Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1772 matches found

Cvelist
Cvelistadded 2010/01/20 4:0 p.m.20 views

CVE-2010-0360

Sun Java System Web Server aka SJWS 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and discover the contents of memory locations, via a malformed HTTP TRACE request that includes a long URI and many empty headers, related to an "overflow." NOTE: this might overlap...

6.2AI score0.00801EPSS
Exploits1References2
CVE
CVEadded 2010/01/20 4:0 p.m.104 views

CVE-2010-0361

CVE-2010-0361 affects Sun Java System Web Server (SJWS) 7.0 Update 7, specifically the WebDAV handler: a stack-based buffer overflow in the WebDAV implementation of webservd can be triggered by a long URI in an HTTP OPTIONS request. Public exploit code and reports indicate remote attacker can cau...

10CVSS7.4AI score0.88394EPSS
Exploits20References1Affected Software1
Tenable Nessus
Tenable Nessusadded 2010/01/20 12:0 a.m.24 views

Solaris 5.9 (x86) : 126356-03

Sun Java System Access Manager 7.1 Solaris. Date this patch was last updated by Sun : Jun/19/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security if !...

1AI score0.56626EPSS
Exploits10References7
Prion
Prionadded 2010/01/14 7:30 p.m.13 views

Null pointer dereference

The coregetproxyauthdn function in ns-slapd in Sun Java System Directory Server Enterprise Edition 7.0 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted LDAP Search Request message...

5CVSS7.1AI score0.08865EPSS
Exploits1References6Affected Software1
NVD
NVDadded 2010/01/14 7:30 p.m.14 views

CVE-2010-0313

The coregetproxyauthdn function in ns-slapd in Sun Java System Directory Server Enterprise Edition 7.0 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted LDAP Search Request message...

5CVSS6.6AI score0.08865EPSS
Exploits1References6
Prion
Prionadded 2010/01/14 7:30 p.m.12 views

Input validation

Unspecified vulnerability in Sun Java System Identity Manager aka IdM 8.1.0.5 and 8.1.0.6, when Sun Java System Access Manager, OpenSSO Enterprise 8.0, or IBM Tivoli Access Manager is used, allows remote attackers to obtain administrative access via unknown vectors...

6.8CVSS7AI score0.01348EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2010/01/14 7:0 p.m.17 views

CVE-2010-0311

Unspecified vulnerability in Sun Java System Identity Manager aka IdM 8.1.0.5 and 8.1.0.6, when Sun Java System Access Manager, OpenSSO Enterprise 8.0, or IBM Tivoli Access Manager is used, allows remote attackers to obtain administrative access via unknown vectors...

6.4AI score0.01348EPSS
Exploits0References8
CVE
CVEadded 2010/01/14 7:0 p.m.42 views

CVE-2010-0313

CVE-2010-0313 affects Sun Java System Directory Server Enterprise Edition 7.0. The vulnerable component is the ns-slapd function core_get_proxyauth_dn, triggered by a crafted LDAP Search Request, which can cause a NULL pointer dereference and a daemon crash (DoS) without requiring authentication....

5CVSS6.8AI score0.08865EPSS
Exploits1References6Affected Software1
CVE
CVEadded 2010/01/14 7:0 p.m.39 views

CVE-2010-0311

Technical details about CVE-2010-0311 are not publicly provided in the supplied documents; no concrete affected products, versions, or remediation info are listed here. Monitor for updates in the connected sources.

6.8CVSS6.7AI score0.01348EPSS
Exploits0References8Affected Software1
RedHat Linux
RedHat Linuxadded 2010/01/14 4:32 p.m.2 views

java-1.6.0-sun: Privilege escalation via crafted image file due improper color profiles parsing (6862970)

Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 does not properly parse color profiles, which allows remote attackers to gain privileges via a crafted image file, aka Bug Id 6862970...

9.3CVSS5.9AI score0.1314EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2010/01/14 4:32 p.m.2 views

OpenJDK JRE AWT setBytePixels heap overflow (6872358)

Heap-based buffer overflow in the setBytePixels function in the Abstract Window Toolkit AWT in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote...

9.3CVSS6.4AI score0.12545EPSS
Exploits1References4
Check Point Advisories
Check Point Advisoriesadded 2010/01/14 12:0 a.m.4 views

Sun Java Web Start Splashscreen PNG Processing Buffer Overflow (CVE-2009-1097)

The Sun Java Web Start is a component of the Java 2 Runtime Environment JRE. It facilitates network deployment of applications developed with the Java programming language. This component enables stand-alone Java applications to be downloaded from a remote network location and run on a target...

9.3CVSS6.8AI score0.04193EPSS
Exploits0
OpenVAS
OpenVASadded 2010/01/12 12:0 a.m.9 views

Sun Java System Directory Server Detection (LDAP)

LDAP based detection of Sun Java System Directory Server. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2010/01/10 12:0 a.m.27 views

Sun Java System Directory Server 7.0 - core_get_proxyauth_dn Denial of Service

Sun Java System Directory Server 7.0 - coregetproxyauthdn Denial of Service source: https://www.securityfocus.com/bid/37699/info Sun Java System Directory Server is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the effected application, denying service to...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2010/01/10 12:0 a.m.31 views

RHEL 4 : Sun Java Runtime in Satellite Server (RHSA-2008:0636)

Red Hat Network Satellite Server version 5.1.1 is now available. This update includes fixes for a number of security issues in the Red Hat Network Satellite Server Sun Java Runtime Environment. This update has been rated as having low security impact by the Red Hat Security Response Team. This...

10CVSS8.1AI score0.23658EPSS
Exploits5References15
NVD
NVDadded 2010/01/08 5:30 p.m.13 views

CVE-2010-0273

Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to execute arbitrary code by sending a process memory address and crafted data to TCP port 80, as demonstrated by the vdsjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no...

7.5CVSS7.5AI score0.02024EPSS
Exploits1References2
NVD
NVDadded 2010/01/08 5:30 p.m.15 views

CVE-2010-0272

Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to discover process memory locations via crafted data to TCP port 80, as demonstrated by the vdsjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information...

7.5CVSS6.9AI score0.0057EPSS
Exploits1References3
Prion
Prionadded 2010/01/08 5:30 p.m.16 views

Heap overflow

Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to discover process memory locations via crafted data to TCP port 80, as demonstrated by the vdsjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information...

7.5CVSS7.2AI score0.0057EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2010/01/08 5:30 p.m.13 views

Code injection

Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to execute arbitrary code by sending a process memory address and crafted data to TCP port 80, as demonstrated by the vdsjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no...

7.5CVSS7.7AI score0.02024EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2010/01/08 5:0 p.m.16 views

CVE-2010-0272

Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to discover process memory locations via crafted data to TCP port 80, as demonstrated by the vdsjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information...

6.9AI score0.0057EPSS
Exploits1References3
Rows per page
Query Builder