Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4440
Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 up to and including 6.3.1 does not properly handle multiple client connections within a short time window, which allows remote malicious users to hijack the backend connection of an authentica...
Sun Java System Directory Server 6.2
Sun Java System Directory Server 6.3
Sun Java System Directory Server 6.0
Sun Java System Directory Server 6.1
NA
CVE-2008-2120
Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote malicious users to obtain source code of JSP files via unknown vectors.
Sun Java System Web Server 7.0
Sun Java System Application Server
Sun Java System Web Server
NA
CVE-2008-3683
Unspecified vulnerability in the FTP subsystem in Sun Java System Web Proxy Server 4.0 up to and including 4.0.5 before SP6 allows remote malicious users to cause a denial of service (failure to accept connections) via unknown vectors, probably related to exhaustion of file descr...
Sun Java System Web Proxy Server 4.0.1
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.5
NA
CVE-2007-6569
Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x prior to 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Server 6.1
Sun Java System Web Proxy Server
Sun Java System Web Server 7.0
NA
CVE-2008-5662
Multiple buffer overflows in Sun Java Wireless Toolkit (WTK) for CLDC 2.5.2 and previous versions allow downloaded programs to execute arbitrary code via unknown vectors.
Sun Java Wireless Toolkit For Cldc 2.5
Sun Java Wireless Toolkit For Cldc 2.2
Sun Java Wireless Toolkit For Cldc
Sun Java Wireless Toolkit For Cldc 2.5.1
Sun Java Wireless Toolkit For Cldc 1.0
NA
CVE-2008-2405
Sun Java Active Server Pages (ASP) Server prior to 4.0.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in HTTP requests to unspecified ASP applications.
Sun Java Active Server Pages 4.0.0
Sun Java Active Server Pages 4.0.1
Sun Java Active Server Pages
NA
CVE-2004-2216
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and previous versions and 6.1 SP1 and previous versions, and Application Server 7 Update 4 and previous versions, allows remote malicious users to cause a denial of service (crash) via a malformed client certificate.
Sun Java System Web Server 6.0
Sun Java System Application Server 7.0
Sun Java System Web Server 6.1
NA
CVE-2009-1357
CRLF injection vulnerability in da/DA/Login in Sun Java System Delegated Administrator 6.2 up to and including 6.4 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the HELP_PAGE parameter.
Sun Java System Delegated Administrator 6.2
Sun Java System Delegated Administrator 6.3
Sun Java System Delegated Administrator 6.4
1 EDB exploit
NA
CVE-2007-5153
Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote malicious users to execute arbitrary code via unspecified vectors.
Sun Java System Application Server 8.1
Sun Java System Application Server 8.2
Sun Java System Access Manager 7.1
NA
CVE-2007-3715
Sun Java System Application Server and Web Server 7.0 up to and including 9.0 prior to 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent malicious users to execute an arbitrary Java method via a crafted styleshe...
Sun Java System Application Server 8.2
Sun Java System Application Server 9.0
Sun Java System Web Server 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »