10

CVE-2008-0657

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SunJre Updateupdate13 Version <= 1.5.0
SunJre Updateupdate1 Version <= 1.6.0
SunJdk Version <= 5.0_update13
SunJre Updateupdate1 Version <= 1.6.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.84% 0.848
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/29858
http://secunia.com/advisories/30780
http://security.gentoo.org/glsa/glsa-200804-28.xml
http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml
http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html
http://secunia.com/advisories/29897
http://secunia.com/advisories/29214
http://secunia.com/advisories/30676
http://www.redhat.com/support/errata/RHSA-2008-0156.html
http://www.vmware.com/security/advisories/VMSA-2008-0010.html
http://www.vupen.com/english/advisories/2008/1856/references
http://dev2dev.bea.com/pub/advisory/277
http://secunia.com/advisories/29841
http://www.vupen.com/english/advisories/2008/1252
http://secunia.com/advisories/28795
Patch
Vendor Advisory
http://secunia.com/advisories/28888
http://secunia.com/advisories/29498
http://secunia.com/advisories/31497
http://sunsolve.sun.com/search/document.do?assetkey=1-26-231261-1
http://www.redhat.com/support/errata/RHSA-2008-0123.html
http://www.redhat.com/support/errata/RHSA-2008-0210.html
http://www.securityfocus.com/bid/27650
http://www.securitytracker.com/id?1019308
http://www.vupen.com/english/advisories/2008/0429
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11505