Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3904

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3904
Last Modified 07 Mar 2011 09:27:21
Published 30 Nov 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3904

Summary

Unspecified vulnerability in Java Management Extensions (JMX) in Java JDK and JRE 5.0 Update 3, 1.4.2 and later, 1.3.1 and later allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors.

Vulnerable Systems

Application

  • Sun Jdk 1.5.0 03

  • Sun Jre 1.3.0

  • Sun Jre 1.3.1

  • Sun Jre 1.4.1

  • Sun Jre 1.4.2

  • Sun Jre 1.5.0


References

CERT-VN - VU#931684

SECUNIA - 17748

VUPEN - ADV-2005-2946

VUPEN - ADV-2005-2675

VUPEN - ADV-2005-2636

BID - 15615

SUNALERT - 102017

XF - sun-jmx-elevate-privileges(23252)

CONFIRM - http://www-1.ibm.com/support/docview.wss?uid=swg21225628

SECTRACK - 1015281

SECUNIA - 18503

SECUNIA - 18092

SECUNIA - 17847

APPLE - APPLE-SA-2005-11-30


Last Updated: 27 May 2016 10:41:06