This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 2000-07-12
Product Java System Web Server Last view 2010-01-25
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:sun:java_system_web_server:6.1:*:*:*:*:*:*:* 13
cpe:2.3:a:sun:java_system_web_server:6.1:sp1:*:*:*:*:*:* 12
cpe:2.3:a:sun:java_system_web_server:6.1:sp4:*:*:*:*:*:* 11
cpe:2.3:a:sun:java_system_web_server:6.1:sp2:*:*:*:*:*:* 11
cpe:2.3:a:sun:java_system_web_server:6.1:sp3:*:*:*:*:*:* 11
cpe:2.3:a:sun:java_system_web_server:6.0:*:*:*:*:*:*:* 11
cpe:2.3:a:sun:java_system_web_server:6.1:sp5:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.0:sp2:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.0:sp6:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.0:sp7:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.0:sp3:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.0:sp1:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.0:sp5:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.0:sp4:*:*:*:*:*:* 10
cpe:2.3:a:sun:java_system_web_server:6.1:sp6:*:*:*:*:*:* 9
cpe:2.3:a:sun:java_system_web_server:6.0:sp9:*:*:*:*:*:* 9
cpe:2.3:a:sun:java_system_web_server:6.1:sp7:*:*:*:*:*:* 8
cpe:2.3:a:sun:java_system_web_server:6.0:sp8:*:*:*:*:*:* 8
cpe:2.3:a:sun:java_system_web_server:7.0:*:*:*:*:*:*:* 7
cpe:2.3:a:sun:java_system_web_server:6.0:sp10:*:*:*:*:*:* 7
cpe:2.3:a:sun:java_system_web_server:6.1:*:windows:*:*:*:*:* 6
cpe:2.3:a:sun:java_system_web_server:6.1:sp5:windows:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:sp4:windows:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:sp10:windows:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:sp6:windows:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:sp8:windows:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:sp7:windows:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:sp9:windows:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:7.0:*:hp_ux:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:*:aix:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:*:sparc:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:*:linux:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:*:x86:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:6.1:*:hp_ux:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:2.0:*:*:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:1.1.3:*:*:*:*:*:*:* 5
cpe:2.3:a:sun:java_system_web_server:7.0:update_7:*:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp6:aix:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp5:hp_ux:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp4:linux:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp10:linux:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp10:hp_ux:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp9:aix:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp5:linux:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp10:x86:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp8:sparc:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp5:x86:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp5:sparc:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp7:sparc:*:*:*:*:* 4
cpe:2.3:a:sun:java_system_web_server:6.1:sp9:x86:*:*:*:*:* 4

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
5 2010-01-25 CVE-2010-0389

The admin server in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP request that lacks a method token.

7.5 2010-01-25 CVE-2010-0388

Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in the encoding attribute of the XML declaration in a PROPFIND request.

7.5 2010-01-25 CVE-2010-0387

Multiple heap-based buffer overflows in (1) webservd and (2) the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long string in an "Authorization: Digest" HTTP header.

10 2010-01-20 CVE-2010-0361

Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long URI in an HTTP OPTIONS request.

10 2010-01-20 CVE-2010-0360

Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and discover the contents of memory locations, via a malformed HTTP TRACE request that includes a long URI and many empty headers, related to an "overflow." NOTE: this might overlap CVE-2010-0272 and CVE-2010-0273.

7.5 2010-01-08 CVE-2010-0273

Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to execute arbitrary code by sending a process memory address and crafted data to TCP port 80, as demonstrated by the vd_sjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information. However, because the VulnDisco author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

7.5 2010-01-08 CVE-2010-0272

Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to discover process memory locations via crafted data to TCP port 80, as demonstrated by the vd_sjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information. However, because the VulnDisco author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

9.3 2009-11-05 CVE-2009-3878

Buffer overflow in Sun Java System Web Server 7.0 Update 6 has unspecified impact and remote attack vectors, as demonstrated by the vd_sjws module in VulnDisco Pack Professional 8.12. NOTE: as of 20091105, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

4.3 2009-08-07 CVE-2009-2713

The CDCServlet component in Sun Java System Access Manager 7.0 2005Q4 and 7.1, when Cross Domain Single Sign On (CDSSO) is enabled, does not ensure that "policy advice" is presented to the correct client, which allows remote attackers to obtain sensitive information via unspecified vectors.

2.1 2009-08-07 CVE-2009-2712

Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.

5 2009-07-13 CVE-2009-2445

Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote attackers to read arbitrary JSP files via an alternate data stream syntax, as demonstrated by a .jsp::$DATA URI.

4.3 2009-06-05 CVE-2009-1934

Cross-site scripting (XSS) vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error.

4.3 2008-06-03 CVE-2008-2518

Cross-site scripting (XSS) vulnerability in the advanced search mechanism (webapps/search/advanced.jsp) in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably related to the next parameter.

4.3 2008-05-13 CVE-2008-2166

Cross-site scripting (XSS) vulnerability in the search module in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 2 allows remote attackers to inject arbitrary web script or HTML via unknown parameters in index.jsp.

5 2008-05-09 CVE-2008-2120

Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote attackers to obtain source code of JSP files via unknown vectors.

4.3 2007-12-28 CVE-2007-6572

Cross-site scripting (XSS) vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566204.

4.3 2007-12-28 CVE-2007-6571

Cross-site scripting (XSS) vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6611356.

4.3 2007-12-28 CVE-2007-6570

Cross-site scripting (XSS) vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.6 SP11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309.

4.3 2007-12-28 CVE-2007-6569

Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246.

7.5 2007-08-07 CVE-2007-4164

CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 before 20070802, when the redirect Server Application Function (SAF) uses the url-prefix parameter and escape is disabled, or an Error directive uses the url-prefix parameter in obj.conf, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks.

9.3 2007-07-11 CVE-2007-3715

Sun Java System Application Server and Web Server 7.0 through 9.0 before 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3716.

6 2007-03-20 CVE-2007-1526

Sun Java System Web Server 6.1 before 20070314 allows remote authenticated users with revoked client certificates to bypass the Certificate Revocation List (CRL) authorization control and access secure web server instances running under an account different from that used for the admin server via unspecified vectors.

7.5 2007-03-16 CVE-2007-1488

Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application.

6.8 2006-12-04 CVE-2006-6276

HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting (XSS), and poison web caches via unspecified attack vectors.

4 2006-11-02 CVE-2006-5654

Unspecified vulnerability in the Network Security Services (NSS) in Sun Java System Web Server 6.0 before SP 10 and ONE Application Server 7 before Update 3, when SSLv2 is enabled, allows remote authenticated users to cause a denial of service (application crash) via unspecified vectors. NOTE: due to lack of details from the vendor, it is unclear whether this is related to vector 1 in CVE-2006-5201 or CVE-2006-3127.

CWE : Common Weakness Enumeration

%idName
41% (7) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
23% (4) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
11% (2) CWE-200 Information Exposure
11% (2) CWE-20 Improper Input Validation
5% (1) CWE-264 Permissions, Privileges, and Access Controls
5% (1) CWE-134 Uncontrolled Format String

SAINT Exploits

Description Link
Sun Java System Web Server WebDAV OPTIONS request buffer overflow More info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
61980 Sun Java System Web Server Authorization: Digest HTTP Header Remote Overflow
61979 Sun Java System Web Server WebDAV Implementation PROPFIND Request Remote Form...
61978 Sun Java System Web Server Admin Server HTTP Request Method Token Weakness Re...
61852 Sun Java System Web Server TRACE Request Handling Overflow
61851 Sun Java System Web Server webservd OPTIONS Request Handling Overflow
61650 Sun Java System Web Server on Linux Crafted Memory Address Request Remote Cod...
61649 Sun Java System Web Server on Linux Crafted Data Remote Memory Location Discl...
59497 Sun Java System Web Server Unspecified Overflow
56816 Sun Java System Access Manager CDCServlet Component CDSSO Unspecified Informa...
56815 Sun Java System Access Manager AMConfig.properties com.iplanet.services.debug...
55655 Sun Java System Web Server ::$DATA Extension Request JSP Resource Disclosure
54872 Sun Java System Web Server Reverse Proxy Plug-in Unspecified XSS
46988 Sun Java System Web Server Redirect Feature CRLF Injection
45625 Sun Java System Web Server Advanced Search Mechanism Unspecified XSS
44948 Sun Java System Web Server / Application Server Unspecified JSP Source Disclo...
44850 Sun Java System Web Server lib/webapps/search/index.jps XSS
40851 Sun Java System Web Proxy Server View URL Database Functionality Unspecified XSS
40850 Sun Java System Web Proxy Server Unspecified XSS (6566204)
40849 Sun Java System Web Proxy Server Unspecified XSS (6611356)
40848 Sun Java System Web Proxy Server View Error Log Functionality XSS
37248 Sun Java System Web / Application Server Crafted XSLT Stylesheet Arbitrary Ja...
34080 Sun Java System Web Server Unspecified Information Disclosure
34074 Sun Java System Web Server Certificate Revocation List (CRL) Bypass
31727 Sun Java System Server Products HTTP Request Smuggling
30166 Sun ONE/Java System Web Server NSS Unspecified Remote DoS

