Vulnerabilities > SUN > Management Center > 3.6.1

DATE CVE VULNERABILITY TITLE RISK
2009-03-09 CVE-2009-0857 Cross-Site Scripting vulnerability in SUN Management Center 3.6.1/4.0
Cross-site scripting (XSS) vulnerability in /prm/reports in the Performance Reporting Module (PRM) for Sun Management Center (SunMC) 3.6.1 and 4.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
network
sun CWE-79
4.3
4.3
2008-09-18 CVE-2008-4117 Remote Denial of Service vulnerability in SUN Management Center 3.6.1/4.0
Unspecified vulnerability in a web page in the PRM module in Sun Management Center (SunMC) 3.6.1 and 4.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
network
low complexity
sun
7.8
7.8
2007-12-20 CVE-2007-6480 Unspecified vulnerability in SUN Management+Center 3.5Update1/3.6/3.6.1
The Oracle database component in Sun Management Center (Sun MC) 3.6.1, 3.6, and 3.5 Update 1 has a default account, which allows remote attackers to obtain database access and execute arbitrary code.
network
low complexity
sun
critical
 9.4
9.4