Sun Java multiple security vulnerabilities

Multiple buffer overflows and code executions...

KLA10344 Multiple vulnerabilities in Sun Java SE

Multiple serious vulnerabilities have been found in SUN Java SE. Malicious users can exploit these vulnerabilities to cause denial of service or bypass authentication. Below is a complete list of vulnerabilities 1. Unknown vectors can be exploited remotely via specially designed HTTP headers or...

CVE-2009-3874

Integer overflow in the JPEGImageReader implementation in the ImageI/O component in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to execute arbitrary code via large subsample dimensions in a JPEG file...

CVE-2009-3877

Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to cause a denial of service memory consumption via crafted HTTP headers, which are not...

CVE-2009-3876

Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to cause a denial of service memory consumption via crafted DER encoded data, which is not...

CVE-2009-3873

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

JRE JPEG JFIF Decoder issue (6862969)

Unspecified vulnerability in the JPEG JFIF Decoder in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, aka Bug Id 6862969...

Sun Java Runtime Environment JPEGImageReader Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun's Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the processing of JPEG image...

Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the processing of arguments to t...

Sun Java JRE Multiple Vulnerabilities (269868 / 269869 / 270476 ..)

The version of Sun Java Runtime Environment JRE installed on the remote host is earlier than 6 Update 17 / 5.0 Update 22 / 1.4.224 / 1.3.127. Such versions are potentially affected by the following security issues : - The Java update mechanism on non-English versions does not update the JRE when ...

Sun Java SE November 2009 Multiple Security Vulnerabilities

Description Sun has released updates to address multiple security vulnerabilities in Java SE. Successful exploits may allow attackers to bypass certain security restrictions, run untrusted applets with elevated privileges, execute arbitrary code, and cause denial-of-service conditions. Other...

Sun Java SE November 2009 - Multiple Vulnerabilities (1)

source: https://www.securityfocus.com/bid/36881/info Sun has released updates to address multiple security vulnerabilities in Java SE. Successful exploits may allow attackers to bypass certain security restrictions, run untrusted applets with elevated privileges, execute arbitrary code, and cause...

Sun Java SE November 2009 - Multiple Vulnerabilities (1)

Sun Java SE November 2009 - Multiple Vulnerabilities 1 source: https://www.securityfocus.com/bid/36881/info Sun has released updates to address multiple security vulnerabilities in Java SE. Successful exploits may allow attackers to bypass certain security restrictions, run untrusted applets with...

Sun Java SE November 2009 - Multiple Vulnerabilities (2)

Sun Java SE November 2009 - Multiple Vulnerabilities 2 source: https://www.securityfocus.com/bid/36881/info Sun has released updates to address multiple security vulnerabilities in Java SE. Successful exploits may allow attackers to bypass certain security restrictions, run untrusted applets with...

Sun Java System Web Server未明远程缓冲区溢出漏洞

Bugraq ID: 36813 Sun Java System Web Server是一款基于Java的WEB服务程序。 Sun Java System Web Server存在一个未明安全漏洞，远程攻击者可以利用漏洞进行缓冲区溢出，可导致任意代码执行。 目前没有详细漏洞细节提供。 Sun Java System Web Server 7.0 Update 6 目前没有解决方案提供： http://wwws.sun.com/software/products/websrvr/homewebsrvr.html...

SLES10: Security update for Sun Java

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java-142-sun java-142-sun-alsa java-142-sun-devel java-142-sun-jdbc java-142-sun-plugin More details may also be found by searching for the SuSE Enterprise...

SLES10: Security update for Sun Java 1.4.2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java-142-sun java-142-sun-alsa java-142-sun-devel java-142-sun-jdbc java-142-sun-plugin More details may also be found by searching for the SuSE Enterprise...

SLES10: Security update for Sun Java 1.4.2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java-142-sun java-142-sun-alsa java-142-sun-devel java-142-sun-jdbc java-142-sun-plugin More details may also be found by searching for the SuSE Enterprise...

SLES10: Security update for Sun Java

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java-142-sun java-142-sun-alsa java-142-sun-devel java-142-sun-jdbc java-142-sun-plugin More details may also be found by searching for the SuSE Enterprise...

SLES9: Security update for Sun Java 2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java2 java2-jre For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5020427 within...