CVSS: 5.9EPSS: 0%CPEs: 95EXPL: 0CVE-2006-5201
https://notcve.org/view.php?id=CVE-2006-5201
09 Oct 2006 — Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and o... • http://secunia.com/advisories/22204 •
CVSS: 7.5EPSS: 36%CPEs: 3EXPL: 2CVE-2006-2426 – Sun Java Applet - Font.createFont Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-2426
17 May 2006 — Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 and earlier, and SDK 1.5.0_6 and earlier allows remote attackers to cause a denial of service (disk consumption) by using the Font.createFont function to create temporary files of arbitrary size in the %temp% directory. • https://www.exploit-db.com/exploits/27882 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2006-0616
https://notcve.org/view.php?id=CVE-2006-0616
09 Feb 2006 — Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 4 and earlier allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "fourth issue." • http://docs.info.apple.com/article.html?artnum=303658 •
CVSS: 9.8EPSS: 0%CPEs: 30EXPL: 0CVE-2006-0615
https://notcve.org/view.php?id=CVE-2006-0615
09 Feb 2006 — Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 4 and earlier, SDK and JRE 1.4.x through 1.4.2_09 allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "second and third issues." • http://docs.info.apple.com/article.html?artnum=303658 •
CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 0CVE-2006-0614
https://notcve.org/view.php?id=CVE-2006-0614
09 Feb 2006 — Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 3 and earlier, SDK and JRE 1.3.x through 1.3.1_16 and 1.4.x through 1.4.2_08 allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "first issue." • http://docs.info.apple.com/article.html?artnum=303658 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2006-0617
https://notcve.org/view.php?id=CVE-2006-0617
09 Feb 2006 — Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 5 and earlier allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "fifth, sixth, and seventh issues." • http://docs.info.apple.com/article.html?artnum=303658 •
CVSS: 9.8EPSS: 8%CPEs: 29EXPL: 0CVE-2005-3904
https://notcve.org/view.php?id=CVE-2005-3904
30 Nov 2005 — Unspecified vulnerability in Java Management Extensions (JMX) in Java JDK and JRE 5.0 Update 3, 1.4.2 and later, 1.3.1 and later allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors. • http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html •
CVSS: 9.8EPSS: 11%CPEs: 122EXPL: 0CVE-2005-3905
https://notcve.org/view.php?id=CVE-2005-3905
30 Nov 2005 — Unspecified vulnerability in reflection APIs in Java SDK and JRE 1.3.1_15 and earlier, 1.4.2_08 and earlier, and JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors, a different vulnerability than CVE-2005-3906. NOTE: this is associated with the "first issue" identified in SUNALERT:102003. • http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html •
CVSS: 9.8EPSS: 11%CPEs: 122EXPL: 0CVE-2005-3906
https://notcve.org/view.php?id=CVE-2005-3906
30 Nov 2005 — Multiple unspecified vulnerabilities in reflection APIs in Java SDK and JRE 1.4.2_08 and earlier and JDK and JRE 5.0 Update 3 and earlier allow remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors, a different set of vulnerabilities than CVE-2005-3905. NOTE: this is associated with the "second and third issues" identified in SUNALERT:102003. • http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html •
CVSS: 9.8EPSS: 6%CPEs: 29EXPL: 0CVE-2005-3907
https://notcve.org/view.php?id=CVE-2005-3907
30 Nov 2005 — Unspecified vulnerability in Java Runtime Environment in Java JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors involving untrusted Java applets. • http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html •