ExploitDB Exploits

id Description
14287 Sun Java Web Server 7.0 u7 Exploit with DEP bypass
14194 Sun Java Web Server 7.0 u7 Remote Exploit

OpenVAS Exploits

id Description
2010-04-12 Name : Sun Java System Web Server Multiple Vulnerabilities
File : nvt/gb_sun_java_sys_web_serv_mult_vuln.nasl
2010-02-04 Name : Sun Java System Web Server Multiple Vulnerabilities (Linux)
File : nvt/gb_sun_java_sys_web_serv_mult_vuln_lin.nasl
2010-02-04 Name : Sun Java System Web Server Multiple Vulnerabilities (Win)
File : nvt/gb_sun_java_sys_web_serv_mult_vuln_win.nasl
2010-02-02 Name : Sun Java System Web Server Denial of Service Vulnerability (Win)
File : nvt/gb_sun_java_sys_web_serv_dos_vuln_win.nasl
2010-02-02 Name : Sun Java System Web Server Multiple Heap-based Buffer Overflow Vulnerabilitie...
File : nvt/gb_sun_java_sys_web_serv_heap_bof_vuln_lin.nasl
2009-11-12 Name : Sun Java System Web Server Buffer Overflow Vulnerability (Linux)
File : nvt/gb_sun_java_sys_web_serv_bof_vuln_lin.nasl
2009-11-12 Name : Sun Java System Web Server Buffer Overflow Vulnerability (Win)
File : nvt/gb_sun_java_sys_web_serv_bof_vuln_win.nasl
2009-08-26 Name : Sun Java System Access Manager Information Disclosure vulnerability
File : nvt/secpod_sjs_access_manager_info_disc_vuln.nasl
2009-08-26 Name : Sun JS Access Manager And OpenSSO Information Disclosure vulnerability
File : nvt/secpod_sjs_am_n_opensso_info_disc_vuln.nasl
2009-07-22 Name : Sun Java System Web Server '.jsp' Information Disclosure Vulnerability (Win)
File : nvt/gb_sun_java_sys_web_serv_info_disc_vuln.nasl
2009-06-19 Name : Sun Java System Web Proxy Server Vulnerabilities (Win)
File : nvt/gb_sun_java_sys_web_serv_xss_vuln_lin.nasl
2009-06-19 Name : Sun Java System Web Proxy Server Vulnerabilities (Win)
File : nvt/gb_sun_java_sys_web_serv_xss_vuln_win.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2008-B-0045 Multiple Sun Java System Application Server and Web Server Vulnerabilities
Severity: Category II - VMSKEY: V0016025

