| CVE-2010-4471 |
medium |
— |
5.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start a… |
| CVE-2010-4470 |
medium |
— |
5.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows remote attackers to affect availability via unknown vector… |
| CVE-2010-4468 |
medium |
— |
4.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier, allows remote untrusted Java Web Start … |
| CVE-2010-4466 |
medium |
— |
5.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, Solaris, and, Linux; 5.0 Update 27 and earlier for Windows… |
| CVE-2010-4450 |
low |
— |
3.7 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux;… |
| CVE-2010-4448 |
low |
— |
2.6 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 earlier allows remote untruste… |
| CVE-2010-4447 |
medium |
— |
4.3 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untr… |
| CVE-2010-4351 |
medium |
— |
6.8 |
|
|
redhatsun |
16y ago |
The JNLP SecurityManager in IcedTea (IcedTea.so) 1.7 before 1.7.7, 1.8 before 1.8.4, and 1.9 before 1.9.4 for Java OpenJDK returns from the checkPermission method instead of throwing an exception in … |
| CVE-2010-4456 |
medium |
— |
4.3 |
|
|
sun |
16y ago |
Unspecified vulnerability in Oracle Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to affect integrity via unknown vectors related to Web Mail. |
| CVE-2010-4444 |
medium |
— |
6.8 |
|
|
oraclesun |
16y ago |
Unspecified vulnerability in Oracle Sun Java System Access Manager and Oracle OpenSSO 7, 7.1, and 8 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. |
| CVE-2010-4431 |
low |
— |
1.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in Oracle Sun Java System Portal Server 7.1 and 7.2 allows local users to affect confidentiality via unknown vectors related to Proxy. |
| CVE-2010-3573 |
medium |
— |
6.1 |
EXP |
|
sun |
16y ago |
Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availabil… |
| CVE-2010-3560 |
low |
— |
2.6 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21 allows remote attackers to affect confidentiality via unknown vectors. |
| CVE-2010-3557 |
medium |
— |
6.8 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, integrit… |
| CVE-2010-3551 |
medium |
— |
5.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, and 1.4.2_27 allows remote attackers to affect confidentiality via unknown ve… |
| CVE-2010-3549 |
medium |
— |
6.8 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, int… |
| CVE-2010-3548 |
medium |
— |
5.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Naming and Directory Interface (JNDI) component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, and 1.4.2_27 allows remote attackers to affec… |
| CVE-2010-3541 |
medium |
— |
5.1 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, int… |
| CVE-2010-1227 |
medium |
— |
4.3 |
|
|
sun |
16y ago |
Cross-site scripting (XSS) vulnerability in Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via the subject field of a message, as de… |
| CVE-2010-0845 |
medium |
— |
5.1 |
|
|
sun |
16y ago |
Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and av… |
| CVE-2010-0095 |
medium |
— |
6.8 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality,… |
| CVE-2010-0093 |
medium |
— |
5.1 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality,… |
| CVE-2010-0092 |
medium |
— |
5.1 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, and 5.0 Update 23 allows remote attackers to affect confidentiality, integrity… |
| CVE-2010-0091 |
medium |
— |
4.3 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality … |
| CVE-2010-0090 |
medium |
— |
5.8 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Web Start, Java Plug-in component in Oracle Java SE and Java for Business 6 Update 18 allows remote attackers to affect integrity and availability via unknown ve… |
| CVE-2010-0089 |
medium |
— |
5.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Web Start, Java Plug-in component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect availability… |
| CVE-2010-0088 |
medium |
— |
6.8 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confid… |
| CVE-2010-0085 |
medium |
— |
5.1 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confid… |
| CVE-2010-0084 |
medium |
— |
5.0 |
|
|
sun |
16y ago |
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality … |
| CVE-2010-0082 |
medium |
— |
5.1 |
|
|
sun |
16y ago |
Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality,… |
| CVE-2010-0708 |
medium |
— |
5.0 |
|
|
sun |
17y ago |
Multiple unspecified vulnerabilities in (1) ns-slapd and (2) slapd.exe in Sun Directory Server Enterprise Edition 7.0, Sun Java System Directory Server 5.2, and Sun Java System Directory Server Enter… |
| CVE-2003-1590 |
medium |
— |
5.0 |
|
|
sun |
17y ago |
Unspecified vulnerability in Sun ONE (aka iPlanet) Web Server 6.0 SP3 through SP5 on Windows allows remote attackers to cause a denial of service (daemon crash) via unknown vectors. |
| CVE-2003-1589 |
medium |
— |
5.0 |
|
|
sun |
17y ago |
Unspecified vulnerability in Sun ONE (aka iPlanet) Web Server 4.1 before SP13 and 6.0 before SP6 on Windows allows attackers to cause a denial of service (daemon crash) via unknown vectors. |
| CVE-2003-1588 |
low |
— |
1.9 |
|
|
sun |
17y ago |
Sun Cluster 2.2, when HA-Oracle or HA-Sybase DBMS services are used, stores database credentials in cleartext in a cluster configuration file, which allows local users to obtain sensitive information… |
| CVE-2003-1579 |
medium |
— |
4.3 |
|
|
sun |
17y ago |
Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP a… |
| CVE-2003-1578 |
medium |
— |
4.3 |
|
|
sun |
17y ago |
Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to hide HTTP requests from the log-preview funct… |
| CVE-2003-1577 |
low |
— |
2.6 |
|
|
sun |
17y ago |
Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files, and con… |
| CVE-2004-2766 |
medium |
— |
4.3 |
|
rhel |
sun |
17y ago |
Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows remote attackers to obtain unspecified "access" to e-mail via a crafted e-mail message, related to a "… |
| CVE-2004-2765 |
medium |
— |
4.3 |
|
rhel |
sun |
17y ago |
Cross-site scripting (XSS) vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02, when Internet Explorer is used, allows remote attackers to injec… |
| CVE-2010-0389 |
medium |
— |
5.0 |
|
|
sun |
17y ago |
The admin server in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP request that lacks a method to… |
