Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
java system web server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-1934
Cross-site scripting (XSS) vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote malicious users to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error.
Sun Java System Web Server 6.1
Sun One Web Server 6.1
5
CVSSv2
CVE-2005-4806
Multiple unspecified vulnerabilities in Sun Java System Web Proxy Server 3.6 SP7 and previous versions allow remote malicious users to cause a denial of service (unresponsive service) via unknown vectors.
Sun Java System Web Proxy Server 3.6
7.5
CVSSv2
CVE-2004-1350
Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 up to and including 3.6 SP4 allow remote malicious users to execute arbitrary code via unknown vectors, possibly CONNECT requests.
Sun Java System Web Proxy Server 3.6
7.5
CVSSv2
CVE-2005-1232
Buffer overflow in Sun Java System Web Proxy Server (aka Sun ONE Proxy Server) 3.6 SP6 allows remote malicious users to execute arbitrary code via unknown vectors.
Sun Java System Web Proxy Server 3.6
4.3
CVSSv2
CVE-2009-2713
The CDCServlet component in Sun Java System Access Manager 7.0 2005Q4 and 7.1, when Cross Domain Single Sign On (CDSSO) is enabled, does not ensure that "policy advice" is presented to the correct client, which allows remote malicious users to obtain sensitive informati...
Sun Java System Access Manager 7 2005q4
Sun Java System Access Manager 7.1
Sun Java System Access Manager 6.3 2005q1
Sun Java System Access Manager 7.0 2005q4
Sun Java System Web Server 7.0
5.8
CVSSv2
CVE-2010-2385
Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote malicious users to affect confidentiality and integrity via unknown vectors related to Administration Server.
Oracle Sun Java System Web Proxy Server 4.0.13
4
CVSSv2
CVE-2006-5654
Unspecified vulnerability in the Network Security Services (NSS) in Sun Java System Web Server 6.0 before SP 10 and ONE Application Server 7 before Update 3, when SSLv2 is enabled, allows remote authenticated users to cause a denial of service (application crash) via unspecified ...
Sun Java System Web Server 6.0
Sun One Application Server
5
CVSSv2
CVE-2012-1738
Unspecified vulnerability in the Oracle iPlanet Web Server component in Oracle Sun Products Suite Java System Web Server 6.1 and Oracle iPlanet Web Server 7.0 allows remote malicious users to affect availability via unknown vectors related to Web Server.
Oracle Sun Products Suite Java System Web Server 6.1
Oracle Iplanet Web Server 7.0
2.1
CVSSv2
CVE-2009-2712
Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.
Sun Java System Access Manager 6.3 2005q1
Sun Java System Access Manager 7.1
Sun Java System Access Manager 7 2005q4
Sun Java System Access Manager 7.0 2005q4
Sun Java System Web Server 7.0
Sun Opensso Enterprise 8.0
4.3
CVSSv2
CVE-2007-2904
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.0 up to and including 6.3, when Internet Explorer is used, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly a related issue to CVE-2006-5653.
Sun Java System Messaging Server 6.0
Sun Java System Messaging Server 6.1
Sun Java System Messaging Server 6.2
Sun Java System Messaging Server 6.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »