5 matches found
CVE-2007-3715
CVE-2007-3715 affects Sun Java System Application Server and Web Server (7.0–9.0 prior to 20070710). The issue arises in XSLT transforms used in XML signatures, where an attacker could craft a stylesheet to trigger a context-dependent Java method execution, enabling remote code execution. The des...
CVE-2007-5153
Technical details about CVE-2007-5153 are not publicly available in the provided documents; affected products, impact, and remediation specifics are not disclosed. Monitor for updates from official sources.
CVE-2007-4025
CVE-2007-4025 affects Sun Java System Application Server (SJS) 8.1–9.0 prior to 20070724 on Windows. It allows remote attackers to obtain JSP source code via unspecified vectors. The connected documents do not specify root cause, explicit exploit method, or a fix/remediation. No remediation detai...
CVE-2007-5152
Summary: CVE-2007-5152 affects Sun Java System Access Manager 7.1 when installed in a Sun Java System Application Server 9.1 container. The issue is that authentication is not required after a container restart, enabling remote attackers to perform administrative tasks. The vulnerability is evide...
CVE-2007-4511
The CVE-2007-4511 issue affects Sun Admin Console in Sun Application Server 9.0_0.1. The root problem is that configuration changes are not persisted, causing the SSL and SSL_MutualAuth ORB listener services to enable all protocols and ciphers after a restart. This can allow remote attackers to b...