Lucene search
K
SunJava System Web Server

4 matches found

CVE
CVE
added 2006/05/20 2:59 a.m.73 views

CVE-2006-2501

CVE-2006-2501 describes a cross-site scripting (XSS) vulnerability in multiple Sun web/server products (Sun ONE Web Server 6.0 SP9 and earlier; Sun Java System Web Server 6.1 SP4 and earlier; Sun ONE Application Server 7 Update 6 and earlier; Java System Application Server 7 2004Q2 Update 2 and e...

6.8CVSS5.9AI score0.03398EPSS
CVE
CVE
added 2006/07/28 11:0 p.m.68 views

CVE-2006-3921

Summary (CVE-2006-3921): Affects Sun Java System Application Server (SJSAS) 7–8.1 and Web Server (SJSWS) 6.0–6.1. The issue permits remote authenticated users to read files outside the “document root” via a direct request using a UTF-8 encoded URI. The NVD entry lists a Medium base score (AV:N/AC...

4CVSS6.1AI score0.02167EPSS
CVE
CVE
added 2006/12/04 11:0 a.m.63 views

CVE-2006-6276

Sun Java System Proxy Server versions prior to 20061130 are affected by an HTTP request smuggling vulnerability when used with Sun Java System Application Server or Sun Java System Web Server. Exploitation could bypass HTTP request filtering, enable web session hijacking, permit cross-site script...

6.8CVSS6.5AI score0.0361EPSS
CVE
CVE
added 2006/11/03 12:0 a.m.53 views

CVE-2006-5654

CVE-2006-5654 concerns the NSS component used by Sun Java System Web Server 6.0 (pre-SP10) and ONE Application Server 7 (pre-Update 3) when SSLv2 is enabled, allowing remote authenticated users to cause a denial of service. Connected documents indicate related NSS issues (e.g., CVE-2006-5201) and...

4CVSS6AI score0.02044EPSS