CVE-2010-3564

Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...

CVE-2010-3579

Unspecified vulnerability in the 1 Sun Convergence 1 and 2 Sun Java Communications Suite 7 components in Oracle Sun Products Suite 1.0 and 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail...

CVE-2010-3575

CVE-2010-3575 affects Oracle Communications Messaging Server (Sun Java System Messaging Server) within Oracle Sun Product Suite 6.0, 6.2, 6.3, and 7.0. In the Oracle Sun Products Suite risk matrix, the vulnerability is tied to the Web Mail component and is remotely exploitable without authenticat...

CVE-2010-3545

CVE-2010-3545 affects Oracle iPlanet Web Server (Sun Java System Web Server), part of Oracle Sun Product Suite 7.0. The vulnerability is in the Administration component and allows remote attackers to affect confidentiality and integrity via unknown vectors. Public sources in connected docs corrob...

CVE-2010-3545

Unspecified vulnerability in the Oracle iPlanet Web Server Sun Java System Web Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration...

CVE-2010-2414

Unspecified vulnerability in the 1 Sun Convergence 1 and 2 Sun Java Communications Suite 7 components in Oracle Sun Products Suite 1.0 and 7.0 allows remote attackers to affect confidentiality via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in the Oracle iPlanet Web Server Sun Java System Web Server component in Oracle Sun Products Suite 6.1 and 7.0 allows remote attackers to affect integrity via unknown vectors related to Web Container...

Oracle Java APPLET Tag Memory Corruption

Source: http://skypher.com/index.php/2010/10/13/issue-18-oracle-java-applet-childre/ o=document.createElement"applet"; setTimeoutfunction x=o.children; location.reload; , 1; Tested with: Windows XP sp3 5.1.2600 MSIE 7.0.5730.13 MSIE 8.0.6001.18702 Sun Java Version 6 Update 20 1.6.020-b02...

Oracle Java APPLET Tag Children Property Memory Corruption

Exploit for windows platform in category dos / poc ========================================================== Oracle Java APPLET Tag Children Property Memory Corruption ========================================================== Source:...

CVE-2010-2414

Unspecified vulnerability in the 1 Sun Convergence 1 and 2 Sun Java Communications Suite 7 components in Oracle Sun Products Suite 1.0 and 7.0 allows remote attackers to affect confidentiality via unknown vectors...

CVE-2010-3512

CVE-2010-3512 affects Oracle iPlanet Web Server (Sun Java System Web Server) 7.0u8. The vulnerability is an unspecified issue in the WebDAV-related functionality that could allow remote authenticated users to affect confidentiality. The NVD entry describes an unspecified vulnerability in the WebD...

CVE-2010-3514

Unspecified vulnerability in the Oracle iPlanet Web Server Sun Java System Web Server component in Oracle Sun Products Suite 6.1 and 7.0 allows remote attackers to affect integrity via unknown vectors related to Web Container...

CVE-2010-3514

CVE-2010-3514 affects Oracle iPlanet Web Server (Sun Java System Web Server) 7.0.x prior to 7.0.9. The vulnerability is in the Web Container and enables HTTP response splitting via crafted responses (CR/LF handling in headers). CVSS 2.0 base score is 4.3 (Network, Medium complexity, no auth; inte...

CVE-2010-2414

CVE-2010-2414 affects Sun Convergence 1 and Sun Java Communications Suite 7 components in Oracle Sun Product Suite 1.0 and 7.0. Description indicates an unspecified vulnerability that could allow remote attackers to affect confidentiality via unknown vectors; CVSS context from Oracle CPU notes th...

Oracle Java - APPLET Tag Children Property Memory Corruption

Oracle Java - APPLET Tag Children Property Memory Corruption Source: http://skypher.com/index.php/2010/10/13/issue-18-oracle-java-applet-childre/ o=document.createElement"applet"; setTimeoutfunction x=o.children; location.reload; , 1; Tested with: Windows XP sp3 5.1.2600 MSIE 7.0.5730.13 MSIE...

Oracle Java - APPLET Tag Children Property Memory Corruption

Source: http://skypher.com/index.php/2010/10/13/issue-18-oracle-java-applet-childre/ o=document.createElement"applet"; setTimeoutfunction x=o.children; location.reload; , 1; Tested with: Windows XP sp3 5.1.2600 MSIE 7.0.5730.13 MSIE 8.0.6001.18702 Sun Java Version 6 Update 20 1.6.020-b02...

Sun Java Web Start BasicServiceImpl Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Sun Java Runtime. User interaction is required in that a target must visit a malicious page. The specific flaw exists within the com.sun.jnlp.BasicServiceImpl class. By abusing how Web Start...

Sun Java - Web Start Plugin Command Line Argument Injection (Metasploit)

$Id: javawsarginjectaltjvm.rb 10404 2010-09-21 00:13:30Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Sun Java - JRE AWT setDiffICM Buffer Overflow (Metasploit)

$Id: javasetdifficmbof.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Sun Java - Calendar Deserialization (Metasploit)

$Id: javacalendardeserialize.rb 10389 2010-09-20 04:38:13Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...