CVSS: 6.8EPSS: 1%CPEs: 8EXPL: 0CVE-2006-6276
https://notcve.org/view.php?id=CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting (XSS), and poison web caches via unspecified attack vectors. Vulnerabilidad de contrabando de petición HTTP en Sun Java System Proxy Server anterior al 30/11/2006, cuando se usa con Sun Java System Application Server o Sun Java System Web Server, permite a atacantes remotos evitar el filtrado de petición HTTP, secuestrar sesiones web, realizar ataques de secuencias de comandos en sitios cruzados (XSS), y falsear la caché web mediante vectores de ataque no especificados. • http://secunia.com/advisories/23186 http://securitytracker.com/id?1017322 http://securitytracker.com/id?1017323 http://securitytracker.com/id?1017324 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102733-1 http://www.securityfocus.com/bid/21371 http://www.vupen.com/english/advisories/2006/4793 https://exchange.xforce.ibmcloud.com/vulnerabilities/30662 • CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') •
CVSS: 5.0EPSS: 9%CPEs: 8EXPL: 0CVE-2005-4806
https://notcve.org/view.php?id=CVE-2005-4806
Multiple unspecified vulnerabilities in Sun Java System Web Proxy Server 3.6 SP7 and earlier allow remote attackers to cause a denial of service (unresponsive service) via unknown vectors. • http://secunia.com/advisories/16757 http://securitytracker.com/id?1014875 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101913-1 http://www.vupen.com/english/advisories/2005/1689 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2005-1232
https://notcve.org/view.php?id=CVE-2005-1232
Buffer overflow in Sun Java System Web Proxy Server (aka Sun ONE Proxy Server) 3.6 SP6 allows remote attackers to execute arbitrary code via unknown vectors. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57763-1 http://www.securityfocus.com/bid/82356 •
CVSS: 7.5EPSS: 12%CPEs: 5EXPL: 0CVE-2004-1350
https://notcve.org/view.php?id=CVE-2004-1350
Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests. • http://secunia.com/advisories/13036 http://securitytracker.com/id?1012005 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57606-1&searchclause=security http://www.auscert.org.au/render.html?it=4516 http://www.ciac.org/ciac/bulletins/p-027.shtml http://www.kb.cert.org/vuls/id/964401 http://www.osvdb.org/displayvuln.php?osvdb_id=11304 http://www.pentest.co.uk/documents/ptl-2004-06.html http://www.securityfocus.com/bid/11566 https://exchange.xforce.ibmcloud. •