Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-12-31 | CVE-2005-2530 | Privilege Escalation vulnerability in SUN Java 1.3.1 Unspecified vulnerability in Java 1.3.1 before 1.3.1_16 on Apple Mac OS X allows an untrusted applet to gain privileges, related to "Mac OS X specific extensions." | 10.0 |
| 2005-12-31 | CVE-2005-2529 | Remote Security vulnerability in SUN Java 1.4.2 Unspecified vulnerability in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to gain privileges via unspecified attack vectors relating to "the utility used to update Java shared archives." | 10.0 |
| 2005-12-31 | CVE-2005-2527 | Link Following vulnerability in SUN Java Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related to a temporary directory, possibly due to a symlink attack. | 1.2 |
| 2005-12-28 | CVE-2005-4552 | Unspecified vulnerability in SUN Solaris PC Netlink 2.0 The (1) slsmgr and (2) slsadmin programs in Sun Solaris PC NetLink 2.0 create temporary files insecurely, which allows local users to gain privileges. | 7.2 |
| 2005-12-20 | CVE-2005-4350 | Denial of Service vulnerability in SUN Wbem Services A.01.05.11/A.02.00.07 Unspecified vulnerability in WBEM Services A.01.x before A.01.05.12 and A.02.x before A.02.00.08 on HP-UX B.11.00 through B.11.23 allows remote attackers to cause an unspecified denial of service via unknown attack vectors. | 7.8 |
| 2005-12-09 | CVE-2005-4133 | Unspecified vulnerability in SUN Solaris 10.0 Sun Update Connection in Sun Solaris 10, when configured to use a web proxy, allows local users to obtain the proxy authentication password via (1) an unspecified vector and (2) proxy log files. | 2.1 |
| 2005-12-07 | CVE-2005-4046 | Man In The Middle vulnerability in SUN products Unspecified vulnerability in Reverse SSL Proxy Plug-in for Sun Java System Application Server Standard Edition 7 2004Q2, Application Server Enterprise Edition 8.1 2005Q1, and Sun ONE Application Server 7 Standard Edition, as used in multiple web servers, allows remote attackers to conduct man-in-the-middle (MITM) attacks and "compromise data privacy." | 4.0 |
| 2005-12-07 | CVE-2005-4045 | Unspecified vulnerability in SUN Java Communications Services Delegated Administrator 6 Unspecified vulnerability in System Communications Services 6 Delegated Administrator 2005Q1 in Sun Java System Messaging Server 2005Q1 allows remote attackers to obtain the Top-Level Administrator (TLA) default password via unknown vectors, possibly involving configure_toplevel_admin.ldif. | 7.5 |
| 2005-11-30 | CVE-2005-3907 | Privilege Escalation vulnerability in SUN JDK and JRE Unspecified vulnerability in Java Runtime Environment in Java JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors involving untrusted Java applets. | 7.5 |
| 2005-11-30 | CVE-2005-3906 | Privilege Escalation vulnerability in SUN JDK and JRE Multiple unspecified vulnerabilities in reflection APIs in Java SDK and JRE 1.4.2_08 and earlier and JDK and JRE 5.0 Update 3 and earlier allow remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors, a different set of vulnerabilities than CVE-2005-3905. | 7.5 |