Java Exploits
370 exploits tracked across all sources.
Sun Java JRE getSoundbank file:// URI Buffer Overflow
Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a long file: URL in an argument, aka Bug Id 6854303.
by Tometzky
Sun Java JRE getSoundbank file:// URI Buffer Overflow
Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a long file: URL in an argument, aka Bug Id 6854303.
by Tometzky
FTPShell Client 4.1 RC2 - Name Session Stack Overflow
by zec
GNU Classpath <0.97.2 - Info Disclosure
The gnu.java.security.util.PRNG class in GNU Classpath 0.97.2 and earlier uses a predictable seed based on the system time, which makes it easier for context-dependent attackers to conduct brute force attacks against cryptographic routines that use this class for randomness, as demonstrated against DSA private keys.
by Jack Lloyd
Sun Java Web Start - Remote Code Execution via showDocument Method
The BasicService in Sun Java Web Start allows remote attackers to execute arbitrary programs on a client machine via a file:// URL argument to the showDocument method.
by Varun Srivastava
Apache HTTP Server < 2.2.23 - Authenticated Cross-Site Scripting via mod_negotiation
Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web script or HTML by uploading a file with a name containing XSS sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.
by Stefano Di Paola
Nortel IP Softphone 2050 - Buffer Overflow via RTCP Port Flood
Buffer overflow in the Nortel UNIStim IP Softphone 2050 allows remote attackers to cause a denial of service (application abort) and possibly execute arbitrary code via a flood of invalid characters to the RTCP port (5678/udp) that triggers a Windows error message, aka "extraneous messaging."
by Cyrill Brunschwiler
PHP Webquest < 2.5 - SQL Injection via id_actividad Parameter
SQL injection vulnerability in soporte_derecha_w.php in PHP Webquest 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id_actividad parameter.
by D4real_TeaM
OWASP Stinger < 2.4 - Input Validation Bypass via Multipart Encoding
OWASP Stinger before 2.5 allows remote attackers to bypass input validation routines by using multipart encoded requests instead of form-urlencoded requests. NOTE: this might be used to expose vulnerabilities in applications that would otherwise be protected by the validation routines.
by Meder Kydyraliev
Sun JDK and JRE < 1.5.0 - Buffer Overflow via GIF Image Block
Buffer overflow in Sun JDK and Java Runtime Environment (JRE) 5.0 Update 9 and earlier, SDK and JRE 1.4.2_12 and earlier, and SDK and JRE 1.3.1_18 and earlier allows applets to gain privileges via a GIF image with a block with a 0 width field, which triggers memory corruption.
by luoluo
MICO Object Key 2.3.12 - Remote Denial of Service
by tuergeist
Sun Java Runtime Environment 1.3/1.4/1.5 - Nested Array Objects Denial of Service
by Marc Schoenefeld
Sun JDK and JRE <= 1.5.0_6 - Denial of Service via Font.createFont Temporary File Creation
Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 and earlier, and SDK 1.5.0_6 and earlier allows remote attackers to cause a denial of service (disk consumption) by using the Font.createFont function to create temporary files of arbitrary size in the %temp% directory.
by Marc Schoenefeld
Cisco PIX/ASA <7.1(2) & 7.0(<5), PIX 6.3(<5.112), FWSM 2.3(<4) & 3....
Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7), when used with Websense/N2H2, allows remote attackers to bypass HTTP access restrictions by splitting the GET method of an HTTP request into multiple packets, which prevents the request from being sent to Websense for inspection, aka bugs CSCsc67612, CSCsc68472, and CSCsd81734.
by George D. Gal
Open Dc Hub 0.7.14 - Authenticated Buffer Overflow via RedirectAll Command
Buffer overflow in Open Dc Hub 0.7.14 allows remote attackers, with administrator privileges, to execute arbitrary code via a long RedirectAll command.
by Donato Ferrante
Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (4)
by Marc Schoenefeld
opera Web browser 7.54 java implementation - Multiple Vulnerabilities (3)
by Marc Schoenefeld
Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (2)
by Marc Schoenefeld
Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (1)
by Marc Schoenefeld
Bird Chat 1.61 - Denial of Service via Invalid User Handling
Bird Chat 1.61 allows remote attackers to cause a denial of service (crash) via invalid users.
by Donato Ferrante
Free Web Chat 2.0 - Denial of Service via Multiple Connections
Free Web Chat 2.0 allows remote attackers to cause a denial of service (CPU consumption) via multiple connections from the same user.
by Donato Ferrante
Sun Java Virtual Machine 1.x - 'Font.createFont' Method Insecure Temporary File Creation
by Jelmer
Sun Java Runtime Environment 1.4.x - Font Object Assertion Failure Denial of Service
by Marc Schoenefeld
Siemens S55 - Unauthenticated SMS Spoofing via GUI Overlay
GUI overlay vulnerability in the Java API in Siemens S55 cellular phones allows remote attackers to send unauthorized SMS messages by overlaying a confirmation message with a malicious message.
by FtR
By Source