Java Wireless Toolkit (WTK) for CLDC 2.5.2 and earlier. Root cause: multiple buffer overflow conditions that allow downloaded programs to execute arbitrary code. Affected product/version: Sun Java Wireless Toolkit with CLDC 2.5.2 and earli...

Sun Java System Portal Server远程文件泄露漏洞

Sun Java System Portal Server是一种Web信息中心系统，用于工作协作和提供信息服务。 Sun Java System Portal Server的Web Console组件在处理用户请求时存在漏洞，远程攻击者可能利用此漏洞非授权访问到系统文件。 Sun Java System Portal Server 7.2 Sun Java System Portal Server 7.1 Sun --- Sun已经为此发布了一个安全公告（243886）以及相应补丁: 243886：Security Vulnerability Related to Sun Java...

Sun Java System Identity Manager Detection

Sun Java System Identity Manager, an enterprise tool for identity management, is installed on the remote web server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid35104; scriptversion"1.15"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/12";...

CVE-2008-5550

Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirecturl parameter...

CVE-2008-5549

Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the product's configuration information via unknown vectors related to "access to secure files by ThemeServlet."...

Code injection

Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the product's configuration information via unknown vectors related to "access to secure files by ThemeServlet."...