Format string

Format string vulnerability in libwebconsoleservices.so in Sun Java Web Console 2.2.2 through 2.2.5 allows remote attackers to cause a denial of service application crash, obtain sensitive information, and possibly execute arbitrary code via unspecified vectors during a failed login attempt,...

CVE-2007-1681

Format string vulnerability in libwebconsoleservices.so in Sun Java Web Console 2.2.2 through 2.2.5 allows remote attackers to cause a denial of service application crash, obtain sensitive information, and possibly execute arbitrary code via unspecified vectors during a failed login attempt,...

CVE-2007-1681

CVE-2007-1681 relates to a format-string vulnerability in Sun Java Web Console (Lockhart) specifically in libwebconsole_services.so, affecting Sun Java Web Console versions 2.2.2–2.2.5. The issue allows remote attackers to crash the application, potentially disclose sensitive information, and pos...

CVE-2007-1681

Format string vulnerability in libwebconsoleservices.so in Sun Java Web Console 2.2.2 through 2.2.5 allows remote attackers to cause a denial of service application crash, obtain sensitive information, and possibly execute arbitrary code via unspecified vectors during a failed login attempt,...

Solaris 10 (x86) : 122794-36 (deprecated)

Sun Java System Communications Express 6.3-23.01x86: core patch. Date this patch was last updated by Sun : Jun/25/12 This plugin has been deprecated and either replaced with individual 122794 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security,...

Solaris 10 (sparc) : 121211-02 (deprecated)

SunOS 5.10: Sun Java Web Console Lockhart Patch. Date this patch was last updated by Sun : Apr/16/07 This plugin has been deprecated and either replaced with individual 121211 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@...

Solaris 10 (sparc) : 122793-36 (deprecated)

Sun Java System Communications Express 6.3-23.01: core patch. Date this patch was last updated by Sun : Jun/25/12 This plugin has been deprecated and either replaced with individual 122793 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Solaris 10 (x86) : 121212-02 (deprecated)

SunOS 5.10x86: Sun Java Web Console Lockhart Patch. Date this patch was last updated by Sun : Apr/16/07 This plugin has been deprecated and either replaced with individual 121212 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Solaris 9 (sparc) : 122793-36

Sun Java System Communications Express 6.3-23.01: core patch. Date this patch was last updated by Sun : Jun/25/12 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

Sun Java Enterprise Server NSS Remote Code Execution Vulnerabilities

The version of Sun Java Enterprise Server ES installed on the remote host includes a set of libraries known as Network Security Services NSS for use with many of Java ES' services. On a Windows host, though, vulnerabilities in their implementation of SSL2 support reportedly allow a remote attacke...

Sun Java System Directory Server未初始化指针远程内存破坏漏洞

Sun Java System Directory Server是一款由Sun公司开发的LDAP服务器。 Sun Java System Directory Server存在设计错误，远程攻击者可以利用漏洞对服务程序进行拒绝服务攻击。 问题存在于针对部分失败查询类型的清理代码中，可导致服务器调用free，并从未初始化内存中获取地址，非法内存的引用可导致拒绝服务攻击。 Sun Java System Directory Server 5.2 可参考如下补丁程序： http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-...

CVE-2006-4175

The CVE-2006-4175 issue affects Sun Java System Directory Server and ONE Directory Server (ns-slapd) versions 5.2 Patch4 and earlier, and 5.1/5.2 for ONE. Affected component: LDAP server; root cause: malformed BER queries in the BER decoding/cleanup path lead to a free of uninitialized memory. Im...

CVE-2006-4175

The LDAP server ns-slapd in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service crash via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations...

iDefense Security Advisory 03.23.07: Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability

Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability iDefense Security Advisory 03.23.07 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 23, 2007 I. BACKGROUND Sun Java System Directory Server is an LDAP server distributed by Sun with multiple...

CVE-2007-1526

CVE-2007-1526 affects Sun Java System Web Server 6.1 prior to 20070314. The flaw allows remote authenticated users with revoked client certificates to bypass CRL checks and access secure web server instances running under a different admin account via unspecified vectors. Remediation in the conne...

Sun Java Web Server unauthorized access

No description provided...

Code injection

Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application...

CVE-2007-1488

Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application...

CVE-2007-1488

CVE-2007-1488 concerns Sun Java System Web Server 6.0 and 6.1 prior to 20070315. The initial description marks the vulnerability as unspecified and notes that remote attackers could gain unauthorized access to data (potentially involving a sample application). The connected documents confirm the ...

CVE-2007-1488

Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application...