CVSS: 6.8EPSS: 1%CPEs: 20EXPL: 0CVE-2006-2501
https://notcve.org/view.php?id=CVE-2006-2501
Cross-site scripting (XSS) vulnerability in Sun ONE Web Server 6.0 SP9 and earlier, Java System Web Server 6.1 SP4 and earlier, Sun ONE Application Server 7 Platform and Standard Edition Update 6 and earlier, and Java System Application Server 7 2004Q2 Standard and Enterprise Edition Update 2 and earlier, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, possibly involving error messages. • http://jvn.jp/jp/JVN%2303D5EAA8/index.html http://secunia.com/advisories/20147 http://securitytracker.com/id?1016125 http://securitytracker.com/id?1016126 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102164-1 http://www.kb.cert.org/vuls/id/114956 http://www.securityfocus.com/bid/18035 http://www.vupen.com/english/advisories/2006/1866 https://exchange.xforce.ibmcloud.com/vulnerabilities/26550 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1889
https://notcve.org/view.php?id=CVE-2005-1889
Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and earlier allows attackers to read files. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-101690-1 http://www.vupen.com/english/advisories/2005/0695 •
CVSS: 5.0EPSS: 1%CPEs: 8EXPL: 0CVE-2005-1150
https://notcve.org/view.php?id=CVE-2005-1150
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and earlier, when running on Windows systems, allows attackers to cause a denial of service (hang). • http://secunia.com/advisories/14961 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57760-1 http://www.osvdb.org/15504 •
CVSS: 5.0EPSS: 2%CPEs: 13EXPL: 0CVE-2004-2216
https://notcve.org/view.php?id=CVE-2004-2216
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and earlier and 6.1 SP1 and earlier, and Application Server 7 Update 4 and earlier, allows remote attackers to cause a denial of service (crash) via a malformed client certificate. • http://secunia.com/advisories/13072 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101589-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57669-1 http://www.osvdb.org/11383 http://www.securityfocus.com/bid/11593 https://exchange.xforce.ibmcloud.com/vulnerabilities/17941 •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 1CVE-2000-0812
https://notcve.org/view.php?id=CVE-2000-0812
The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/197&type=0&nav=sec.sba http://www.securityfocus.com/bid/1600 http://www.securityfocus.com/templates/advisory.html?id=2542 https://exchange.xforce.ibmcloud.com/vulnerabilities/5135 •