Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java web start vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-4910
The BasicService in Sun Java Web Start allows remote malicious users to execute arbitrary programs on a client machine via a file:// URL argument to the showDocument method.
Sun Java Web Start
1 EDB exploit
10
CVSSv2
CVE-2008-3111
Multiple buffer overflows in Sun Java Web Start in JDK and JRE 6 before Update 4, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x prior to 1.4.2_18 allow context-dependent malicious users to gain privileges via an untrusted application, as demonstrated by (a) an applicati...
Sun Jdk 5.0
Sun Jre 1.4.2 11
Sun Jre 1.4.2 12
Sun Jre 1.4.2 02
Sun Jre 1.4.2 03
Sun Jre 5.0
Sun Jdk 6
Sun Jre 1.4.2 13
Sun Jre 1.4.2 14
Sun Jre 1.4.2 04
Sun Jre 1.4.2 05
Sun Sdk 1.4.2
Sun Sdk 1.4.2 01
Sun Sdk 1.4.2 09
Sun Sdk 1.4.2 10
Sun Sdk 1.4.2 17
Sun Jre 6
Sun Sdk 1.4
Sun Sdk 1.4.2 07
Sun Sdk 1.4.2 08
Sun Sdk 1.4.2 15
Sun Sdk 1.4.2 16
10
CVSSv2
CVE-2008-3112
Directory traversal vulnerability in Sun Java Web Start in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x prior to 1.4.2_18 allows remote malicious users to create arbitrary files via the writeManifest method in the CacheEntry class, aka CR...
Sun Jdk 5.0
Sun Jdk 6
Sun Jre 1.4.2 12
Sun Jre 1.4.2 13
Sun Jre 1.4.2 14
Sun Jre 1.4.2 10
Sun Jre 1.4.2 11
Sun Jre 1.4.2 02
Sun Jre 1.4.2 03
Sun Jre 5.0
Sun Jre 6
Sun Sdk 1.4.2
Sun Sdk 1.4.2 07
Sun Sdk 1.4.2 08
Sun Sdk 1.4.2 16
Sun Sdk 1.4.2 17
Sun Jre 1.4.2 15
Sun Jre 1.4.2 8
Sun Jre 1.4.2 06
Sun Jre 1.4.2 07
Sun Sdk 1.4.2 03
Sun Sdk 1.4.2 04
10
CVSSv2
CVE-2008-3113
Unspecified vulnerability in Sun Java Web Start in JDK and JRE 5.0 before Update 16 and SDK and JRE 1.4.x prior to 1.4.2_18 allows remote malicious users to create or delete arbitrary files via an untrusted application, aka CR 6704077.
Sun Jdk 5.0
Sun Jre 1.4.2 11
Sun Jre 1.4.2 12
Sun Jre 1.4.2 02
Sun Jre 1.4.2
Sun Jre 1.4.2 10
Sun Jre 1.4.2 9
Sun Jre 1.4.2 01
Sun Jre 5.0
Sun Sdk 1.4.2 02
Sun Sdk 1.4.2 03
Sun Sdk 1.4.2 11
Sun Sdk 1.4.2 12
Sun Jre
Sun Jre 1.4.2 15
Sun Jre 1.4.2 8
Sun Jre 1.4.2 07
Sun Jre 1.4.2 16
Sun Sdk 1.4.2
Sun Sdk 1.4.2 01
Sun Sdk 1.4.2 09
Sun Sdk 1.4.2 10
10
CVSSv2
CVE-2007-5019
Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment (JRE) 1.6.0_X allows remote malicious users to have an unknown impact via a long argument to the dnsResolve (isInstalled.dnsResolve) method.
Sun Java Web Start
Sun Jre 1.6.0 0
Sun Jre 1.6.0 10
Sun Sdk 1.3.0
1 EDB exploit
10
CVSSv2
CVE-2007-2435
Sun Java Web Start in JDK and JRE 5.0 Update 10 and previous versions, and Java Web Start in SDK and JRE 1.4.2_13 and previous versions, allows remote malicious users to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect U...
Sun Jre
Sun Sdk
Sun Java Enterprise System
10
CVSSv2
CVE-2005-0836
Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06 allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file.
Sun J2se 1.4.2 06
Sun J2se 1.4.2 02
Sun J2se 1.4.2 03
Sun J2se 1.4.2
Sun J2se 1.4.2 01
Sun J2se 1.4.2 04
Sun J2se 1.4.2 05
9.3
CVSSv2
CVE-2010-3550
Unspecified vulnerability in the Java Web Start component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors.
Sun Jre 1.6.0
Sun Jre
Sun Jdk 1.6.0
Sun Jdk
Sun Jdk 1.5.0
Sun Jre 1.5.0
9.3
CVSSv2
CVE-2010-1423
Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java Deployment Toolkit in Java 6 Update 10, 19, and other versions, when running on Windows and possibly on Linux, allows remote malicious users to execute arbitrary code via the (1) -J or (2) -...
Oracle Jre 1.6.0
Oracle Jdk 1.6.0
Oracle Jdk
Oracle Jre
1 EDB exploit
1 Article
9.3
CVSSv2
CVE-2009-3866
The Java Web Start Installer in Sun Java SE in JDK and JRE 6 before Update 17 does not properly use security model permissions when removing installer extensions, which allows remote malicious users to execute arbitrary code by modifying a certain JNLP file to have a URL field th...
Sun Jdk 1.6.0
Sun Jre 1.6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »