Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0657

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0657
Last Modified 07 Mar 2011 10:05:03
Published 07 Feb 2008 04:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0657

Summary

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Vulnerable Systems

Application

  • Sun Jdk 5.0 Update13

  • Sun Jre 1.5.0

  • Sun Jre 1.6.0


References

SECUNIA - 28795

VUPEN - ADV-2008-1856

VUPEN - ADV-2008-1252

VUPEN - ADV-2008-0429

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2008-0010.html

SECTRACK - 1019308

BID - 27650

REDHAT - RHSA-2008:0210

REDHAT - RHSA-2008:0156

REDHAT - RHSA-2008:0123

GENTOO - GLSA-200806-11

GENTOO - GLSA-200804-20

SUNALERT - 231261

GENTOO - GLSA-200804-28

SECUNIA - 31497

SECUNIA - 30780

SECUNIA - 30676

SECUNIA - 29897

SECUNIA - 29858

SECUNIA - 29841

SECUNIA - 29498

SECUNIA - 29214

SECUNIA - 28888

SUSE - SUSE-SA:2008:025

BEA - BEA08-201.00


Last Updated: 27 May 2016 10:46:52