The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Sun ONE Messaging Server

Exim, Postfix, Qmail-TLS: command injection with STARTTLS
Even when the SMTP client checks the TLS certificate of the messaging server, an attacker can inject commands in the session...
BID-46767, CERTA-2011-AVI-146, CERTA-2011-AVI-177, cpuapr2011, CVE-2011-0411, CVE-2011-1430, CVE-2011-1431, CVE-2011-1432, DSA-2233-1, FEDORA-2011-3355, FEDORA-2011-3394, FEDORA-2011-6771, FEDORA-2011-6777, MDVSA-2011:045, openSUSE-SU-2011:0389-1, RHSA-2011:0422-01, RHSA-2011:0423-01, SUSE-SR:2011:008, SUSE-SR:2011:009, SUSE-SR:2011:010, SUSE-SU-2011:0520-1, VIGILANCE-VUL-10428, VU#555316
Oracle Communications Messaging Server: several vulnerabilities of October 2010
Several vulnerabilities of Oracle Communications Messaging Server (Sun Java System Messaging Server) are corrected by the CPU of October 2010...
BID-43947, BID-43963, CVE-2010-3564, CVE-2010-3575, VIGILANCE-VUL-10036
Sun Java System Messaging: Cross Site Scripting of Webmail
An attacker can execute JavaScript code in the browser of a user, by using a malicious email...
242186, 6683220, BID-32285, CVE-2008-5098, VIGILANCE-VUL-8244
Sun Java System Messaging: Cross Site Scripting of errorHTML
An attacker may execute Javascript code in the browser of an user, by using a malicious email...
102909, 6509577, BID-20832, CVE-2006-5653, CVE-2007-2904, VIGILANCE-VUL-6836
Sun Java System Messaging: Cross Site Scripting of Webmail
An attacker can execute Javascript code in the browser of a user, by using a malicious email...
102497, 6441335, BID-20718, CVE-2006-5486, VIGILANCE-VUL-6248
OpenSSL / GnuTLS / NSS: bypassing a PKCS#1 signature check
An attacker can create a malicious PKCS #1 signature which will be accepted as valid by OpenSSL, GnuTLS or NSS...
102622, 102648, 102686, 102696, 102722, 102744, 102759, 102781, 102970, 10332, 20060901-01-P, 200708, 201255, 6378707, 6466389, 6467218, 6469236, 6469538, 6472033, 6473089, 6473494, 6488248, 6499438, 6567841, 6568090, BID-19849, c00794048, c00849540, c00967144, cisco-sr-20061108-openssl, CSCek57074, CSCsg09619, CSCsg24311, CSCsg58599, CSCsg58607, CSCtx20378, CVE-2006-4339, CVE-2006-4340, CVE-2006-4790, DSA-1173-1, DSA-1174-1, DSA-1182-1, emr_na-c01070495-1, FEDORA-2006-953, FEDORA-2006-974, FEDORA-2006-979, FreeBSD-SA-06:19.openssl, HPSBTU02207, HPSBUX02165, HPSBUX02186, HPSBUX02219, MDKSA-2006:161, MDKSA-2006:166, MDKSA-2006:207, NetBSD-SA2006-023, RHSA-2006:0661, RHSA-2006:0680-01, RHSA-2008:0264-01, RHSA-2008:0525-01, RT #16460, secadv_20060905, SSA:2006-310-01, SSRT061213, SSRT061239, SSRT061266, SSRT061273, SSRT071299, SSRT071304, SUSE-SA:2006:055, SUSE-SA:2006:061, SUSE-SR:2006:023, SUSE-SR:2006:026, TLSA-2006-29, VIGILANCE-VUL-6140, VU#845620
iPlanet Messaging Server: file reading with pipe_master
A local attacker can use pipe_master to read the first line of read protected files...
102496, 6441337, CVE-2006-3159, VIGILANCE-VUL-5928
Sun ONE Messaging : Cross Site Scripting de Webmail
Un attaquant peut faire exécuter du code Javascript dans le navigateur d'un utilisateur à l'aide d'un mail illicite...
101770, 6284060, BID-13988, BID-9998, CVE-2005-2022, V6-IPLANETIEWEBMAILXSS, VIGILANCE-VUL-5023
Cross Site Scripting du Webmail
Le service Webmail de iPlanet/SunONE/SunJava Messaging Server est sensible à une attaque de type Cross Site Scripting...
BID-11972, Sun Alert 57691, Sun Alert ID 57691, V6-IPLANETWEBMAILJSCRIPT, VIGILANCE-VUL-4568
Cross Site Scripting du Webmail
Le service Webmail de iPlanet/SunONE/SunJava Messaging Server est sensible à une attaque de type Cross Site Scripting...
BID-11636, BID-7704, Sun Alert 57665, Sun Alert ID 57665, V6-IPLANETMSWEBMAILXSS, VIGILANCE-VUL-3540
Our database contains other pages. You can request a free trial to read them.