Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2009-1082
Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 allows remote authenticated users to gain privileges by submitting crafted commands to the Admin Console, as demonstrated by privileges for account creation and other administrative capabilities, related to the sa...
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1.1
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 8.0
5
CVSSv2
CVE-2008-2120
Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote malicious users to obtain source code of JSP files via unknown vectors.
Sun Java System Web Server 7.0
Sun Java System Application Server
Sun Java System Web Server
5
CVSSv2
CVE-2008-3683
Unspecified vulnerability in the FTP subsystem in Sun Java System Web Proxy Server 4.0 up to and including 4.0.5 before SP6 allows remote malicious users to cause a denial of service (failure to accept connections) via unknown vectors, probably related to exhaustion of file descr...
Sun Java System Web Proxy Server 4.0.1
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.5
4.3
CVSSv2
CVE-2007-6569
Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x prior to 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Server 6.1
Sun Java System Web Proxy Server
Sun Java System Web Server 7.0
9.3
CVSSv2
CVE-2008-5662
Multiple buffer overflows in Sun Java Wireless Toolkit (WTK) for CLDC 2.5.2 and previous versions allow downloaded programs to execute arbitrary code via unknown vectors.
Sun Java Wireless Toolkit For Cldc 2.5
Sun Java Wireless Toolkit For Cldc 2.2
Sun Java Wireless Toolkit For Cldc
Sun Java Wireless Toolkit For Cldc 2.5.1
Sun Java Wireless Toolkit For Cldc 1.0
7.5
CVSSv2
CVE-2008-2405
Sun Java Active Server Pages (ASP) Server prior to 4.0.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in HTTP requests to unspecified ASP applications.
Sun Java Active Server Pages 4.0.0
Sun Java Active Server Pages 4.0.1
Sun Java Active Server Pages
4.3
CVSSv2
CVE-2009-1796
Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows remote malicious users to inject arbitrary web script or HTML via vectors related to an error page.
Sun Java System Portal Server 7.1
Sun Java System Portal Server 7.2
Sun Java System Portal Server 6.3.1
6.8
CVSSv2
CVE-2007-5153
Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote malicious users to execute arbitrary code via unspecified vectors.
Sun Java System Application Server 8.1
Sun Java System Application Server 8.2
Sun Java System Access Manager 7.1
4.3
CVSSv2
CVE-2008-0239
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allow remote malicious users to inject arbitrary HTML or web script via the (1) cntry or lang parameters to /idm/login.jsp, (2) resultsForm parameter to /idm/...
Sun Java System Identity Manager 6.0
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
3 EDB exploits
4.3
CVSSv2
CVE-2008-0240
/idm/help/index.jsp in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allows remote malicious users to inject frames from arbitrary web sites and conduct phishing attacks via the helpUrl parameter, aka "frame injection."
Sun Java System Identity Manager 7.1
Sun Java System Identity Manager 6.0
Sun Java System Identity Manager 7.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »