Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java system application server vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2006-2501
Cross-site scripting (XSS) vulnerability in Sun ONE Web Server 6.0 SP9 and previous versions, Java System Web Server 6.1 SP4 and previous versions, Sun ONE Application Server 7 Platform and Standard Edition Update 6 and previous versions, and Java System Application Server 7 2004...
Sun Java System Web Server 6.1
Sun One Application Server 7.0
Sun One Web Server 6.0
Sun One Application Server
Sun One Web Server
Sun One Application Server 6.0
Sun Java System Application Server
Sun Java System Web Server
5
CVSSv2
CVE-2004-2216
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and previous versions and 6.1 SP1 and previous versions, and Application Server 7 Update 4 and previous versions, allows remote malicious users to cause a denial of service (crash) via a malformed client certificate.
Sun Java System Web Server 6.0
Sun Java System Application Server 7.0
Sun Java System Web Server 6.1
7.5
CVSSv2
CVE-2007-5152
Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 9.1 container, does not demand authentication after a container restart, which allows remote malicious users to perform administrative tasks.
Sun Java System Access Manager 7.1
Sun Java System Application Server 9.1
5
CVSSv2
CVE-2012-3155
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote malicious users to affect availability, related to CORBA ORB.
Oracle Glassfish Server 2.1.1
Oracle Glassfish Server 3.0.1
Oracle Glassfish Server 3.1.2
Sun Java System Application Server 8.1
Sun Java System Application Server 8.2
5
CVSSv2
CVE-2007-4511
The Sun Admin Console in Sun Application Server 9.0_0.1 does not apply certain configuration changes persistently, which causes the (1) SSL and (2) SSL_MutualAuth ORB listener services to enable all protocols and ciphers after the services are restarted, possibly allowing remote ...
Sun Java System Application Server 9.0 0.1
4.3
CVSSv2
CVE-2010-0386
The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for remote malicious users to steal cookies and authentication credentials via a cross-site tracing (XST) attack, a related issue to CVE-2004-2763 a...
Sun Java System Application Server 7.0
4.3
CVSSv2
CVE-2005-0742
Cross-site scripting (XSS) vulnerability in Sun Java System Application Server 7 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Sun Java System Application Server 7.0
5
CVSSv2
CVE-2005-4804
Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote malicious users to read .jar files via unknown vectors related to deployed web applications.
Sun Java System Application Server 8.1
4
CVSSv2
CVE-2006-5654
Unspecified vulnerability in the Network Security Services (NSS) in Sun Java System Web Server 6.0 before SP 10 and ONE Application Server 7 before Update 3, when SSLv2 is enabled, allows remote authenticated users to cause a denial of service (application crash) via unspecified ...
Sun Java System Web Server 6.0
Sun One Application Server
7.5
CVSSv2
CVE-2008-1995
Sun Java System Directory Proxy Server 6.0, 6.1, and 6.2 classifies a connection using the "bind-dn" criteria, which can cause an incorrect application of policy and allows remote malicious users to bypass intended access restrictions for the server.
Sun Java System Directory Server 6.2
Sun Java System Directory Server 6.0
Sun Java System Directory Server 6.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »