Next Page >>
Sun
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
Multiple XSS in Sun Communications Express
1. *Advisory Information*
Title: Multiple XSS in Sun Communications Express
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
HTTP Response Splitting vulnerability in Sun Delegated Administrator
1. *Advisory Information*
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
Multiple vulnerabilities in Sun Calendar Express Web Server
1. *Advisory Information*
Title: Multiple vulnerabilities in Sun Calendar Express Web Server
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Sun JDK/JRE: Multiple vulnerabilites
Date: November 17, 2009
Bugs: #182824, #231337, #250012, #263810, #280409, #291817
ID: 200911-02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Advisory Name: Java Web Start File Inclusion via System Properties Override
Release Date: 2008-12-03
Application: Sun Java Runtime Environment / Java Web Start
Versions: See below
Severity: High
Author: Timothy D. Morgan <tmorgan {a} vsecurity.com>
Vendor Status: Patch Released [3]
CVE Candidate: CVE-2008-2086
============================================================
Sun Java System Acccess Manager & Identity Manager Users Enumeration
============================================================
Affected Software: Sun Java System Access Server, OpenSSo
Sun Java System Identity Manager
Author: Marco Mella - marco[ dot ]mella[at]aboutsecurity[dot]net
More information, Advisory and POC URL: http://www.aboutsecurity.net
Sun/Fujitsu M4000-M9000 machines are very expensive multicpu sparc64
architecture machines, scaling all the way up to 64 processors, 256
cores, and 512 threads. They use the Fujitsu SPARC64 VI (and more
recently VII) processors. The smallest models are large (6U 84kg),
and the larger models are fridge sized and cost more than a house.
These machines can be split into domains. These domains are like
virtual machines which can run their own OS, except that they are not
virtual. The chassis contains actual partitioning hardware which
routes the various cpus to only see specific hardware devices. The
component (likely a system board). Requiring a power cycle of the
whole frame to clear a fault with a single (or even multiple)
components is fairly poor, the most I would expect is to power cycle
the domain components.
I'm not surprised you didn't get any interest from Fujitsu/Sun
security people, for the reasons stated above. As for engineering, I
would expect they will only address the issue if they see a commercial
or reputational benefit in doing so (i.e. someone wants to spend a
*lot* of money on hardware to run OpenBSD, and this issue is a
show-stopper).
CVE-2008-5416 CVE-2008-0085 CVE-2008-0086
CVE-2008-0107 CVE-2008-0106
--- OpenSSL ---
CVE-2010-0740 CVE-2010-0433
CVE-2010-3864 CVE-2010-2939
--- Oracle (Sun) JRE ---
CVE-2009-3555 CVE-2010-0082 CVE-2010-0084
CVE-2010-0085 CVE-2010-0087 CVE-2010-0088
CVE-2010-0089 CVE-2010-0090 CVE-2010-0091
CVE-2010-0092 CVE-2010-0093 CVE-2010-0094
CVE-2010-0095 CVE-2010-0837 CVE-2010-0838
______________________________________________________________________
SUN/ORACLE JAVA VM Remote code execution
______________________________________________________________________
Release mode: Coordinated.
Ref : TZO-122009- SUN Java remote code execution
WWW : http://blog.zoller.lu/2009/04/sunoracle-java-vm-remote-code-execution.html
Vendor : http://www.sun.com
Disclosure Policy :
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
This is on a Solaris 7 box with the latest recommended patch set.
This is not the same bug as described here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1503
Below are snippets of Sun's response:
=========================================================
Sun> The issue you have seen regarding a single digit argument is different
Sun> as this form of ambiguous username returns user information for
accounts
CVE-2008-7270 CVE-2010-4180
--- libuser ---
CVE-2011-0002
--- nss, nspr ---
CVE-2010-3170 CVE-2010-3173
--- Oracle (Sun) JRE 1.6.0 ---
CVE-2010-1321 CVE-2010-3541 CVE-2010-3548 CVE-2010-3549
CVE-2010-3550 CVE-2010-3551 CVE-2010-3552 CVE-2010-3553
CVE-2010-3554 CVE-2010-3555 CVE-2010-3556 CVE-2010-3557
CVE-2010-3558 CVE-2010-3559 CVE-2010-3560 CVE-2010-3561
CVE-2010-3562 CVE-2010-3563 CVE-2010-3565 CVE-2010-3566
PR07-11: Cross-site Request Forgery (CSRF) on Sun Java System Identity
Manager
Date Found: 11th June 2007
Vendor Contacted: 18th June 2007
Date Public: 10th November 2008
Severity: Medium/High
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
Sun xVM VirtualBox Privilege Escalation Vulnerability
*Advisory Information*
Title: Sun xVM VirtualBox Privilege Escalation Vulnerability
VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Index
Vulnerability
http://www.vupen.com/english/research.php
I. BACKGROUND
---------------------
"Java is a programming language and computing platform released by
VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Pointer
Vulnerability
http://www.vupen.com/english/research.php
I. BACKGROUND
---------------------
"Java is a programming language and computing platform released by
VUPEN Security Research - Sun Java JDK/JRE Unpack200 Buffer Overflow
Vulnerability
http://www.vupen.com/english/research.php
I. BACKGROUND
---------------------
"Java is a programming language and computing platform released by
RISE-2008001
Sun Solstice AdminSuite sadmind adm_build_path() Buffer Overflow Vulnerability
http://risesecurity.org/advisories/RISE-2008001.txt
Published: October 14, 2008
Updated: October 14, 2008
INTRODUCTION
There exists a vulnerability within a function of the Sun Solstice AdminSuite
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[ Sun Solaris 10 filesystem rm(1),find(1),etc, Denial-of-service ]
Author: Maksymilian Arciemowicz
SecurityReason.com
Date:
- - Dis.: 17.04.2010
- - Pub.: 21.05.2010
Due to misconfiguration of mailing lists, it was just pointed out this is
already public. Apologies to those vendors who have not reacted to Sun's
announcements of December 2nd in a timely manner;
Mitre ID: CVE-2008-2938
Initial title: Java Runtime UTF-8 Decoding Flaw
Actual title: Java Runtime UTF-8 Decoder Smuggling Vector
PR08-09: Unauthenticated File Retrieval on Sun Java System Identity
Manager "ext" parameter
Date Found: 25th April 2008
Vendor Contacted: 28th April 2008
Date Public: 10th November 2008
Severity: High
>> It is for this reason I would not class this as a DoS attack,
>> as the "attacker" could not affect the availability of the other domains,
>> only the admin could.
>
> The admin is forced to choose between "bring the crashed domain back
> now by calling Sun and then powering the whole machine down" and
> "accept that the crashed domain is down until you call Sun and power
> the whole machine down". How is that not a denial of service? Do you
> work for Sun?
>
> If that is not a denial of service, I don't know what is.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Sun JDK/JRE: Multiple vulnerabilities
Date: April 17, 2008
Bugs: #178851, #178962, #183580, #185256, #194711, #212425
ID: 200804-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
-- Corsaire Security Advisory --
Title: Sun J2RE DoS issue
Date: 05.09.06
Application: Sun JRE 5.0 prior to update 14
Environment: Sun JRE
Author: Martin O'Neal [martin.oneal@corsaire.com]
Audience: General distribution
Reference: c060905-002
ZDI-10-075: Sun Microsystems Directory Server Enterprise DSML UTF-8 Denial of Service Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-075
April 13, 2010
-- CVE ID:
CVE-2010-0897
-- Affected Vendors:
Sun Microsystems
ZDI-10-073: Sun Microsystems Directory Server DSML-over-HTTP Username Search Denial of Service Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-073
April 13, 2010
-- CVE ID:
CVE-2010-0897
-- Affected Vendors:
Sun Microsystems
Next Page>>
|
