CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1350

HIGH
7.5
CVSS Severity Score
EPSS Score0.1030%
EPSS Percentile11.21th
PublishedOct 30, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests.

Affected Platforms (CPE)

πŸ“¦
Sun

Java System Web Proxy Server

= 3.6
πŸ“¦
Sun

Java System Web Proxy Server

= 3.6
πŸ“¦
Sun

Java System Web Proxy Server

= 3.6
πŸ“¦
Sun

Java System Web Proxy Server

= 3.6
πŸ“¦
Sun

Java System Web Proxy Server

= 3.6

References & Advisories

πŸ”— http://secunia.com/advisories/13036/
πŸ”— http://securitytracker.com/id?1012005
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-26-57606-1&searchclause=security
πŸ”— http://www.auscert.org.au/render.html?it=4516
πŸ”— http://www.ciac.org/ciac/bulletins/p-027.shtml
πŸ”— http://www.kb.cert.org/vuls/id/964401
πŸ”— http://www.osvdb.org/displayvuln.php?osvdb_id=11304
πŸ”— http://www.pentest.co.uk/documents/ptl-2004-06.html

Related Vulnerabilities

CVE-2008-454110.0

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to e...

CVE-2009-25977.8

The Sun Java System (SJS) Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a d...

CVE-2005-12327.5

Buffer overflow in Sun Java System Web Proxy Server (aka Sun ONE Proxy Server) 3.6 SP6 allows remote attackers to execute arbitrar...

CVE-2006-62766.8

HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application S...