Vulnerabilities (CVE)

Filtered by vendor Sun Subscribe
Filtered by product Java Enterprise System
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-2435 1 Sun 3 Java Enterprise System, Jre, Sdk 2024-11-21 10.0 HIGH N/A
Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.2_13 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect Use of System Classes" and probably related to support for JNLP files.
CVE-2006-3127 1 Sun 2 Java Enterprise System, Java System Directory Server 2024-11-21 7.8 HIGH N/A
Memory leak in Network Security Services (NSS) 3.11, as used in Sun Java Enterprise System 2003Q4 through 2005Q1 and Java System Directory Server 5.2, allows remote attackers to cause a denial of service (memory consumption) by performing a large number of RSA cryptographic operations.
CVE-2004-0826 4 Hp, Mozilla, Netscape and 1 more 10 Hp-ux, Network Security Services, Certificate Server and 7 more 2024-11-20 7.5 HIGH N/A
Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.