Java Exploits
370 exploits tracked across all sources.
YaBB SE - SQL Injection via ID_MEMBER Parameter
SQL injection vulnerability in SSI.php in YaBB SE 1.5.4, 1.5.3, and possibly other versions before 1.5.5 allows remote attackers to execute arbitrary SQL commands via the ID_MEMBER parameter to the (1) recentTopics and (2) welcome functions.
by BaCkSpAcE
Sun Java 1.3.1, 1.4.1, 1.4.2 - Denial of Service via ClassDepth Null Parameter
Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local users to cause a denial of service (JVM crash), possibly by calling the ClassDepth function with a null parameter, which causes a crash instead of generating a null pointer exception.
by Marc Schoenefeld
Sun SDK/JRE 1.4.1_03 - Code Injection
The loadClass method of the sun.applet.AppletClassLoader class in the Java Virtual Machine (JVM) in Sun SDK and JRE 1.4.1_03 and earlier allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a loaded class name that contains "/" (slash) instead of "." (dot) characters, which bypasses a call to the Security Manager's checkPackageAccess method.
by Last Stage of Delirium
Sun Java Plug-In 1.4-1.4.2_02 - Unauthenticated Floppy Drive Access via XmlDocument.createXmlDocument
Sun Java Plug-In 1.4 through 1.4.2_02 allows remote attackers to repeatedly access the floppy drive via the createXmlDocument method in the org.apache.crimson.tree.XmlDocument class, which violates the Java security model.
by Marc Schoenefeld
Sun Java Runtime Environment <1.4.0.01 - Info Disclosure
Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model.
by Marc Schoenefeld
Microsoft Windows Media Player <7.1, XP - Path Traversal
Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (%5C) that causes an executable to be placed in an arbitrary location.
by Jelmer Kuperus
Sun JDK/SDK 1.3/1.4 / IBM JDK 1.3.1 / BEA Systems WebLogic 5/6/7 - java.util.zip Null Value Denial of Service (3)
by Marc Schoenefeld
AN HTTPd 1.38-1.4.1c - Remote Code Execution via SOCKS4 Username Overflow
Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username.
by Kanatoko
Click2Learn Ingenium Learning Management System 5.1 and 6.1 - Inadequate Encryption Strength
Click2Learn Ingenium Learning Management System 5.1 and 6.1 uses weak encryption for passwords (reversible algorithm), which allows attackers to obtain passwords.
by Brian Enigma
CVSS 7.5
Sun JRE 1.2.2 and 1.3.1 - Denial of Service via doPrivileged Method with Null Argument
java.security.AccessController in Sun Java Virtual Machine (JVM) in JRE 1.2.2 and 1.3.1 allows remote attackers to cause a denial of service (JVM crash) via a Java program that calls the doPrivileged method with a null argument.
by Taeho Oh
iBill password management - Info Disclosure
ibillpm.pl in iBill password management system generates weak passwords based on a client's MASTER_ACCOUNT, which allows remote attackers to modify account information in the .htpasswd file via brute force password guessing.
by MK Ultra
ProFTPd 1.2.0rc2 - Denial of Service via USER Command Memory Leak
Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.
by JeT-Li
ProFTPd 1.2.0rc2 - Denial of Service via USER Command Memory Leak
Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.
by JeT-Li
Serv-U FTP Server - Unauthenticated Password Guessing Bypass via Anti-Hammering Feature
Serv-U FTP Server allows remote attackers to bypass its anti-hammering feature by first logging on as a valid user (possibly anonymous) and then attempting to guess the passwords of other users.
by Craig
Infopulse Gatekeeper < 3.5 - Remote Code Execution via Long String Buffer Overflow
Buffer overflow in Infopulse Gatekeeper 3.5 and earlier allows remote attackers to execute arbitrary commands via a long string.
by Wizdumb
Savant web server - Command Injection
Savant web server allows remote attackers to execute arbitrary commands via a long GET request.
by Wizdumb
LeafChat 1.7 - Denial of Service via Rapid Error Message Flood
LeafChat 1.7 IRC client allows a remote IRC server to cause a denial of service by rapidly sending a large amount of error messages.
by MDMA Crew
EServ 2.9.2 - Buffer Overflow via MKD Command
Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command.
by Wizdumb
AVM KEN! ISDN Proxy Server - Denial of Service via Malformed Request
The AVM KEN! ISDN Proxy server allows remote attackers to cause a denial of service via a malformed request.
by eAX
Microsoft Java Virtual Machine - Unauthenticated Arbitrary File Read via getSystemResourceAsStream
Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function.
by Hiromitsu Takagi
By Source