All tracked items across vulnerabilities, news, research, incidents, and regulatory updates.
Java SE versions 5.0 (before Update 20) and 6 (before Update 15), as well as OpenJDK, have a vulnerability where attackers could access sensitive information through static variables (data that stays the same for the entire program) that weren't marked as final (unchangeable). This affects multiple Java components across different libraries.
Fix: Update Java SE 5.0 to Update 20 or later, and Java SE 6 to Update 15 or later.
NVD/CVE DatabaseCVE-2009-2491 is a vulnerability in Sun Ray Server Software version 4.0 that affects the utaudiod daemon (a background service that handles audio) when Solaris Trusted Extensions is enabled. The flaw allows local users (people with access to the same computer) to view other users' sessions through resource leaks (memory or data not properly released), though the exact method is not publicly described.
A vulnerability exists in the utaudiod daemon (a background service that handles audio) in Sun Ray Server Software version 4.0 when Solaris Trusted Extensions is enabled. Local users (those with access to the system) could exploit this through unknown methods to either disable audio or potentially gain elevated privileges (higher system access levels), with the exact cause linked to resource leaks (memory or system resources not being properly released).
CVE-2009-2489 is a vulnerability in the utdmsession program within Sun Ray Server Software (SRSS) version 4.0 that allows local users (people with access to the same computer) to view and access the sessions of other users through unspecified methods. The exact technical details of how the vulnerability works are not publicly disclosed.
CVE-2009-2378 is a remote file inclusion vulnerability (a flaw that lets attackers load files from external URLs into a web application) in Jax FormMailer version 3.0.0. An attacker can exploit this by manipulating the BASE_DIR[jax_formmailer] parameter to execute arbitrary PHP code (unauthorized commands written in the PHP programming language) on the affected server.
IBM WebSphere Application Server (WAS) versions 7.0 before 7.0.0.3 and the Feature Pack for Web Services for WAS 6.1 before 6.1.0.25 have a vulnerability where they don't properly handle requests that are missing SOAPAction or WS-Addressing Action headers (fields that identify what action a web service request is performing) when WS-Security policies (security rules for web services) are set at the operation level. This allows attackers to send specially crafted requests that bypass the intended access restrictions.
A cross-site scripting vulnerability (XSS, where attackers inject malicious code into a website that runs in users' browsers) was found in Jack (tR) Jax LinkLists version 1.00 in a file called jax_linklists.php. An attacker could inject arbitrary web script or HTML through the cat parameter to trick users or steal their data.
Jax Guestbook versions 3.1 and 3.31 store sensitive user information, like IP addresses, in directories accessible to the web (the folder a website serves files from), with weak access controls that allow anyone on the internet to view it by directly requesting certain files. Remote attackers can obtain user IP addresses by requesting files like guestbook, guestbook_ips2block, ips2block, and formmailer/logfile.csv.
Jax Guestbook versions 3.1, 3.31, and 3.50 contain multiple cross-site scripting (XSS) vulnerabilities, which allow attackers to inject malicious web scripts or HTML code through the gmt_ofs and language parameters in the jax_guestbook.php file. XSS is a type of attack where an attacker tricks a website into running their code in a user's browser, potentially stealing data or session information.
A vulnerability (CVE-2009-1172) exists in IBM WebSphere Application Server (WAS), a platform for running web applications, versions 6.1 before 6.1.0.23 and 7.0 before 7.0.0.3 when a specific patch is installed. The flaw is in the JAX-RPC WS-Security runtime (components that handle secure web service communication), which fails to properly validate UsernameToken objects (credentials used to authenticate users), potentially allowing unauthorized access through unknown methods.
CVE-2009-1101 is a vulnerability in Java's lightweight HTTP server (a simple web server built into Java SE Development Kit and Java Runtime Environment version 6 Update 12 and earlier) that allows remote attackers to cause a denial of service (a situation where a service becomes unavailable, in this case through resource consumption) when a connection is made without sending any data, which causes a file descriptor leak (when the system fails to release resources it allocated for that connection). The vulnerability affects JAX-WS service endpoints (web services built with Java's web services framework).
