Sun Java Web Proxy Server 4.0.4

CPE Details

Sun Java Web Proxy Server 4.0.4
sun
java_system_web_proxy_server
4.0.4
2007-08-23
19h16 +00:00
2008-04-01
14h55 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:sun:java_system_web_proxy_server:4.0.4:*:*:*:*:*:*:*

Informations

Vendor

sun

Product

java_system_web_proxy_server

Version

4.0.4

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2008-4541 2008-10-13 16h00 +00:00 Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.
10
CVE-2007-6570 2007-12-28 20h00 +00:00 Cross-site scripting (XSS) vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.6 SP11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309.
4.3
CVE-2007-6571 2007-12-28 20h00 +00:00 Cross-site scripting (XSS) vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6611356.
4.3
CVE-2007-6572 2007-12-28 20h00 +00:00 Cross-site scripting (XSS) vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566204.
4.3
CVE-2007-2881 2007-05-29 18h00 +00:00 Multiple stack-based buffer overflows in the SOCKS proxy support (sockd) in Sun Java Web Proxy Server before 4.0.5 allow remote attackers to execute arbitrary code via crafted packets during protocol negotiation.
10
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.