Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
java system web server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1934
Cross-site scripting (XSS) vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote malicious users to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error.
Sun Java System Web Server 6.1
Sun One Web Server 6.1
NA
CVE-2005-1232
Buffer overflow in Sun Java System Web Proxy Server (aka Sun ONE Proxy Server) 3.6 SP6 allows remote malicious users to execute arbitrary code via unknown vectors.
Sun Java System Web Proxy Server 3.6
NA
CVE-2005-4806
Multiple unspecified vulnerabilities in Sun Java System Web Proxy Server 3.6 SP7 and previous versions allow remote malicious users to cause a denial of service (unresponsive service) via unknown vectors.
Sun Java System Web Proxy Server 3.6
NA
CVE-2004-1350
Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 up to and including 3.6 SP4 allow remote malicious users to execute arbitrary code via unknown vectors, possibly CONNECT requests.
Sun Java System Web Proxy Server 3.6
NA
CVE-2009-2713
The CDCServlet component in Sun Java System Access Manager 7.0 2005Q4 and 7.1, when Cross Domain Single Sign On (CDSSO) is enabled, does not ensure that "policy advice" is presented to the correct client, which allows remote malicious users to obtain sensitive informati...
Sun Java System Access Manager 7 2005q4
Sun Java System Access Manager 7.1
Sun Java System Access Manager 6.3 2005q1
Sun Java System Access Manager 7.0 2005q4
Sun Java System Web Server 7.0
NA
CVE-2010-2385
Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote malicious users to affect confidentiality and integrity via unknown vectors related to Administration Server.
Oracle Sun Java System Web Proxy Server 4.0.13
NA
CVE-2006-5654
Unspecified vulnerability in the Network Security Services (NSS) in Sun Java System Web Server 6.0 before SP 10 and ONE Application Server 7 before Update 3, when SSLv2 is enabled, allows remote authenticated users to cause a denial of service (application crash) via unspecified ...
Sun Java System Web Server 6.0
Sun One Application Server
NA
CVE-2012-1738
Unspecified vulnerability in the Oracle iPlanet Web Server component in Oracle Sun Products Suite Java System Web Server 6.1 and Oracle iPlanet Web Server 7.0 allows remote malicious users to affect availability via unknown vectors related to Web Server.
Oracle Sun Products Suite Java System Web Server 6.1
Oracle Iplanet Web Server 7.0
NA
CVE-2009-2712
Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.
Sun Java System Access Manager 6.3 2005q1
Sun Java System Access Manager 7.1
Sun Java System Access Manager 7 2005q4
Sun Java System Access Manager 7.0 2005q4
Sun Java System Web Server 7.0
Sun Opensso Enterprise 8.0
NA
CVE-2007-2904
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.0 up to and including 6.3, when Internet Explorer is used, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly a related issue to CVE-2006-5653.
Sun Java System Messaging Server 6.0
Sun Java System Messaging Server 6.1
Sun Java System Messaging Server 6.2
Sun Java System Messaging Server 6.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »