RSS   Vulnerabilities for 'Solaris answerbook2'   RSS

2005-05-02
 
CVE-2005-0549

 

 
Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the "View Log Files" function.

 
2005-03-07
 
CVE-2005-0548

 

 
Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search function.

 
2002-12-31
 
CVE-2002-2425

 

 
Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request.

 
2002-06-25
 
CVE-2002-0360

 

 
Buffer overflow in Sun AnswerBook2 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long filename argument to the gettransbitmap CGI program.

 
2000-10-20
 
CVE-2000-0697

 

 
The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters.

 
 
CVE-2000-0696

CWE-Other
 

 
The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script.

 

 >>> Vendor: SUN 199 Products
Solaris
Sunos
NFS
JAVA
Cobalt raq
Rpc.ruserd
Cobalt raq 2
Cobalt raq 3i
Sparc
Web-based enterprise management
Solstice adminsuite
Forte
Netbeans developer
Openwindows
Solstice backup
Solaris isp server
Staroffice
Workshop
Java system web server
Solaris answerbook2
Hotjava browser
Iplanet certificate management system
JDK
Cluster
Chilisoft
Sun ftp
Javaserver web dev kit
Iplanet web server
Sunvts
Netdynamics
Java plug-in
JRE
Iplanet directory server
Management+center
SDK
Cobalt raq 4
One application server
Sun pci ii driver
I-runbook
One web server
Linux
Cobalt raq xtr
Sunone starter kit
Java web start
Ray server software
Solaris pc netlink
Patchpro
Enterprise authentication mechanism
One directory server
Sun fire
JMF
J2EE
Change manager
Crypto accelerator 4000
SEAM
Java system calendar server
Dtmail
Java desktop system
Java enterprise system
Java system application server
Enterprise storage manager
Storedge 3310 scsi array
Storedge 3510 fc array
Java system web proxy server
Patch manager
JSSE
Netra 1280
Sunforum
Storedge qfs
Storedge sam-qfs
Storeedge performance suite
Storeedge utilization suite
Iplanet messaging server
One messaging server
RTE
Storedge enterprise backup software
J2SE
Javamail
Storedge 6130 arrays
Java system directory proxy server
Java system directory server
One administration server
Java system communications express
Java communications services delegated administrator
Wbem services
Grid engine
Java system access manager
N1 grid engine
Java studio enterprise
N1 system manager
Storage automated diagnostic environment
Java system content delivery server
Secure global desktop
NSS
Java system messaging server
Iplanet messaging server messenger express
Java system messenger express
Chainkey java code protection
Java dynamic management kit
Java web console
See all Products for Vendor SUN


Copyright 2019, cxsecurity.com

 

Back to Top