Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-4302
The Java Plug-in J2SE 1.3.0_02 up to and including 5.0 Update 5, and Java Web Start 1.0 up to and including 1.2 and J2SE 1.4.2 up to and including 5.0 Update 5, allows remote malicious users to exploit vulnerabilities by specifying a JRE version that contain vulnerabilities.
Sun Java Web Start 1.0
Sun J2se 5.0 Update5
Sun Java Web Start 1.2
Sun J2se 5.0
Sun Java Web Start 1.0.1 02
Sun J2se 1.3.0 02
Sun Java Web Start 1.0.1
Sun J2se 5.0 Update1
Sun J2se 1.4.2
Sun Java Web Start 1.0.1 01
7.8
CVSSv2
CVE-2008-1286
Unspecified vulnerability in Sun Java Web Console 3.0.2, 3.0.3, and 3.0.4 allows remote malicious users to bypass intended access restrictions and determine the existence of files or directories via unknown vectors.
Sun Java Web Console 3.0.2
Sun Java Web Console 3.0.3
Sun Java Web Console 3.0.4
7.5
CVSSv2
CVE-2009-1099
Integer signedness error in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and previous versions, and 6 Update 12 and previous versions, allows remote malicious users to access files or execute arbitrary code via crafted glyph descriptions in a Typ...
Sun Java Runtime Environment 6.0
Sun Java Se Development Kit
Sun Java Runtime Environment 5.0
2.1
CVSSv2
CVE-2008-4747
Unspecified vulnerability in the search feature in Sun Java System LDAP JDK prior to 4.20 allows context-dependent malicious users to obtain sensitive information via unknown attack vectors related to the LDAP JDK library.
Sun Java Access Manager 6
Sun Java Access Manager 7
Sun Java Access Manager 7.1
5
CVSSv2
CVE-2009-1074
Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 does not use SSL in all expected circumstances, which makes it easier for remote malicious users to obtain sensitive information by sniffing the network, related to "ssl termination devices" and lack of ...
Sun Java System Identity Manager 7.1.1
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 8.0
9
CVSSv2
CVE-2009-1082
Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 allows remote authenticated users to gain privileges by submitting crafted commands to the Admin Console, as demonstrated by privileges for account creation and other administrative capabilities, related to the sa...
Sun Java System Identity Manager 7.1.1
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 8.0
6.8
CVSSv2
CVE-2009-4440
Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 up to and including 6.3.1 does not properly handle multiple client connections within a short time window, which allows remote malicious users to hijack the backend connection of an authentica...
Sun Java System Directory Server 6.1
Sun Java System Directory Server 6.3
Sun Java System Directory Server 6.2
Sun Java System Directory Server 6.0
5
CVSSv2
CVE-2009-1075
Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 responds differently to failed use of the Forgot Password feature depending on whether the user account exists, which allows remote malicious users to enumerate valid usernames.
Sun Java System Identity Manager 7.1.1
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 8.0
4
CVSSv2
CVE-2009-1078
Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 does not enforce the expected privilege requirements for (1) deleting audit policies and (2) modifying workflows, which allows remote authenticated users to have an unspecified impact.
Sun Java System Identity Manager 7.1.1
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 8.0
4.3
CVSSv2
CVE-2009-1079
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka Bug IDs 19659, 19660, and 19683.
Sun Java System Identity Manager 7.1.1
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30065
CVE-2024-5843
CVE-2024-30080
code execution
CVE-2024-4577
CVE-2024-26169
wireless
remote code execution
CVE-2024-36103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »