Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-04-16 | CVE-2007-2045 | Remote Denial of Service vulnerability in SUN Sunos 5.8/5.9 Unspecified vulnerability in the IP implementation in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (CPU consumption) via crafted IP packets, probably related to fragmented packets with duplicate or missing fragments. | 5.0 |
| 2007-04-11 | CVE-2007-1945 | Unspecified vulnerability in IBM Websphere Application Server Unspecified vulnerability in the Servlet Engine/Web Container in IBM WebSphere Application Server (WAS) before 6.1.0.7 has unknown impact and attack vectors. | 7.5 |
| 2007-04-02 | CVE-2007-1794 | Remote Security vulnerability in Browser The Javascript engine in Mozilla 1.7 and earlier on Sun Solaris 8, 9, and 10 might allow remote attackers to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still being used. | 10.0 |
| 2007-03-28 | CVE-2007-1727 | Remote Unauthorized Access vulnerability in HP OpenView Network Node Manager Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 6.20, 6.4x, 7.01, 7.50, and 7.51 allows remote authenticated users to access certain privileged "facilities" via unspecified vectors. | 6.5 |
| 2007-03-20 | CVE-2007-1526 | Remote Security vulnerability in SUN Java System web Server 6.1 Sun Java System Web Server 6.1 before 20070314 allows remote authenticated users with revoked client certificates to bypass the Certificate Revocation List (CRL) authorization control and access secure web server instances running under an account different from that used for the admin server via unspecified vectors. network sun | 6.0 |
| 2007-03-16 | CVE-2007-1488 | Unauthorized Access vulnerability in SUN Java System web Server 6.0/6.1 Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application. | 7.5 |
| 2007-03-12 | CVE-2007-1419 | Local Unauthorized Access vulnerability in SUN Java Dynamic Management KIT 5.1 The Java Management Extensions Remote API Remote Method Invocation over Internet Inter-ORB Protocol (JMX RMI-IIOP) API in Java Dynamic Management Kit 5.1 before 20070309 does not properly enforce the java.policy, which allows local users to obtain certain MBeans data access by operating a server application accessed by a privileged remote authenticated user. | 4.3 |
| 2007-03-08 | CVE-2007-1346 | Remote Unauthorized Access vulnerability in Sun Ipmitool Interface Unspecified vulnerability in ipmitool for Sun Fire X2100M2 and X2200M2 allows local users to gain privileges and reset or turn off the server. local sun | 6.6 |
| 2007-03-07 | CVE-2006-7140 | Remote Security vulnerability in Solaris The libike library, as used by in.iked, elfsign, and kcfd in Sun Solaris 9 and 10, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents libike from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339. network sun | 5.8 |
| 2007-03-02 | CVE-2007-1223 | Denial-Of-Service vulnerability in OSAS/FT/W Unspecified vulnerability in Hitachi OSAS/FT/W before 20070223 allows attackers to cause a denial of service (responder control processing halt) by sending "data unexpectedly through the port". | 5.0 |