CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1772 matches found

securityvulns•added 2006/02/08 12:0 a.m.•27 views

[SA18762] Java Web Start Sandbox Security Bypass Vulnerability

TITLE: Java Web Start Sandbox Security Bypass Vulnerability SECUNIA ADVISORY ID: SA18762 VERIFY ADVISORY: http://secunia.com/advisories/18762/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Java Web Start 1.x http://secunia.com/product/1005/ Sun Java JDK 1.5.x...

7AI score

Exploits0

securityvulns•added 2006/02/08 12:0 a.m.•28 views

[SA18760] Sun Java JRE "reflection" APIs Sandbox Security Bypass Vulnerabilities

TITLE: Sun Java JRE "reflection" APIs Sandbox Security Bypass Vulnerabilities SECUNIA ADVISORY ID: SA18760 VERIFY ADVISORY: http://secunia.com/advisories/18760/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Sun Java JDK 1.5.x http://secunia.com/product/4621/ Sun Jav...

Exploits0

securityvulns•added 2006/02/08 12:0 a.m.•31 views

Sun Java sandbox protection bypass

It's possible to bypass sandbox with "reflection" API. This vulnerability can be used for silent trojan installation...

2.7AI score

Exploits0References2Affected Software2

Prion•added 2006/02/04 12:6 a.m.•13 views

Authentication flaw

Unspecified vulnerability in Sun Java System Access Manager 7.0 allows local users logged in as "root" to bypass authentication and gain top-level administrator privileges via the amadmin CLI tool...

7.2CVSS6.8AI score0.00086EPSS

Exploits0References8Affected Software1

NVD•added 2006/02/04 12:6 a.m.•15 views

CVE-2006-0531

Unspecified vulnerability in Sun Java System Access Manager 7.0 allows local users logged in as "root" to bypass authentication and gain top-level administrator privileges via the amadmin CLI tool...

7.2CVSS6.5AI score0.00086EPSS

Exploits0References8

Cvelist•added 2006/02/04 12:0 a.m.•15 views

CVE-2006-0531

Unspecified vulnerability in Sun Java System Access Manager 7.0 allows local users logged in as "root" to bypass authentication and gain top-level administrator privileges via the amadmin CLI tool...

6.5AI score0.00086EPSS

Exploits0References8

CVE•added 2006/02/04 12:0 a.m.•57 views

CVE-2006-0531

CVE-2006-0531 affects Sun Java System Access Manager 7.0. The vulnerability allows local users logged in as root to bypass authentication and gain top-level administrator privileges via the amadmin CLI. Remediation referenced in connected documents includes Sun patches 120954-12 and 120955-12 for...

7.2CVSS6.5AI score0.00086EPSS

Exploits0References8Affected Software1

NVD•added 2005/12/31 5:0 a.m.•12 views

CVE-2005-4806

Multiple unspecified vulnerabilities in Sun Java System Web Proxy Server 3.6 SP7 and earlier allow remote attackers to cause a denial of service unresponsive service via unknown vectors...

5CVSS6.9AI score0.00818EPSS

Exploits0References4

NVD•added 2005/12/31 5:0 a.m.•15 views

CVE-2005-4804

Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote attackers to read .jar files via unknown vectors related to deployed web applications...

5CVSS6.5AI score0.00708EPSS

Exploits0References6

securityvulns•added 2005/12/20 12:0 a.m.•50 views

Sun Java JRE sandbox protection bypass

Few vulnerabilities allow applets to write local files and execute applications...

3.9AI score

Exploits0References2Affected Software3

NVD•added 2005/12/07 11:3 a.m.•10 views

CVE-2005-4045

Unspecified vulnerability in System Communications Services 6 Delegated Administrator 2005Q1 in Sun Java System Messaging Server 2005Q1 allows remote attackers to obtain the Top-Level Administrator TLA default password via unknown vectors, possibly involving configuretopleveladmin.ldif...

7.5CVSS6.7AI score0.01571EPSS

Exploits0References6

NVD•added 2005/12/07 11:3 a.m.•15 views

CVE-2005-4046

Unspecified vulnerability in Reverse SSL Proxy Plug-in for Sun Java System Application Server Standard Edition 7 2004Q2, Application Server Enterprise Edition 8.1 2005Q1, and Sun ONE Application Server 7 Standard Edition, as used in multiple web servers, allows remote attackers to conduct...

4CVSS6.7AI score0.00437EPSS

Exploits0References5

Cvelist•added 2005/12/07 11:0 a.m.•19 views

CVE-2005-4046

6.7AI score0.00437EPSS

Exploits0References5

CVE•added 2005/12/07 11:0 a.m.•49 views

CVE-2005-4046

The CVE-2005-4046 entry affects the Reverse SSL Proxy Plug-in used with Sun Java System Application Server Standard Edition 7 (2004Q2), Application Server Enterprise Edition 8.1 (2005Q1), and Sun ONE Application Server 7 Standard Edition. The vulnerability is unspecified but allows remote attacke...

4CVSS7.1AI score0.00437EPSS

Exploits0References5Affected Software2

CVE•added 2005/12/07 11:0 a.m.•43 views

CVE-2005-4045

Technical details about CVE-2005-4045 are not provided in the supplied documents. The NVD entry mentions an unspecified vulnerability in Sun Java System Messaging Server 2005Q1 enabling TLA password exposure, but vectors, affected versions, and fixes are not disclosed here.

7.5CVSS6.7AI score0.01571EPSS

Exploits0References6Affected Software1

Cvelist•added 2005/12/07 11:0 a.m.•13 views

CVE-2005-4045

6.7AI score0.01571EPSS

Exploits0References6

CERT•added 2005/12/02 12:0 a.m.•32 views

Sun Java Management Extensions privilege escalation vulnerability

Overview A vulnerability in the Sun Java Management Extensions API may allow a remote attacker to execute arbitrary code. Description According to Sun Microsystems:Java Management Extensions JMX technology provides the tools for building distributed, Web-based, modular and dynamic solutions for...

7.5CVSS7.1AI score0.10002EPSS

Exploits0References3

CERT•added 2005/12/02 12:0 a.m.•27 views

Sun Java Runtime Environment applet privilege escalation vulnerability

Overview The Sun Java Runtime Environment JRE may allow an untrusted Java applet to bypass Java security settings and execute arbitrary code. Description The Sun Java Runtime Environment provides the libraries and components necessary to run Java-based applications. There is an unspecified...

7.5CVSS7.3AI score0.05353EPSS

Exploits0References2

securityvulns•added 2005/11/29 12:0 a.m.•28 views

[SA17748] Sun Java JRE Sandbox Security Bypass Vulnerabilities

TITLE: Sun Java JRE Sandbox Security Bypass Vulnerabilities SECUNIA ADVISORY ID: SA17748 VERIFY ADVISORY: http://secunia.com/advisories/17748/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Sun Java SDK 1.4.x http://secunia.com/product/1661/ Sun Java SDK 1.3.x...

7.4AI score

Exploits0

securityvulns•added 2005/11/04 12:0 a.m.•25 views

[SA17395] Sun Java System Communications Express Configuration File Disclosure

TITLE: Sun Java System Communications Express Configuration File Disclosure SECUNIA ADVISORY ID: SA17395 VERIFY ADVISORY: http://secunia.com/advisories/17395/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Sun Java System Communications Express...

0.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by