Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java 6 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2009-2670
The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java Web Start applications, which allows context-dependent mali...
Sun Jdk 6
Sun Jre 6
Sun Jre 5.0
Sun Jdk
Sun Jre
Sun Jdk 5.0
5
CVSSv2
CVE-2009-2671
The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote malicious users to discover the username of the account that invoked an untrusted (1) applet or (2) Java Web Start applicati...
Sun Jdk 6
Sun Jre 6
Sun Jre 5.0
Sun Jdk 5.0
Sun Jdk
Sun Jre
7.5
CVSSv2
CVE-2009-2673
The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote malicious users to bypass intended access restrictions and connect to arbitrary sites via unspecified vectors, related t...
Sun Jdk 6
Sun Jre 6
Sun Jre 5.0
Sun Jdk 5.0
Sun Jdk
Sun Jre
7.5
CVSSv2
CVE-2009-1099
Integer signedness error in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and previous versions, and 6 Update 12 and previous versions, allows remote malicious users to access files or execute arbitrary code via crafted glyph descriptions in a Typ...
Sun Java Runtime Environment 6.0
Sun Java Se Development Kit
Sun Java Runtime Environment 5.0
5
CVSSv2
CVE-2008-2120
Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote malicious users to obtain source code of JSP files via unknown vectors.
Sun Java System Web Server 7.0
Sun Java System Application Server
Sun Java System Web Server
4.3
CVSSv2
CVE-2007-0628
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Access Manager 6.1, 6.2, 6 2005Q1 (6.3), and 7 2005Q4 (7.0) prior to 20070129 allow remote malicious users to inject arbitrary web script or HTML via the (1) goto or (2) gx-charset parameter. NOTE: some of the...
Sun Java System Access Manager 7.0
Sun Java System Access Manager 6.2
Sun Java System Access Manager 6.3
Sun Java System Access Manager 6.1
10
CVSSv2
CVE-2009-2476
The Java Management Extensions (JMX) implementation in Sun Java SE 6 before Update 15, and OpenJDK, does not properly enforce OpenType checks, which allows context-dependent malicious users to bypass intended access restrictions by leveraging finalizer resurrection to obtain a re...
Sun Openjdk
Sun Java Se
10
CVSSv2
CVE-2009-2689
JDK13Services.getProviders in Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, grants full privileges to instances of unspecified object types, which allows context-dependent malicious users to bypass intended access restrictions via an untrusted (1) applet o...
Sun Java Se
Sun Openjdk
5
CVSSv2
CVE-2009-2690
The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants read access to private variables with unspecified names, which allows context-dependent malicious users to obtain sensitive information via an untrusted (1) applet or (2) application.
Sun Openjdk
Sun Java Se
6.4
CVSSv2
CVE-2009-1102
Unspecified vulnerability in the Virtual Machine in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and previous versions allows remote malicious users to access files and execute arbitrary code via unknown vectors related to "code generation.&qu...
Sun Java
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »