Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1195

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-1195
Last Modified 07 Mar 2011 10:06:18
Published 06 Mar 2008 04:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1195

Summary

Unspecified vulnerability in Sun JDK and Java Runtime Environment (JRE) 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.2_16 and earlier; allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java APIs.

Vulnerable Systems

Application

  • Sun Jdk 1.4.2 16

  • Sun Jdk 5.0 Update 14

  • Sun Jdk 6 Update 4

  • Sun Jre 1.4.2 16

  • Sun Jre 5.0 Update 14

  • Sun Jre 6 Update 4


References

CERT - TA08-087A

CERT - TA08-066A

XF - sun-jre-javascript-unauthorized-access(41030)

VUPEN - ADV-2008-1856

VUPEN - ADV-2008-1793

VUPEN - ADV-2008-0998

VUPEN - ADV-2008-0770

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2008-0010.html

UBUNTU - USN-592-1

SECTRACK - 1019553

BUGTRAQ - 20080327 rPSA-2008-0128-1 firefox

REDHAT - RHSA-2008:0267

REDHAT - RHSA-2008:0210

REDHAT - RHSA-2008:0186

CONFIRM - http://www.mozilla.org/security/announce/2008/mfsa2008-18.html

MANDRIVA - MDVSA-2008:080

GENTOO - GLSA-200806-11

GENTOO - GLSA-200804-20

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0128

CONFIRM - http://support.apple.com/kb/HT3179

CONFIRM - http://support.apple.com/kb/HT3178

SUNALERT - 238492

SUNALERT - 233326

GENTOO - GLSA-200804-28

SECUNIA - 32018

SECUNIA - 31497

SECUNIA - 30780

SECUNIA - 30676

SECUNIA - 30620

SECUNIA - 29897

SECUNIA - 29858

SECUNIA - 29645

SECUNIA - 29582

SECUNIA - 29560

SECUNIA - 29547

SECUNIA - 29541

SECUNIA - 29526

SECUNIA - 29498

SECUNIA - 29273

SECUNIA - 29239

SUSE - SUSE-SA:2008:025

SUSE - SUSE-SA:2008:019

SUSE - SUSE-SA:2008:018

APPLE - APPLE-SA-2008-09-24

Related Patches

Apple 2008-09-24 Java for Mac OS X 10.4 Release 7

Novell SUSE 2008:5164 mozilla-xulrunner security update for SLE 10 SP1 i586


Last Updated: 27 May 2016 10:47:04