Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

sun java system web server 6.1 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2007-6569
Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x prior to 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246.
Sun Java System Web Proxy Server 3.6Sun Java System Web Server 6.1Sun Java System Web Proxy ServerSun Java System Web Server 7.0
5
CVSSv2
CVE-2005-1889
Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and previous versions allows malicious users to read files.
Sun Java System Web Server 6.1Sun Java System Web Server
4.3
CVSSv2
CVE-2008-2166
Cross-site scripting (XSS) vulnerability in the search module in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 2 allows remote malicious users to inject arbitrary web script or HTML via unknown parameters in index.jsp.
Sun Java System Web Server 6.1Sun Java System Web Server 7.0
5
CVSSv2
CVE-2009-2445
Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote malicious users to read arbitrary JSP files via an alternate data stream syntax, as demonstrated by a .jsp::$DAT...
Sun Java System Web Server 6.1Sun Java System Web Server 7.0
7.5
CVSSv2
CVE-2007-1488
Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 prior to 20070315 allows remote malicious users to "gain unauthorized access to data", possibly involving a sample application.
Sun Java System Web Server 6.0Sun Java System Web Server 6.1
7.5
CVSSv2
CVE-2007-4164
CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 prior to 20070802, when the redirect Server Application Function (SAF) uses the url-prefix parameter and escape is disabled, or an Error directive uses the url-prefix parameter in obj.c...
Sun Java System Web Server 6.1Sun Java System Web Server 7.0
4.3
CVSSv2
CVE-2008-2518
Cross-site scripting (XSS) vulnerability in the advanced search mechanism (webapps/search/advanced.jsp) in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, probably rela...
Sun Java System Web Server 6.1Sun Java System Web Server 7.0
5
CVSSv2
CVE-2004-2216
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and previous versions and 6.1 SP1 and previous versions, and Application Server 7 Update 4 and previous versions, allows remote malicious users to cause a denial of service (crash) via a malformed client certificate.
Sun Java System Web Server 6.0Sun Java System Application Server 7.0Sun Java System Web Server 6.1
4.3
CVSSv2
CVE-2007-6571
Cross-site scripting (XSS) vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6611356.
Sun Java System Web Proxy Server 3.6Sun Java System Web Proxy Server 4.0Sun Java System Web Server 6.0Sun Java System Web Server 6.1Sun Java System Web Server 7.0Sun Java System Web Proxy Server 4.0.4Sun Java System Web Proxy Server 4.0.5Sun Java System Web Proxy Server 4.0.2Sun Java System Web Proxy Server 4.0.3
4.3
CVSSv2
CVE-2007-6572
Cross-site scripting (XSS) vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566204.
Sun Java System Web Proxy Server 3.6Sun Java System Web Proxy Server 4.0Sun Java System Web Proxy Server 4.0.2Sun Java System Web Server 6.0Sun Java System Web Server 6.1Sun Java System Web Server 7.0Sun Java System Web Proxy Server 4.0.3Sun Java System Web Proxy Server 4.0.4Sun Java System Web Proxy Server 4.0.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook