Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5689

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-5689
Last Modified 07 Mar 2011 10:01:08
Published 29 Oct 2007 03:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5689

Summary

The Java Virtual Machine (JVM) in Sun Java Runtime Environment (JRE) in SDK and JRE 1.3.x through 1.3.1_20 and 1.4.x through 1.4.2_15, and JDK and JRE 5.x through 5.0 Update 12 and 6.x through 6 Update 2, allows remote attackers to execute arbitrary programs, or read or modify arbitrary files, via applets that grant privileges to themselves.

Vulnerable Systems

Application

  • Sun Jdk 1.5.0

  • Sun Jdk 1.6.0

  • Sun Jre 1.3.0

  • Sun Jre 1.3.1

  • Sun Jre 1.4

  • Sun Jre 1.4.1

  • Sun Jre 1.4.2

  • Sun Jre 1.5.0

  • Sun Jre 1.6.0

  • Sun Sdk 1.3.1 01

  • Sun Sdk 1.3.1 01a

  • Sun Sdk 1.3.1 16

  • Sun Sdk 1.3.1 18

  • Sun Sdk 1.3.1 19

  • Sun Sdk 1.3.1 20

  • Sun Sdk 1.4.2

  • Sun Sdk 1.4.2 03

  • Sun Sdk 1.4.2 08

  • Sun Sdk 1.4.2 09

  • Sun Sdk 1.4.2 10

  • Sun Sdk 1.4.2 11

  • Sun Sdk 1.4.2 12

  • Sun Sdk 1.4.2 13

  • Sun Sdk 1.4.2 14

  • Sun Sdk 1.4.2 15


References

SUNALERT - 103112

SECUNIA - 27320

VUPEN - ADV-2008-1856

VUPEN - ADV-2008-0609

VUPEN - ADV-2007-3895

VUPEN - ADV-2007-3589

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2008-0010.html

GENTOO - GLSA-200806-11

SECUNIA - 30780

SECUNIA - 30676

OSVDB - 40834

HP - HPSBUX02284

SECTRACK - 1018847

BID - 26185

GENTOO - GLSA-200804-20

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2007-480.htm

GENTOO - GLSA-200804-28

SECUNIA - 29858

SECUNIA - 29042

SECUNIA - 27693

BEA - BEA08-198.00

HP - SSRT071483


Last Updated: 27 May 2016 10:47:27