Sun Ray Server Software versions 3.x and 4.0, along with Sun Ray Windows Connector versions 1.1 and 2.0, have a vulnerability where the LDAP password (a credential used to access directory services) is exposed during configuration. This allows local users (people with access to the system) to discover the Sun Ray administration password and gain unauthorized access to the Data Store and Administration GUI (graphical user interface, the visual control panel).
Sun Ray Server Software versions 3.1 through 4.0 had a vulnerability where access controls were not properly enforced, allowing remote attackers (hackers accessing the system from elsewhere on a network) to discover the administration password and gain unauthorized access to the Data Store and Administration GUI (graphical user interface, the control panel for the system). The exact method of attack was not publicly detailed.
CVE-2008-5347 is a security flaw in Sun's Java Runtime Environment (JRE, the software that runs Java programs) version 6 Update 10 and earlier that allows untrusted applets (small Java programs) and applications to gain elevated privileges (special access rights) by exploiting weaknesses in the JAX-WS and JAXB packages (libraries used for web services and data processing). The vulnerability works through vectors (methods of attack) related to access to inner classes in these packages.
CVE-2008-4720 is a remote file inclusion vulnerability (a type of code injection flaw where an attacker tricks a website into loading and running code from a URL they control) found in The Gemini Portal version 4.7. Attackers could exploit this by injecting a malicious URL into the 'lang' parameter of two specific files, allowing them to execute arbitrary PHP code (custom commands) on the affected server.
Triton CMS Pro contains a SQL injection vulnerability (a flaw where attackers can insert malicious SQL commands into a program's database queries) in how it processes the X-Forwarded-For HTTP header, allowing attackers to run arbitrary SQL commands on the affected system.
A directory traversal vulnerability (a flaw allowing attackers to access files outside their intended directory by using special path sequences like '..' to navigate backwards) exists in JaxUltraBB 2.0 and earlier. An attacker can exploit this through the viewprofile.php file by manipulating the user parameter to read arbitrary local files on the affected system.
CVE-2008-2965 is a cross-site scripting (XSS, a type of attack where an attacker injects malicious code into a webpage that runs in other users' browsers) vulnerability in JaxUltraBB (JUBB) version 2.0 and earlier. The flaw exists in the viewforum.php file and allows attackers to inject arbitrary web script or HTML through the forum parameter.
A vulnerability in the Device Manager daemon (utdevmgrd, a background service that manages devices) in Sun Ray Server Software versions 2.0, 3.0, 3.1, and 3.1.1 allows remote attackers to create or delete arbitrary directories without authorization. The exact method of exploitation is not detailed in the source.
Fix: Patches are available from Sun at http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-06-1 and http://sunsolve.sun.com/search/document.do?assetkey=1-66-252226-1, though specific version numbers or patch details are not provided in this source.
NVD/CVE DatabaseFix: Update to IBM WebSphere Application Server 7.0.0.3 or later, or update the Feature Pack for Web Services for WAS 6.1 to 6.1.0.25 or later.
NVD/CVE DatabaseFix: Patches are available from Sun at the following locations: http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-04-1, http://sunsolve.sun.com/search/document.do?assetkey=1-21-127556-03-1, and http://sunsolve.sun.com/search/document.do?assetkey=1-26-240506-1.
NVD/CVE DatabaseCVE-2008-3105 is a security flaw in JAX-WS (Java API for XML Web Services, a Java tool for building web services) within Sun's Java Runtime Environment version 6 Update 6 and earlier that allows attackers to access restricted URLs or crash the system through malicious XML (a data format) processing. The exact details of how the vulnerability works are not fully described, but it affects both the client and server components of the JAX-WS system.