Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun one application server vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2006-2501
Cross-site scripting (XSS) vulnerability in Sun ONE Web Server 6.0 SP9 and previous versions, Java System Web Server 6.1 SP4 and previous versions, Sun ONE Application Server 7 Platform and Standard Edition Update 6 and previous versions, and Java System Application Server 7 2004...
Sun Java System Web Server 6.1
Sun One Application Server 7.0
Sun One Web Server 6.0
Sun One Application Server
Sun One Web Server
Sun One Application Server 6.0
Sun Java System Application Server
Sun Java System Web Server
7.5
CVSSv2
CVE-2002-0387
Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server prior to 6.5 allows remote malicious users to execute arbitrary code via a long HTTP request URL.
Sun One Application Server 6.0
Sun One Application Server 6.5
2.6
CVSSv2
CVE-2006-3225
Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote malicious users to inject arbitrary HTML or web scrip...
Sun One Application Server
Sun Java System Application Server 8.1
Sun Java System Application Server
4
CVSSv2
CVE-2005-4046
Unspecified vulnerability in Reverse SSL Proxy Plug-in for Sun Java System Application Server Standard Edition 7 2004Q2, Application Server Enterprise Edition 8.1 2005Q1, and Sun ONE Application Server 7 Standard Edition, as used in multiple web servers, allows remote malicious u...
Sun Java System Application Server 7.0
Sun Java System Application Server 8.1
Sun One Application Server 7.0
5
CVSSv2
CVE-2002-1042
Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote malicious users to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat pa...
Sun Iplanet Web Server 4.1
Netscape Enterprise Server 3.6
Sun One Application Server 6.0
Sun One Web Server 6.0
1 EDB exploit
6.8
CVSSv2
CVE-2003-0413
Cross-site scripting (XSS) vulnerability in the webapps-simple sample application for (1) Sun ONE Application Server 7.0 for Windows 2000/XP or (2) Sun Java System Web Server 6.1 allows remote malicious users to insert arbitrary web script or HTML via an HTTP request that generat...
Sun One Application Server 7.0
1 EDB exploit
5
CVSSv2
CVE-2003-0412
Sun ONE Application Server 7.0 for Windows 2000/XP does not log the complete URI of a long HTTP request, which could allow remote malicious users to hide malicious activities.
Sun One Application Server 7.0
7.2
CVSSv2
CVE-2003-0414
The installation of Sun ONE Application Server 7.0 for Windows 2000/XP creates a statefile with world-readable permissions, which allows local users to gain privileges by reading a plaintext password in the statefile.
Sun One Application Server 7.0
4
CVSSv2
CVE-2006-5654
Unspecified vulnerability in the Network Security Services (NSS) in Sun Java System Web Server 6.0 before SP 10 and ONE Application Server 7 before Update 3, when SSLv2 is enabled, allows remote authenticated users to cause a denial of service (application crash) via unspecified ...
Sun Java System Web Server 6.0
Sun One Application Server
6.8
CVSSv2
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server prior to 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote malicious users to bypass HTTP request filtering, hijack web sessions, perform cross-site scripti...
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Application Server 8.1
Sun One Application Server 7.0
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 3.6
Sun Java System Application Server 7.0
Sun Java System Web Proxy Server -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »