Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1082
Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 allows remote authenticated users to gain privileges by submitting crafted commands to the Admin Console, as demonstrated by privileges for account creation and other administrative capabilities, related to the sa...
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1.1
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 8.0
NA
CVE-2008-2120
Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote malicious users to obtain source code of JSP files via unknown vectors.
Sun Java System Web Server 7.0
Sun Java System Application Server
Sun Java System Web Server
NA
CVE-2008-3683
Unspecified vulnerability in the FTP subsystem in Sun Java System Web Proxy Server 4.0 up to and including 4.0.5 before SP6 allows remote malicious users to cause a denial of service (failure to accept connections) via unknown vectors, probably related to exhaustion of file descr...
Sun Java System Web Proxy Server 4.0.1
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.5
NA
CVE-2007-6569
Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x prior to 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Server 6.1
Sun Java System Web Proxy Server
Sun Java System Web Server 7.0
NA
CVE-2008-5662
Multiple buffer overflows in Sun Java Wireless Toolkit (WTK) for CLDC 2.5.2 and previous versions allow downloaded programs to execute arbitrary code via unknown vectors.
Sun Java Wireless Toolkit For Cldc 2.5
Sun Java Wireless Toolkit For Cldc 2.2
Sun Java Wireless Toolkit For Cldc
Sun Java Wireless Toolkit For Cldc 2.5.1
Sun Java Wireless Toolkit For Cldc 1.0
NA
CVE-2008-2405
Sun Java Active Server Pages (ASP) Server prior to 4.0.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in HTTP requests to unspecified ASP applications.
Sun Java Active Server Pages 4.0.0
Sun Java Active Server Pages 4.0.1
Sun Java Active Server Pages
NA
CVE-2008-5117
Open redirect vulnerability in Sun Java System Identity Manager 6.0 up to and including 6.0 SP4, 7.0, and 7.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Sun Java System Identity Manager 6.0
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
NA
CVE-2004-2216
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and previous versions and 6.1 SP1 and previous versions, and Application Server 7 Update 4 and previous versions, allows remote malicious users to cause a denial of service (crash) via a malformed client certificate.
Sun Java System Web Server 6.0
Sun Java System Application Server 7.0
Sun Java System Web Server 6.1
NA
CVE-2007-4025
Unspecified vulnerability in Sun Java System (SJS) Application Server 8.1 up to and including 9.0 prior to 20070724 on Windows allows remote malicious users to obtain JSP source code via unspecified vectors.
Sun Java System Application Server 8.1
Sun Java System Application Server 8.2
Sun Java System Application Server 9.0
NA
CVE-2008-0239
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allow remote malicious users to inject arbitrary HTML or web script via the (1) cntry or lang parameters to /idm/login.jsp, (2) resultsForm parameter to /idm/...
Sun Java System Identity Manager 6.0
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »