Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4910

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4910
Last Modified 29 Jan 2009 01:57:43
Published 03 Nov 2008 07:57:30
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4910

Summary

The BasicService in Sun Java Web Start allows remote attackers to execute arbitrary programs on a client machine via a file:// URL argument to the showDocument method.

Vulnerable Systems

Application

  • Sun Java Web Start


References

XF - sun-jws-showdocument-command-execution(46119)

BID - 31916

BUGTRAQ - 20081031 Re: Java Web start vulnerability

BUGTRAQ - 20081025 Java Web start vulnerability

SREASON - 4542


Last Updated: 27 May 2016 10:48:39