Snort® IPS/IDS

Date Description
2014-01-10 PROPPATCH Webdav Stack Buffer Overflow attempt
RuleID : 21238 - Type : WEB-MISC - Revision : 2
2014-01-10 PROPFIND Webdav Stack Buffer Overflow attempt
RuleID : 21237 - Type : WEB-MISC - Revision : 2
2014-01-10 UNLOCK Webdav Stack Buffer Overflow attempt
RuleID : 21236 - Type : SERVER-WEBAPP - Revision : 5
2014-01-10 MKCOL Webdav Stack Buffer Overflow attempt
RuleID : 21234 - Type : SERVER-WEBAPP - Revision : 7
2014-01-10 TRACE attempt
RuleID : 2056-community - Type : SERVER-WEBAPP - Revision : 12
2014-01-10 TRACE attempt
RuleID : 2056 - Type : SERVER-WEBAPP - Revision : 12
2014-01-10 Oracle Java Web Server Admin Server denial of service attempt
RuleID : 19101 - Type : SERVER-ORACLE - Revision : 8
2014-01-10 Oracle Java Web Server WebDAV Stack Buffer Overflow attempt
RuleID : 18613 - Type : SERVER-WEBAPP - Revision : 11
2014-01-10 Oracle Java Web Server WebDAV Stack Buffer Overflow attempt
RuleID : 18612 - Type : SERVER-WEBAPP - Revision : 14
2014-01-10 Oracle Java Web Server WebDAV Stack Buffer Overflow attempt
RuleID : 18611 - Type : SERVER-WEBAPP - Revision : 12
2014-01-10 Oracle Java Web Server WebDAV Stack Buffer Overflow attempt
RuleID : 17609 - Type : SERVER-WEBAPP - Revision : 10
2014-01-10 Oracle ONE Web Server JSP source code disclosure attempt
RuleID : 16682 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10 Oracle Java System Web Server 7.0 WebDAV format string exploit attempt - LOCK...
RuleID : 16427 - Type : SERVER-WEBAPP - Revision : 10
2014-01-10 Oracle Java System Web Server 7.0 WebDAV format string exploit attempt - PROP...
RuleID : 16426 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10 Oracle Java System Web Server 7.0u7 authorization digest heap overflow
RuleID : 16392 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10 BBoard access
RuleID : 1528-community - Type : SERVER-WEBAPP - Revision : 15
2014-01-10 BBoard access
RuleID : 1528 - Type : SERVER-WEBAPP - Revision : 15

Nessus® Vulnerability Scanner

id Description
2009-07-07 Name: The remote web server is affected by a source code disclosure vulnerability.
File: sun_web_svr_jsp_src_disclosure.nasl - Type: ACT_ATTACK
2009-04-23 Name: The remote host is missing Sun Security Patch number 120954-12
File: solaris10_120954.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 120955-12
File: solaris9_x86_120955.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 120955-12
File: solaris10_x86_120955.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 120954-12
File: solaris9_120954.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 120954-12
File: solaris8_120954.nasl - Type: ACT_GATHER_INFO
2008-05-09 Name: The remote web server contains a JSP application that is affected by a cross-...
File: sun_java_web_server_search_xss.nasl - Type: ACT_GATHER_INFO
2007-10-12 Name: The remote host is missing Sun Security Patch number 125437-22
File: solaris8_125437.nasl - Type: ACT_GATHER_INFO
2007-10-12 Name: The remote host is missing Sun Security Patch number 125438-22
File: solaris9_x86_125438.nasl - Type: ACT_GATHER_INFO
2007-10-12 Name: The remote host is missing Sun Security Patch number 125437-22
File: solaris9_125437.nasl - Type: ACT_GATHER_INFO
2007-10-12 Name: The remote host is missing Sun Security Patch number 125438-22
File: solaris10_x86_125438.nasl - Type: ACT_GATHER_INFO
2007-10-12 Name: The remote host is missing Sun Security Patch number 125437-22
File: solaris10_125437.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 119465-17
File: solaris8_119465.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 119465-17
File: solaris8_x86_119465.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 116648-25
File: solaris9_116648.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 119465-17
File: solaris9_119465.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 116648-25
File: solaris8_116648.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 119465-17
File: solaris9_x86_119465.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 119465-17
File: solaris10_x86_119465.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 119465-17
File: solaris10_119465.nasl - Type: ACT_GATHER_INFO
2006-11-06 Name: The remote host is missing Sun Security Patch number 116648-25
File: solaris10_116648.nasl - Type: ACT_GATHER_INFO
2000-09-10 Name: A web application running on the remote host has an arbitrary command executi...
File: bboard.nasl - Type: ACT_GATHER_INFO