Sun Java System Identity suffers from a cross site request forgery vulnerability. Proof of concept code included.
aab83ef3374bf90d0fdb9403e4cc641a2e45c39abb67680b7db155ef488b8ca9Secunia Security Advisory - Oracle has acknowledged a weakness in Sun GlassFish Enterprise Server and Sun Java System Application Server, which can be exploited by malicious people to disclose potentially sensitive information and hijack a user's session.
4b92d05eb53386db041cf0ecbba416798cb55f8f1006430e79912311333bdfa3Secunia Security Advisory - A vulnerability has been reported in GlassFish Communications Server and Sun Java System Application Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
c460f15be54554d9b6bf0fd59f6e4b7fca951c413894c7bd4276738685a5accbSecunia Security Advisory - Oracle has acknowledged a vulnerability in Sun Java System Application Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
4895536b68ff564e1b7828d23216dacc0bec548624264df87480485aed87d2c3This Metasploit module logs in to an GlassFish Server 3.1 (Open Source or Commercial) instance using a default credential, uploads, and executes commands via deploying a malicious WAR. On Glassfish 2.x, 3.0 and Sun Java System Application Server 9.x this module will try to bypass authentication instead by sending lowercase HTTP verbs.
4035b3ff0884c803d4786b07e2e9bd10c14e0d67c4f6962ff8749b9e5761b58eSecunia Security Advisory - Two vulnerabilities have been reported in Sun Java System Access Manager Policy Agent, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
870367e92827fe5c1897c0b72efeaecb8931b2ee19e74bcf5dbe3f197b849f18Secunia Security Advisory - Two vulnerabilities have been reported in Sun Java System Access Manager Policy Agent, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
870367e92827fe5c1897c0b72efeaecb8931b2ee19e74bcf5dbe3f197b849f18Secunia Security Advisory - A security issue has been reported in Sun Java System Portal Server, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
83a6f3608e0772dcd2f83e429f6ba5abda9f3ad1414c0cf4b6da698c30a2ae6cSecunia Security Advisory - Two vulnerabilities have been reported in Sun Java System Communications Express, which can be exploited by malicious people to manipulate certain data.
403b2752f9c677e6a9757441be422da16bdc595c8869790c4068da57bc84479bSecunia Security Advisory - A vulnerability has been reported in Sun GlassFish Enterprise Server and Sun Java System Message Queue, which can be exploited by malicious, local users to gain escalated privileges.
9ed56853471e8e863c637b4c47f2dfc7b2ab6521e639f4b174cbfa4d9f0af065Secunia Security Advisory - A vulnerability has been reported in Oracle OpenSSO / Sun Java System Access Manager, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, or cause a DoS (Denial of Service).
02c50ef0b03616e0f6057f86d83c41711153313b352e40b77ff2bcc63cb1eaebSecurity-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied input is used to generate the value of an HTTP header.
3345ee06ec8fee622116a9808b76d622a17e73ade8eb2138a5bd16a5270d2e05Secunia Security Advisory - A vulnerability has been reported in Sun Java System Identity Manager, which can be exploited by malicious people to disclose and manipulate certain data.
efbd73f36b41db131458facc50abcbbc0669a6d5410cb46cb05a8b89a366e681Secunia Security Advisory - A vulnerability has been reported in Sun Java System Directory Server Enterprise Edition, which can be exploited by malicious people to compromise a vulnerable system.
23c3a60018a9cc4ad31b6bdf1e0289953a0e0e7b10db395bac92ecbf50967110Secunia Security Advisory - A vulnerability has been reported in Sun Java System Web Proxy Server, which can be exploited by malicious people to disclose potentially sensitive information or manipulate certain data.
9e38ee7821a9e97f8ea435a18129da2d9107e23fd62c488d8c4f8ba1b999d99bSecunia Security Advisory - A vulnerability has been reported in Sun Java System Communications Express, which can be exploited by malicious users to manipulate certain data.
51b8d9a321a65697fdf634e63b9287f7844b367fecf7da306d66b4fff8d6bbc0Secunia Security Advisory - Two vulnerabilities have been reported in Sun Java System Directory Server, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
b98a57353733138e020e7bf6015f2d4304c86114404a927c3e77cbd70e57db99Secunia Security Advisory - Some vulnerabilities have been reported in Sun Java System Directory Server, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
be29d48808309404a01f3331326f989d1b429bba5771ac0ce5e8e296c2cba99eSecunia Security Advisory - Kingcope has discovered a vulnerability in Sun Java System Web Server, which can be exploited by malicious users to disclose sensitive information.
bc05848634318dc4fc5213bfa20fee4bd0df9239b0e862a07031c55d73588e43Sun Microsystems Sun Java System Web Server remote file disclosure exploit.
72bdf191a4d5b5152a79f4cee6ff1483f96b18ed588de9204927adb6ef2354daSun Microsystems Sun Java System Web Server remote exploit for Sparc. Binds a shell to port 5555.
58d3d00ceb2912ac710a08f0960ba35a4e854dccf29619ef655137c811281052Sun Java System Communications Express suffers from a cross site request forgery vulnerability.
9a0a7de230cd414af8ec75057b777df77d32f0a4cbf70ad6e0199be86ee151cdSecunia Security Advisory - Some vulnerabilities have been reported in Sun Java System Web Proxy Server, which can be exploited by malicious people to disclose sensitive information and potentially compromise a vulnerable system.
3caff4f311ba1ee5fd6b8144da6ff7c14c7f8883e03e144c4591de09204698bbSecunia Security Advisory - Some vulnerabilities have been reported in Sun Java System Web Server, which can be exploited by malicious people to disclose sensitive information and potentially compromise a vulnerable system.
7cc4ac331a7566f54d71685e583795b299c7007776d3fee987421bceac02fa2cSecunia Security Advisory - A vulnerability has been reported in Sun Java System products, which can be exploited by malicious people to manipulate certain data.
4193c4c8ceaec3466b526ad0c448159ecc59537ecb4b794c63bb1ad8d8283843Secunia Security Advisory - A vulnerability has been reported in Sun Java System Directory Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
c03f5d5055e20b8d88809a16cdcd7cec204a548b4394d2af377f4782a3d9a8e4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed