Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1123

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-1123
Last Modified 05 Sep 2008 04:36:06
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1123

Summary

Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model.

Vulnerable Systems

Application

  • Sun Jdk 1.2.2

  • Sun Jdk 1.2.2 10

  • Sun Jdk 1.2.2 11

  • Sun Jdk 1.2.2 12

  • Sun Jdk 1.3

  • Sun Jdk 1.3.0 02

  • Sun Jdk 1.3.0 05

  • Sun Jdk 1.3.1 01

  • Sun Jdk 1.3.1 01a

  • Sun Jdk 1.3.1 03

  • Sun Jdk 1.3.1 04

  • Sun Jdk 1.4

  • Sun Jdk 1.4.0 01

  • Sun Jre 1.2.2

  • Sun Jre 1.2.2 003

  • Sun Jre 1.2.2 011

  • Sun Jre 1.2.2 012

  • Sun Jre 1.3.0

  • Sun Jre 1.3.1

  • Sun Jre 1.3.1 03

  • Sun Jre 1.4

  • Sun Jre 1.4.0 01


References

CERT-VN - VU#393292

BID - 7824

SUNALERT - 55100

XF - sun-applet-access-information(12189)

SECTRACK - 1006935

SECUNIA - 8958


Last Updated: 27 May 2016 10:38:14