Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1187

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-1187
Last Modified 07 Apr 2011 12:00:00
Published 06 Mar 2008 04:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1187

Summary

Unspecified vulnerability in Sun Java Runtime Environment (JRE) and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.2_16 and earlier allows remote attackers to cause a denial of service (JRE crash) and possibly execute arbitrary code via unknown vectors related to XSLT transforms.

Vulnerable Systems

Application

  • Sun Jdk 5.0

  • Sun Jdk 6

  • Sun Jre 1.4.2 01

  • Sun Jre 1.4.2 02

  • Sun Jre 1.4.2 03

  • Sun Jre 1.4.2 04

  • Sun Jre 1.4.2 05

  • Sun Jre 1.4.2 06

  • Sun Jre 1.4.2 07

  • Sun Jre 1.4.2 1

  • Sun Jre 1.4.2 10

  • Sun Jre 1.4.2 11

  • Sun Jre 1.4.2 12

  • Sun Jre 1.4.2 13

  • Sun Jre 1.4.2 14

  • Sun Jre 5.0

  • Sun Jre 6

  • Sun Sdk 1.4.2

  • Sun Sdk 1.4.2 01

  • Sun Sdk 1.4.2 02

  • Sun Sdk 1.4.2 03

  • Sun Sdk 1.4.2 04

  • Sun Sdk 1.4.2 05

  • Sun Sdk 1.4.2 06

  • Sun Sdk 1.4.2 07

  • Sun Sdk 1.4.2 08

  • Sun Sdk 1.4.2 09

  • Sun Sdk 1.4.2 1

  • Sun Sdk 1.4.2 10

  • Sun Sdk 1.4.2 11

  • Sun Sdk 1.4.2 12

  • Sun Sdk 1.4.2 13

  • Sun Sdk 1.4.2 14

  • Sun Sdk 1.4.2 15

  • Sun Sdk 1.4.2 16


References

CERT - TA08-066A

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2008-0010.html

SUNALERT - 233322

CONFIRM - http://download.novell.com/Download?buildid=q5exhSqeBjA~

XF - java-virtualmachine-multiple-priv-escalation(41025)

VUPEN - ADV-2008-1856

VUPEN - ADV-2008-1252

VUPEN - ADV-2008-0770

SECTRACK - 1019548

REDHAT - RHSA-2008:0555

REDHAT - RHSA-2008:0267

REDHAT - RHSA-2008:0245

REDHAT - RHSA-2008:0244

REDHAT - RHSA-2008:0243

REDHAT - RHSA-2008:0210

REDHAT - RHSA-2008:0186

GENTOO - GLSA-200806-11

GENTOO - GLSA-200804-20

CONFIRM - http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5033642.html

CONFIRM - http://support.apple.com/kb/HT3179

CONFIRM - http://support.apple.com/kb/HT3178

GENTOO - GLSA-200804-28

SECUNIA - 32018

SECUNIA - 31586

SECUNIA - 31580

SECUNIA - 31497

SECUNIA - 31067

SECUNIA - 30780

SECUNIA - 30676

SECUNIA - 30003

SECUNIA - 29999

SECUNIA - 29897

SECUNIA - 29858

SECUNIA - 29841

SECUNIA - 29582

SECUNIA - 29498

SECUNIA - 29273

SECUNIA - 29239

SUSE - SUSE-SA:2008:025

SUSE - SUSE-SA:2008:018

APPLE - APPLE-SA-2008-09-24

JVNDB - JVNDB-2008-000016

JVN - JVN#04032535

BEA - BEA08-201.00

Related Patches

Apple 2008-09-24 Java for Mac OS X 10.4 Release 7


Last Updated: 27 May 2016 10:47:03