One Application Server Security Vulnerabilities and Issues — One Application Server CVE List

Lucene search

SunOne Application Server

3 matches found

cve•added 2002/10/04 4:0 a.m.•54 views

CVE-2002-1042

Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter.

5CVSS6.8AI score0.08581EPSS

cve•added 2005/05/10 4:0 a.m.•39 views

CVE-2004-1815

Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote attackers to cause a denial of service (memory consumption).

5CVSS6.7AI score0.08586EPSS

cve•added 2003/06/30 4:0 a.m.•35 views

CVE-2003-0412

Sun ONE Application Server 7.0 for Windows 2000/XP does not log the complete URI of a long HTTP request, which could allow remote attackers to hide malicious activities.

5CVSS7.1AI score0.01092EPSS