CVE-2009-2597

The Sun Java System SJS Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a denial of service daemon crash via a GET request...

CVE-2009-2597

The Sun Java System SJS Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a denial of service daemon crash via a GET request...

openSUSE Security Update : java-1_5_0-sun (java-1_5_0-sun-375)

The version update to SUN Java 1.5.0u17 fixes numerous security issues such as privilege escalations. CVE-2008-5360, CVE-2008-5359, CVE-2008-5358, CVE-2008-5357, CVE-2008-5356, CVE-2008-5344, CVE-2008-5343, CVE-2008-5342, CVE-2008-5341, CVE-2008-5340, CVE-2008-5339, CVE-2008-2086, CVE-2008-5355,...

openSUSE Security Update : java-1_5_0-sun (java-1_5_0-sun-96)

Sun Java was updated to 1.5.0u16 to fix following security vulnerabilities : CVE-2008-3115: Secure Static Versioning in Sun Java JDK and JRE 6 Update 6 and earlier, and 5.0 Update 6 through 15, does not properly prevent execution of applets on older JRE releases, which might allow remote attacker...

CVE-2009-0217

The design of the W3C XML Signature Syntax and Processing XMLDsig recommendation, as implemented in products including 1 the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; 2 the WebLogic Server component in BEA Product Suite 10.3, 10.0...

Sun Java Web Console Multiple XSS Vulnerabilities

The host is running Java Web Console and is prone to Multiple Cross-Site Scripting Vulnerabilities. OpenVAS Vulnerability Test $Id: gbsunjavawebconsolexssvuln.nasl 4892 2016-12-30 15:39:07Z teissa $ Sun Java Web Console Multiple XSS Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009...

Sun Java Web Console 3.0.2 - 3.0.5 Multiple XSS Vulnerabilities

Java Web Console is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sun Java System Web Server .jsp文件信息泄露漏洞

BUGTRAQ ID: 35577 Sun Java System Web Server是高性能的WEB服务器。 Sun Java System Web Server在处理对Java Server页面的请求时存在错误，远程攻击者可以在所请求文件的扩展名后附加::$DATA来读取JSP资源的内容。 Sun Java System Web Server 7.0 Update 5 Sun Java System Web Server 6.1 SP11 Sun Java System Web Server 6.1 SP10 厂商补丁： Sun ---...

Sun Java System Web Server ::$DATA Extension Request JSP Resource Disclosure

The remote Sun Java System Web Server or an older version, such as Sun ONE Web Server or iPlanet reveals the source code of '.jsp' files when an attacker appends '::$DATA' to the request. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid39618; scriptversion"1.10";...

Sun Java Web Console helpwindow.jsp / masthead.jsp Multiple XSS

The version of Sun Java Web Console running on the remote host has multiple cross-site scripting vulnerabilities in 'helpwindow.jsp' and 'masthead.jsp'. A remote attacker could exploit these to trick a user into executing arbitrary HTML or script code in the context of the web server. %NASLMINLEV...

CVE-2009-2268

Cross-site scripting XSS vulnerability in the Cross-Domain Controller CDC servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-2283

Multiple cross-site scripting XSS vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the Cross-Domain Controller CDC servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-2268

Cross-site scripting XSS vulnerability in the Cross-Domain Controller CDC servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-2268

CVE-2009-2268 affects Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 where the Cross-Domain Controller (CDC) servlet is vulnerable to cross‑site scripting via unspecified vectors. The issue is evidenced in Nessus/Solaris patches that reference CVE-2009-2268 among related fixes (e.g., ...

CVE-2009-2283

CVE-2009-2283 : The Sun Java Web Console 3.0.2–3.0.5 (Sun Solaris 10) contains multiple XSS vulnerabilities in the help jsp scripts (e.g., helpwindow.jsp, masthead.jsp). An attacker could inject arbitrary HTML/script in the user’s browser session. The vectors are not specified in the provided doc...

CVE-2009-2283

Multiple cross-site scripting XSS vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Sun Java System Web Proxy Server Vulnerabilities (Windows)

This host has Sun Java Web Server running on Windows, which is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservxssvulnwin.nasl 5369 2017-02-20 14:48:07Z cfi $ Sun Java System Web Server XSS Vulnerability Windows Authors: Sharath S Copyright: Copyrig...

Sun Java System Web Proxy Server Vulnerabilities (Windows)

This host has Sun Java Web Server running on Linux, which is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservxssvulnlin.nasl 5158 2017-02-01 14:53:04Z mime $ Sun Java System Web Server XSS Vulnerability Linux Authors: Sharath S Copyright: Copyright ...