CVSS: 5.0EPSS: 34%CPEs: 1EXPL: 2CVE-2006-0647 – Sun ONE Directory Server 5.2 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-0647
LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service (memory allocation error) via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite. • https://www.exploit-db.com/exploits/27171 http://lists.immunitysec.com/pipermail/dailydave/2006-February/002914.html http://lists.immunitysec.com/pipermail/dailydave/2006-February/002916.html http://secunia.com/advisories/18769 http://securitytracker.com/id?1015604 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102294-1 http://www.securityfocus.com/bid/16550 http://www.vupen.com/english/advisories/2006/0492 https://exchange.xforce.ibmcloud.com/vulnerabilities/24605 •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2006-0531
https://notcve.org/view.php?id=CVE-2006-0531
Unspecified vulnerability in Sun Java System Access Manager 7.0 allows local users logged in as "root" to bypass authentication and gain top-level administrator privileges via the amadmin CLI tool. • http://secunia.com/advisories/18699 http://securitytracker.com/id?1015567 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102140-1 http://www.securityfocus.com/bid/16474 http://www.vupen.com/english/advisories/2006/0430 https://exchange.xforce.ibmcloud.com/vulnerabilities/24423 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A360 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A755 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2738
https://notcve.org/view.php?id=CVE-2005-2738
Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X does not prevent multiple programs from opening the same port as a Java ServerSocket, which allows local users to operate a Java program that intercepts network data intended for the ServerSocket of a different Java program. • http://docs.info.apple.com/article.html?artnum=302265 http://lists.apple.com/archives/security-announce/2005/Sep/msg00001.html http://secunia.com/advisories/16808 http://www.ciac.org/ciac/bulletins/p-306.shtml http://www.osvdb.org/19397 http://www.securityfocus.com/bid/14827 http://www.vupen.com/english/advisories/2005/1734 https://exchange.xforce.ibmcloud.com/vulnerabilities/22269 •
CVSS: 1.2EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2527
https://notcve.org/view.php?id=CVE-2005-2527
Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related to a temporary directory, possibly due to a symlink attack. • http://docs.info.apple.com/article.html?artnum=302266 http://lists.apple.com/archives/security-announce/2005/Sep/msg00001.html http://secunia.com/advisories/16808 http://www.ciac.org/ciac/bulletins/p-306.shtml http://www.securityfocus.com/bid/14825 http://www.vupen.com/english/advisories/2005/1734 https://exchange.xforce.ibmcloud.com/vulnerabilities/22262 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2005-4845
https://notcve.org/view.php?id=CVE-2005-4845
The Java Plug-in 1.4.2_03 and 1.4.2_04 controls, and the 1.4.2_03 and 1.4.2_04 <applet> redirector controls, allow remote attackers to cause a denial of service (Internet Explorer crash) by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet Explorer. • http://www.securityfocus.com/archive/1/391803 • CWE-16: Configuration •