SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   


View Topics  >  Underlying OS  >  Java

May 30 2018   Apache Batik Deserialization Error Lets Remote Users Obtain Potentially Sensitive Information on the Target System
Apr 20 2017   Apache Batik SVG File XML External Entity Processing Flaw Lets Remote Users Obtain Potentially Sensitive Information
Sep 30 2015   TIBCO Rendezvous Buffer Overflows Let Remote Users Deny Service or Execute Arbitrary Code
Jul 3 2015   Apache Batik XML External Entity Processing Flaw Lets Remote Users Obtain Potentially Sensitive Information
Apr 11 2014   TIBCO Rendezvous Bugs Let Remote Users Obtain and Modify Information, Execute Arbitrary Code, and Conduct Cross-Site Scripting Attacks
Feb 12 2010   Adobe BlazeDS Unspecified Flaw Lets Remote Users Access Files on the Target System
Nov 11 2008   SAP GUI Unspecified Bug in 'mdrmsap.dll' Lets Remote Users Execute Arbitrary Code
Oct 20 2008   HP SiteScope Input Validation Hole in Displaying SNMP Traps Permits Script Injection Attacks
Aug 14 2007   Stinger Lets Remote Users Bypass Validation Filters with Multipart Encoded Requests
Jun 21 2006   Azureus Input Validation Flaw in 'index.tmpl' Permits Cross-Site Scripting Attacks
Apr 5 2006   Cisco Transport Controller Installs With Broad Java Policy Permissions Which Lets Remote Users Execute Arbitrary Code
Mar 17 2006   Dwarf HTTP Server Discloses JSP Source Code and Permits Cross-Site Scripting Attacks
Nov 16 2005   Revize CMS Input Validation Holes Permit SQL Injection and Cross-Site Scripting Attacks
Oct 19 2005   Xerver Bugs Let Remote Users View Index Directory Listings, Obtain Script Source Code, and Conduct Cross-Site Scripting Attacks
Jul 24 2005   RealChat Non-secure Login Protocol Lets Remote Users Impersonate Other Users
Jul 3 2005   JBoss jBPM Lets Remote Users Execute Arbitrary Applications and Obtain System Information Disclosure
Jun 18 2005   JBoss Input Validation Hole May Disclose Installation Path and Configuration File to Remote Users
Jun 7 2005   Clustered JDBC May Disclose a Target Users' Cached Results to Remote Users
Feb 25 2005   Batik Squiggle Scripting Error Lets Remote Users Access Resources
Nov 8 2004   Sun JRE Integer Wraparound Bug in InitialDirContext() Lets Remote Users Deny Service
Oct 31 2004   Netcordia Chesapeake TFTP Server Lets Remote Users Download and Upload Arbitrary Files or Cause the TFTP Service to Crash
Oct 26 2004   OpenWFE Input Validation Hole Lets Remote Users Conduct Cross-Site Scripting Attacks
Oct 23 2004   SKForum Has Vulnerability in 'my wiki' and 'wiki' with Unspecified Impact
Oct 22 2004   Sun Java 2 Micro Edition (J2ME) Lets Remote Users Bypass Sandbox Restrictions
Aug 4 2004   Free Web Chat Username Input Validation Error Lets Remote Users Deny Service
Jul 2 2004   SCI Photo Chat Server Lack of Input Validation Lets Remote Users Conduct Cross-Site Scripting Attacks
Jun 8 2004   JCIFS Authentication Flaw May Let Remote Users Access the System With an Invalid Username
Apr 28 2004   JForum May Let Remote Authenticated Users Access Restricted Forums
Mar 16 2004   Fizmez Web Server Can Be Crashed By Remote Users
Mar 16 2004   (Vendor Issues Fix) Pegasi Web Server Discloses Files Outside of the Web Document Directory to Remote Users
Mar 11 2004   Pegasi Web Server Discloses Files Outside of the Web Document Directory to Remote Users
Mar 11 2004   MyProxy Input Validation Hole Lets Remote Users Conduct Cross-Site Scripting Attacks
Mar 8 2004   PWebServer '../' Input Validation Flaw Lets Remote Users Traverse the Directory
Mar 3 2004   GWeb '../' Input Validation Flaw Discloses Files to Remote Users
Jan 22 2004   PointBase Database Lack of Policy File Permits Remote Users to Crash the System
Oct 9 2003   (Vendor Describes Solution) Re: bjServer Discloses the Administrator's Password to Local Users
Oct 6 2003   JBoss Java Server 'hsqldb' Service Default Configuration Lets Remote Users Execute Arbitrary Code
Aug 4 2003   vqServer Discloses the Administrator's Password to Local Users
Aug 2 2003   bjServer Discloses the Administrator's Password to Local Users
Jun 2 2003   JBoss Application Server Discloses JSP Source Code to Remote Users
Mar 3 2003   CoffeeCup Password Wizard Discloses Passwords to Remote Users
