Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests.
https://exchange.xforce.ibmcloud.com/vulnerabilities/17920
http://www.securityfocus.com/bid/11566
http://www.pentest.co.uk/documents/ptl-2004-06.html
http://www.osvdb.org/displayvuln.php?osvdb_id=11304
http://www.kb.cert.org/vuls/id/964401
http://www.ciac.org/ciac/bulletins/p-027.shtml
http://www.auscert.org.au/render.html?it=4516
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57606-1&searchclause=security