Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2003-1134
Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local users to cause a denial of service (JVM crash), possibly by calling the ClassDepth function with a null parameter, which causes a crash instead of generating a null pointer exception.
Sun Java 1.4.2
Sun Java 1.3.1
Sun Java 1.4.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-3440
Sun Java 1.6.0_03 and previous versions versions, and possibly later versions, does not properly verify the authenticity of updates, which allows man-in-the-middle malicious users to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache pois...
Sun Java 1.6.0
Sun Java
5
CVSSv2
CVE-2010-0708
Multiple unspecified vulnerabilities in (1) ns-slapd and (2) slapd.exe in Sun Directory Server Enterprise Edition 7.0, Sun Java System Directory Server 5.2, and Sun Java System Directory Server Enterprise Edition 6.0 up to and including 6.3.1 allow remote malicious users to cause...
Sun Java System Directory Server 7.0
Sun Java System Directory Server 6.3.1
Sun Java System Directory Server 6.0
Sun Java System Directory Server 5.2
Sun Java System Directory Server 6.3
Sun Java System Directory Server 6.2
Sun Java System Directory Server 6.1
6.4
CVSSv2
CVE-2003-1521
Sun Java Plug-In 1.4 up to and including 1.4.2_02 allows remote malicious users to repeatedly access the floppy drive via the createXmlDocument method in the org.apache.crimson.tree.XmlDocument class, which violates the Java security model.
Sun Java Plug-in 1.4
Sun Java Plug-in 1.4.2
Sun Java Plug-in 1.4.2 01
Sun Java Plug-in 1.4.2 02
1 EDB exploit
4.3
CVSSv2
CVE-2009-2283
Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 up to and including 3.0.5, and Sun Java Web Console in Solaris 10, allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Sun Java Web Console 3.0.3
Sun Java Web Console 3.0.4
Sun Solaris 10
Sun Java Web Console 3.0.2
Sun Java Web Console 3.0.5
7.5
CVSSv2
CVE-2007-1681
Format string vulnerability in libwebconsole_services.so in Sun Java Web Console 2.2.2 up to and including 2.2.5 allows remote malicious users to cause a denial of service (application crash), obtain sensitive information, and possibly execute arbitrary code via unspecified vecto...
Sun Java Web Console 2.2.4
Sun Java Web Console 2.2.5
Sun Java Web Console 2.2.2
Sun Java Web Console 2.2.3
Sun Solaris 10.0
4.3
CVSSv2
CVE-2008-5550
Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 up to and including 3.0.5 and Solaris 10 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the redirect_url parameter.
Sun Java Web Console 3.0.3
Sun Java Web Console 3.0.4
Sun Java Web Console 3.0.2
Sun Solaris 10
Sun Java Web Console 3.0.5
Sun Sunos 5.10
5
CVSSv2
CVE-2006-4302
The Java Plug-in J2SE 1.3.0_02 up to and including 5.0 Update 5, and Java Web Start 1.0 up to and including 1.2 and J2SE 1.4.2 up to and including 5.0 Update 5, allows remote malicious users to exploit vulnerabilities by specifying a JRE version that contain vulnerabilities.
Sun Java Web Start 1.0.1 01
Sun Java Web Start 1.0.1 02
Sun Java Web Start 1.2
Sun J2se 1.3.0 02
Sun J2se 1.4.2
Sun J2se 5.0
Sun J2se 5.0 Update5
Sun Java Web Start 1.0.1
Sun J2se 5.0 Update1
Sun Java Web Start 1.0
2.6
CVSSv2
CVE-2009-2268
Cross-site scripting (XSS) vulnerability in the Cross-Domain Controller (CDC) servlet in Sun Java System Access Manager 6 2005Q1, 7 2005Q4, and 7.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Sun Java System Access Manager 7.1
Sun Java System Access Manager 7.0 2005q4
Sun Java System Access Manager 7 2005q4
Sun Java System Access Manager 6
Sun Java System Access Manager 7.0
Sun Java System Access Manager 6.0 2005q1
7.8
CVSSv2
CVE-2006-3127
Memory leak in Network Security Services (NSS) 3.11, as used in Sun Java Enterprise System 2003Q4 through 2005Q1 and Java System Directory Server 5.2, allows remote malicious users to cause a denial of service (memory consumption) by performing a large number of RSA cryptographic...
Sun Java Enterprise System 2004q2
Sun Java Enterprise System 2005q1
Sun Java System Directory Server 5.2
Sun Java Enterprise System 2003q4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »