Next Page >>
The Sun
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
Multiple XSS in Sun Communications Express
1. *Advisory Information*
Title: Multiple XSS in Sun Communications Express
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
HTTP Response Splitting vulnerability in Sun Delegated Administrator
1. *Advisory Information*
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
Multiple vulnerabilities in Sun Calendar Express Web Server
1. *Advisory Information*
Title: Multiple vulnerabilities in Sun Calendar Express Web Server
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Sun JDK/JRE: Multiple vulnerabilites
Date: November 17, 2009
Bugs: #182824, #231337, #250012, #263810, #280409, #291817
ID: 200911-02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Advisory Name: Java Web Start File Inclusion via System Properties Override
Release Date: 2008-12-03
Application: Sun Java Runtime Environment / Java Web Start
Versions: See below
Severity: High
Author: Timothy D. Morgan <tmorgan {a} vsecurity.com>
Vendor Status: Patch Released [3]
CVE Candidate: CVE-2008-2086
============================================================
Sun Java System Acccess Manager & Identity Manager Users Enumeration
============================================================
Affected Software: Sun Java System Access Server, OpenSSo
Sun Java System Identity Manager
Author: Marco Mella - marco[ dot ]mella[at]aboutsecurity[dot]net
More information, Advisory and POC URL: http://www.aboutsecurity.net
Sun/Fujitsu M4000-M9000 machines are very expensive multicpu sparc64
architecture machines, scaling all the way up to 64 processors, 256
cores, and 512 threads. They use the Fujitsu SPARC64 VI (and more
recently VII) processors. The smallest models are large (6U 84kg),
and the larger models are fridge sized and cost more than a house.
These machines can be split into domains. These domains are like
virtual machines which can run their own OS, except that they are not
virtual. The chassis contains actual partitioning hardware which
routes the various cpus to only see specific hardware devices. The
component (likely a system board). Requiring a power cycle of the
whole frame to clear a fault with a single (or even multiple)
components is fairly poor, the most I would expect is to power cycle
the domain components.
I'm not surprised you didn't get any interest from Fujitsu/Sun
security people, for the reasons stated above. As for engineering, I
would expect they will only address the issue if they see a commercial
or reputational benefit in doing so (i.e. someone wants to spend a
*lot* of money on hardware to run OpenBSD, and this issue is a
show-stopper).
CVE-2008-5416 CVE-2008-0085 CVE-2008-0086
CVE-2008-0107 CVE-2008-0106
--- OpenSSL ---
CVE-2010-0740 CVE-2010-0433
CVE-2010-3864 CVE-2010-2939
--- Oracle (Sun) JRE ---
CVE-2009-3555 CVE-2010-0082 CVE-2010-0084
CVE-2010-0085 CVE-2010-0087 CVE-2010-0088
CVE-2010-0089 CVE-2010-0090 CVE-2010-0091
CVE-2010-0092 CVE-2010-0093 CVE-2010-0094
CVE-2010-0095 CVE-2010-0837 CVE-2010-0838
______________________________________________________________________
SUN/ORACLE JAVA VM Remote code execution
______________________________________________________________________
Release mode: Coordinated.
Ref : TZO-122009- SUN Java remote code execution
WWW : http://blog.zoller.lu/2009/04/sunoracle-java-vm-remote-code-execution.html
Vendor : http://www.sun.com
Disclosure Policy :
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
ORA240BC OfO v8.1.7 for HP-UX Eval LTU & Media
ORA300BC OfO v8.1.7 for Win 2000/NT LTU
ORA305BC OfO v8.1.7 for Win 2000/NT 5 LTU Bundle
ORA330BC OfO v8.1.7 for Win 2000/NT Media
ORA340BC OfO v8.1.7 for Win 2000/NT Eval LTU
ORA400BC OfO v8.1.7 for Sun Solaris LTU
ORA405BC OfO v8.1.7 for Sun Solaris 5 LTU Bundle
ORA430BC OfO v8.1.7 for Sun Solaris Media
ORA440BC OfO v8.1.7 for Sun Solaris Eval LTU
ORA600CA OfO for Linux LTU
ORA605CA OfO for Linux LTU Service Bureaus Bundle
This is on a Solaris 7 box with the latest recommended patch set.
This is not the same bug as described here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1503
Below are snippets of Sun's response:
=========================================================
Sun> The issue you have seen regarding a single digit argument is different
Sun> as this form of ambiguous username returns user information for
accounts
PR07-11: Cross-site Request Forgery (CSRF) on Sun Java System Identity
Manager
Date Found: 11th June 2007
Vendor Contacted: 18th June 2007
Date Public: 10th November 2008
Severity: Medium/High
Hash: SHA1
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
Sun xVM VirtualBox Privilege Escalation Vulnerability
*Advisory Information*
Title: Sun xVM VirtualBox Privilege Escalation Vulnerability
VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Index
Vulnerability
http://www.vupen.com/english/research.php
I. BACKGROUND
---------------------
"Java is a programming language and computing platform released by
VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Pointer
Vulnerability
http://www.vupen.com/english/research.php
I. BACKGROUND
---------------------
"Java is a programming language and computing platform released by
VUPEN Security Research - Sun Java JDK/JRE Unpack200 Buffer Overflow
Vulnerability
http://www.vupen.com/english/research.php
I. BACKGROUND
---------------------
"Java is a programming language and computing platform released by
RISE-2008001
Sun Solstice AdminSuite sadmind adm_build_path() Buffer Overflow Vulnerability
http://risesecurity.org/advisories/RISE-2008001.txt
Published: October 14, 2008
Updated: October 14, 2008
INTRODUCTION
There exists a vulnerability within a function of the Sun Solstice AdminSuite
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Sun JDK/JRE: Multiple vulnerabilities
Date: April 17, 2008
Bugs: #178851, #178962, #183580, #185256, #194711, #212425
ID: 200804-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[ Sun Solaris 10 filesystem rm(1),find(1),etc, Denial-of-service ]
Author: Maksymilian Arciemowicz
SecurityReason.com
Date:
- - Dis.: 17.04.2010
- - Pub.: 21.05.2010
Due to misconfiguration of mailing lists, it was just pointed out this is
already public. Apologies to those vendors who have not reacted to Sun's
announcements of December 2nd in a timely manner;
Mitre ID: CVE-2008-2938
Initial title: Java Runtime UTF-8 Decoding Flaw
Actual title: Java Runtime UTF-8 Decoder Smuggling Vector
PR08-09: Unauthenticated File Retrieval on Sun Java System Identity
Manager "ext" parameter
Date Found: 25th April 2008
Vendor Contacted: 28th April 2008
Date Public: 10th November 2008
Severity: High
>> It is for this reason I would not class this as a DoS attack,
>> as the "attacker" could not affect the availability of the other domains,
>> only the admin could.
>
> The admin is forced to choose between "bring the crashed domain back
> now by calling Sun and then powering the whole machine down" and
> "accept that the crashed domain is down until you call Sun and power
> the whole machine down". How is that not a denial of service? Do you
> work for Sun?
>
> If that is not a denial of service, I don't know what is.
-- Corsaire Security Advisory --
Title: Sun J2RE DoS issue
Date: 05.09.06
Application: Sun JRE 5.0 prior to update 14
Environment: Sun JRE
Author: Martin O'Neal [martin.oneal@corsaire.com]
Audience: General distribution
Reference: c060905-002
http://labs.idefense.com/intelligence/vulnerabilities/
Mar 25, 2009
I. BACKGROUND
The Sun Java JRE is Sun's implementation of the Java runtime. For more
information, see the vendor's site found at the following link.
http://www.java.com
II. DESCRIPTION
=======
Cisco ASA 5500 Series Adaptive Security Appliances are affected by
multiple vulnerabilities as follows:
* Three SunRPC Inspection Denial of Service Vulnerabilities
* Three Transport Layer Security (TLS) Denial of Service
Vulnerabilities
* Session Initiation Protocol (SIP) Inspection Denial of Service
Vulnerability
* Crafted Internet Key Exchange (IKE) Message Denial of Service
vulnerabilities as follows:
* MSN Instant Messenger (IM) Inspection Denial of Service
vulnerability
* TACACS+ Authentication Bypass vulnerability
* Four SunRPC Inspection Denial of Service vulnerabilities
* Internet Locator Service (ILS) Inspection Denial of Service
vulnerability
These vulnerabilities are independent; a release that is affected by
one vulnerability may not necessarily be affected by the others.
Next Page>>
|
