Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-06-17 | CVE-2005-2022 | Cross-Site Scripting vulnerability in SUN Iplanet Messaging Server and ONE Messaging Server Unknown vulnerability in Webmail in iPlanet Messaging Server 5.2 Patch 1 and Sun ONE Messaging Server 6.2 allows remote attackers to execute arbitrary Javascript, possibly due to a cross-site scripting (XSS) vulnerability. | 4.3 |
| 2005-06-16 | CVE-2005-2032 | Arbitrary Local File Overwrite vulnerability in Sun LPAdmin Unknown vulnerability in lpadmin on Sun Solaris 7, 8, and 9 allows local users to overwrite arbitrary files. | 2.1 |
| 2005-06-16 | CVE-2005-1974 | Privilege Escalation vulnerability in Sun Java Runtime Environment Unspecified vulnerability in Java 2 Platform, Standard Edition (J2SE) 5.0 and 5.0 Update 1 and J2SE 1.4.2 up to 1.4.2_07, as used in multiple products and platforms including (1) HP-UX and (2) APC PowerChute, allows applications to assign permissions to themselves and gain privileges. | 5.1 |
| 2005-06-16 | CVE-2005-1973 | Privilege Escalation vulnerability in Sun Java Web Start Java Web Start in Java 2 Platform Standard Edition (J2SE) 5.0 and 5.0 Update 1 allows applications to assign permissions to themselves and gain privileges. | 5.1 |
| 2005-06-14 | CVE-2005-0488 | Remote Information Disclosure vulnerability in Multiple Vendor Telnet Client Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command. | 5.0 |
| 2005-06-09 | CVE-2005-1887 | Local Security vulnerability in SUN Solaris 10.0 Unknown vulnerability in the Sun Solaris C library (libc and libproject) in Solaris 10 allows local users to gain privileges. | 4.6 |
| 2005-06-07 | CVE-2005-1889 | Remote Security vulnerability in SUN Java System web Server 6.0/6.1 Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and earlier allows attackers to read files. | 5.0 |
| 2005-05-16 | CVE-2005-1609 | Unspecified vulnerability in SUN Storedge 6130 Arrays Unknown vulnerability in Sun StorEdge 6130 Arrays (SE6130) with serial numbers between 0451AWF00G and 0513AWF00J allows local users and remote attackers to delete data. | 7.5 |
| 2005-05-16 | CVE-2005-1591 | Denial-Of-Service vulnerability in Solaris Unknown vulnerability in NIS+ on Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (rpc.nisd disabled and NIS+ unavailable) via unknown vectors. | 5.0 |
| 2005-05-11 | CVE-2005-1518 | Unspecified vulnerability in SUN Solaris and Sunos Unknown vulnerability in Solaris 7 through 9, when using Federated Naming Services (FNS), autofs, and FNS X.500 configuration, allows local users to cause a denial of service (automountd crash) when "accessing" /xfn/_x500. | 2.1 |