Oct 23 2002   Big Faceless PDF Library Bug in Processing Digital Signatures May Fail to Detect Document Modifications
Aug 29 2002   SWServer Java Web Server Input Validation Hole Lets Remote Users View Files on the System Located Outside of the Document Directory
Jun 14 2002   nCipher CodeSafe Java Incompatibility May Leak Smart Card Passphrases to the User's Operating System Shell
Jun 14 2002   BODYBuilder Java-based Site Building Engine Input Validation Hole Lets Remote Users Execute Arbitrary SQL Commands on the Database
Apr 22 2002   vqServer Java-based Web Server Sample CGI Script Allows Cross-Site Scripting Attacks
Apr 1 2002   (JCraft's JZlib is Also Vulnerable) Re: 'zlib' Shared Compression Library Contains 'Double Free()' Buffer Overflow That Lets Remote Users Cause Programs Using zlib to Crash or Execute Arbitrary Code
Mar 22 2002   (Netscape Issues Fix for Netscape Browser) Re: Sun Java Runtime Environment (JRE) Bytecode Verifier Casting Bug Lets Arbitrary Code Execute Outside of the Java Security Sandbox
Mar 19 2002   Sun Java Runtime Environment (JRE) Bytecode Verifier Casting Bug Lets Arbitrary Code Execute Outside of the Java Security Sandbox
Mar 18 2002   Sun Java Web Start Bug in Java Networking Launching Protocol (JNLP) Lets Remote Users Create Unsigned Applets That Can Access Restricted Resources
Mar 13 2002   (Vendor Issues Fix) Re: Xerver Web Server Input Validation Flaw Lets Remote Users View Files on the Server and Error Handling Bug Lets Remote Users Crash the Web Service
Mar 8 2002   Xerver Web Server Input Validation Flaw Lets Remote Users View Files on the Server and Error Handling Bug Lets Remote Users Crash the Web Service
Mar 7 2002   PureTLS Java-based SSL Implementation Has Diffie-Hellman Parameter Bug That May Compromise Security
Jan 31 2002   SAP GUI Can Be Crashed By Remote Users Connecting to the GUI's Listening Port
Jan 18 2002   Hellbent Java-based Web Server May Disclose Configuration Information to Remote Users In Certain Situations
Jan 7 2002   ICQ Messaging Client Buffer Overflow Lets Remote Users Execute Arbitrary Code on the User's Host
Dec 7 2001   (Vendor Issues Patch) Re: Allaire's JRun Java Server Discloses JSP Source Code to Remote Users When Used As a Connector With Commercial Web Servers
Dec 7 2001   (Vendor Issues Patch) Re: Allaire's JRun Java Server May Issue Duplicate Session IDs in Certain Cases, Potentially Allowing a Remote User to Act as Another User
Nov 29 2001   (Some Details Are Provided) Re: Allaire's JRun Java Server Discloses JSP Source Code to Remote Users When Used As a Connector With Commercial Web Servers
Nov 28 2001   Allaire's JRun Java Server Discloses JSP Source Code to Remote Users When Used As a Connector With Commercial Web Servers
Nov 28 2001   Allaire's JRun Java Server May Issue Duplicate Session IDs in Certain Cases, Potentially Allowing a Remote User to Act as Another User
Nov 22 2001   Yahoo Messenger Instant Messaging Client Uses Weak Authentication Allowing a Remote User to Gain Access to Another User's Account
Sep 28 2001   H-Sphere Web Hosting Software Discloses Files on the System to Remote Users with Valid Web Management Accounts
Sep 12 2001   RSA's BSAFE SSL-J Secure Sockets Layer Java Toolkit Has Session Caching Bug That May Allow Remote Users to Masquerade as Other Valid SSL Clients
Aug 27 2001   Java Plug-in Fails to Recognize Expired Certificates, Giving Applets With Expired Certificates Access to the System
Aug 13 2001   Macromedia JRun Java Server Discloses JSP Source Code to Remote Users
Jul 20 2001   IBM alphaWorks TFTP Server for Java Discloses Files to Remote Users
Jul 3 2001   LiteWebServer Discloses JSP Source Code to Remote Users
Jul 2 2001   Allaire's JRun Java Server Lets Remote Users Cause Arbitrary Javascript to be Executed by Another User's Browser
Jun 17 2001   Allaire's JRun Java Application Server Lets Remote Users Cause Javascript Code to Be Executed in Another User's Browser
Jun 2 2001   Acme.Serve Java-based Web Server Lets Remote Users Read All Files on the Server
May 3 2001   CrushFTP Java-based FTP Server Lets Remote Users Change Directories and Download Files Outside of the FTP Server's Root Document Directory
Apr 18 2001   MyServer Java-based Web Server Can Be Crashed By Remote Users







Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC