Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun one application server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2009-2671
The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote malicious users to discover the username of the account that invoked an untrusted (1) applet or (2) Java Web Start applicati...
Sun Jdk 6
Sun Jre 6
Sun Jre 5.0
Sun Jdk 5.0
Sun Jdk
Sun Jre
5
CVSSv2
CVE-2009-0217
The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Pro...
Oracle Application Server 10.1.3.4
Oracle Application Server 10.1.2.3
Oracle Bea Product Suite 10.0
Mono Project Mono 2.0
Oracle Weblogic Server Component 10.3
Oracle Weblogic Server Component 10.0
Ibm Websphere Application Server 6.0.2.10
Ibm Websphere Application Server 6.0.2.12
Ibm Websphere Application Server 6.0.1.1
Ibm Websphere Application Server 6.0.1.13
Ibm Websphere Application Server 6.0.2.2
Ibm Websphere Application Server 6.0.2.19
Ibm Websphere Application Server 6.0.2.21
Ibm Websphere Application Server 6.0.0.2
Ibm Websphere Application Server 6.0.2.29
Ibm Websphere Application Server 6.0.2.28
Ibm Websphere Application Server 6.0.2.25
Ibm Websphere Application Server 6.1.0.20
Ibm Websphere Application Server 6.1.0.22
Ibm Websphere Application Server 6.1.0.13
Ibm Websphere Application Server 6.1.0.14
Ibm Websphere Application Server 6.1.0.3
5
CVSSv2
CVE-2005-1889
Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and previous versions allows malicious users to read files.
Sun Java System Web Server 6.1
Sun Java System Web Server
5
CVSSv2
CVE-2004-1815
Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote malicious users to cause a denial of service (memory consumption).
Sun One Application Server 7.0
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
5
CVSSv2
CVE-2004-1180
Unknown vulnerability in the rwho daemon (rwhod) prior to 0.17, on little endian architectures, allows remote malicious users to cause a denial of service (application crash).
Sun Solaris
Sun Sunos 5.9
Debian Debian Linux 3.0
Mandrakesoft Mandrake Linux 10.0
Mandrakesoft Mandrake Linux 10.1
Mandrakesoft Mandrake Linux Corporate Server 2.1
5
CVSSv2
CVE-2003-0411
Sun ONE Application Server 7.0 for Windows 2000/XP allows remote malicious users to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension.
Oracle Sun One Application Server 7.0
1 EDB exploit
5
CVSSv2
CVE-2003-0412
Sun ONE Application Server 7.0 for Windows 2000/XP does not log the complete URI of a long HTTP request, which could allow remote malicious users to hide malicious activities.
Sun One Application Server 7.0
5
CVSSv2
CVE-2002-1042
Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote malicious users to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat pa...
Sun Iplanet Web Server 4.1
Netscape Enterprise Server 3.6
Sun One Application Server 6.0
Sun One Web Server 6.0
1 EDB exploit
4.9
CVSSv2
CVE-2022-0617
A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2.
Linux Linux Kernel 4.2.0
Linux Linux Kernel 4.2
Linux Linux Kernel 5.17
Linux Linux Kernel
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
4.9
CVSSv2
CVE-2020-36322
An issue exists in the FUSE filesystem implementation in the Linux kernel prior to 5.10.6, aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and its inc...
Linux Linux Kernel
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Starwindsoftware Starwind Virtual San 8
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »