1772 matches found
Sun Java JRE vulnerable to arbitrary code execution via an unspecified error
Overview A vulnerability in the Sun Java Runtime Environment may allow an attacker to execute arbitrary code on a vulnerable system. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for...
Sun Java JRE vulnerable to privilege escalation
Overview A vulnerability in the Sun Java Runtime Environment may allow a malicious applet to gain elevated privileges. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for multiple operati...
CVE-2006-6745
Multiple unspecified vulnerabilities in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 7 and earlier, and Java System Development Kit SDK and JRE 1.4.212 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges,...
CVE-2006-6736
Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 6 and earlier, Java System Development Kit SDK and JRE 1.4.212 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...
CVE-2006-6737
Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 5 and earlier, Java System Development Kit SDK and JRE 1.4.210 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...
CVE-2006-6731
Multiple buffer overflows in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 7 and earlier, Java System Development Kit SDK and JRE 1.4.212 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allow attackers to develop Java applets that read, write, or execute...
CVE-2006-6736
CVE-2006-6736 affects Sun JDK/JRE 5.0 Update 6 and earlier, J2SDK/JRE 1.4.2_12 and earlier 1.4.x, and JDK/JRE 1.3.1_18 and earlier. The vulnerability allows an untrusted applet to access data in other applets (two issues). The connected advisories reference fixes in IBM/Sun Java updates and list ...
CVE-2006-6737
CVE-2006-6737 affects Sun JDK/JRE 5.0 Update 5 and earlier, J2SDK/JRE 1.4.2_10 and earlier (1.4.x), and JRE/JDK 1.3.1_18 and earlier. The issue allows an untrusted applet to access data in other applets (cross-applet data access). Red Hat and SUSE/OpenVAS entries confirm IBM/Java updates mitigate...
CVE-2006-6737
Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 5 and earlier, Java System Development Kit SDK and JRE 1.4.210 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...
CVE-2006-6736
Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 6 and earlier, Java System Development Kit SDK and JRE 1.4.212 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...
CVE-2006-6745
CVE-2006-6745 describes serialization-related flaws in Sun JDK/JRE 5.0 Update 7 and earlier, and Java SDK/JRE 1.4.2_12 and earlier 1.4.x, that could allow an untrusted Java applet or application to gain privileges. The connected advisories confirm these issues affect multiple IBM Java runtimes as...
CVE-2006-6731
Multiple buffer overflows in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 7 and earlier, Java System Development Kit SDK and JRE 1.4.212 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allow attackers to develop Java applets that read, write, or execute...
CVE-2006-6745
Multiple unspecified vulnerabilities in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 7 and earlier, and Java System Development Kit SDK and JRE 1.4.212 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges,...
[SA23445] Sun Java JRE Multiple Vulnerabilities
TITLE: Sun Java JRE Multiple Vulnerabilities SECUNIA ADVISORY ID: SA23445 VERIFY ADVISORY: http://secunia.com/advisories/23445/ CRITICAL: Highly critical IMPACT: Privilege escalation, System access WHERE: From remote SOFTWARE: Sun Java JDK 1.5.x http://secunia.com/product/4621/ Sun Java JRE 1.5.x...
[SA23398] Sun Java JRE Applet Security Bypass
TITLE: Sun Java JRE Applet Security Bypass SECUNIA ADVISORY ID: SA23398 VERIFY ADVISORY: http://secunia.com/advisories/23398/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: Sun Java JDK 1.5.x http://secunia.com/product/4621/ Sun Java JRE 1.5.x / 5.x...
Sun Java系统服务器嵌入式HTTP请求处理漏洞
Sun Java系统应用和WEB服务器都是与J2EE平台兼容的应用服务器。 Sun Java System Application Server在处理HTTP请求时存在漏洞,远程攻击者可能利用此漏洞执行各种攻击。 如果Sun Java System Application Server或Sun Java System Web Server使用Sun Java System Proxy Server的话,由于未能正确地实现HTTP/1.1...
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web...
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web...
CVE-2006-6276
Sun Java System Proxy Server versions prior to 20061130 are affected by an HTTP request smuggling vulnerability when used with Sun Java System Application Server or Sun Java System Web Server. Exploitation could bypass HTTP request filtering, enable web session hijacking, permit cross-site script...
[SA22910] Sun Java JRE Swing Library Applet Security Bypass
TITLE: Sun Java JRE Swing Library Applet Security Bypass SECUNIA ADVISORY ID: SA22910 VERIFY ADVISORY: http://secunia.com/advisories/22910/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: Sun Java JRE 1.5.x / 5.x http://secunia.com/product/4228/ Sun Java JDK 1.5...