6.8

CVE-2008-3104

Multiple unspecified vulnerabilities in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allow remote attackers to violate the security model for an applet's outbound connections by connecting to localhost services running on the machine that loaded the applet.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SunJdk Updateupdate_15 Version <= 5.0
SunJdk Updateupdate_6 Version <= 6
SunJdk Version1.5.0 Updateupdate_12
SunJdk Version5.0 Updateupdate_1
SunJdk Version5.0 Updateupdate_10
SunJdk Version5.0 Updateupdate_11
SunJdk Version5.0 Updateupdate_12
SunJdk Version5.0 Updateupdate_13
SunJdk Version5.0 Updateupdate_14
SunJdk Version5.0 Updateupdate_2
SunJdk Version5.0 Updateupdate_3
SunJdk Version5.0 Updateupdate_4
SunJdk Version5.0 Updateupdate_5
SunJdk Version5.0 Updateupdate_6
SunJdk Version5.0 Updateupdate_7
SunJdk Version5.0 Updateupdate_8
SunJdk Version5.0 Updateupdate_9
SunJdk Version6 Updateupdate_1
SunJdk Version6 Updateupdate_2
SunJdk Version6 Updateupdate_3
SunJdk Version6 Updateupdate_4
SunJdk Version6 Updateupdate_5
SunJre Version1.3.0
SunJre Version1.3.1
SunJre Version1.3.1 Updateupdate16
SunJre Version1.3.1 Updateupdate18
SunJre Version1.3.1 Updateupdate19
SunJre Version1.3.1 Updateupdate20
SunJre Version1.3.1_02
SunJre Version1.3.1_03
SunJre Version1.3.1_04
SunJre Version1.3.1_05
SunJre Version1.3.1_06
SunJre Version1.3.1_07
SunJre Version1.3.1_08
SunJre Version1.3.1_09
SunJre Version1.3.1_10
SunJre Version1.3.1_11
SunJre Version1.3.1_12
SunJre Version1.3.1_13
SunJre Version1.3.1_14
SunJre Version1.3.1_15
SunJre Version1.3.1_17
SunJre Version1.3.1_21
SunJre Version1.3.1_22
SunJre Version1.4.2_1
SunJre Version1.4.2_2
SunJre Version1.4.2_3
SunJre Version1.4.2_4
SunJre Version1.4.2_5
SunJre Version1.4.2_6
SunJre Version1.4.2_7
SunJre Version1.4.2_8
SunJre Version1.4.2_9
SunJre Version1.4.2_10
SunJre Version1.4.2_11
SunJre Version1.4.2_12
SunJre Version1.4.2_13
SunJre Version1.4.2_14
SunJre Version1.4.2_15
SunJre Version1.4.2_16
SunJre Version1.4.2_17
SunSdk Version1.3.0
SunSdk Version1.3.1_01
SunSdk Version1.3.1_02
SunSdk Version1.3.1_03
SunSdk Version1.3.1_04
SunSdk Version1.3.1_05
SunSdk Version1.3.1_06
SunSdk Version1.3.1_07
SunSdk Version1.3.1_08
SunSdk Version1.3.1_09
SunSdk Version1.3.1_10
SunSdk Version1.3.1_11
SunSdk Version1.3.1_12
SunSdk Version1.3.1_13
SunSdk Version1.3.1_14
SunSdk Version1.3.1_15
SunSdk Version1.3.1_16
SunSdk Version1.3.1_17
SunSdk Version1.3.1_18
SunSdk Version1.3.1_19
SunSdk Version1.3.1_20
SunSdk Version1.3.1_21
SunSdk Version1.3.1_22
SunSdk Version1.4.2
SunSdk Version1.4.2_01
SunSdk Version1.4.2_02
SunSdk Version1.4.2_03
SunSdk Version1.4.2_04
SunSdk Version1.4.2_05
SunSdk Version1.4.2_06
SunSdk Version1.4.2_07
SunSdk Version1.4.2_08
SunSdk Version1.4.2_09
SunSdk Version1.4.2_10
SunSdk Version1.4.2_11
SunSdk Version1.4.2_12
SunSdk Version1.4.2_13
SunSdk Version1.4.2_14
SunSdk Version1.4.2_15
SunSdk Version1.4.2_16
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.6% 0.88
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/31497
http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.html
http://secunia.com/advisories/32018
http://support.apple.com/kb/HT3178
http://support.apple.com/kb/HT3179
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.html
http://marc.info/?l=bugtraq&m=122331139823057&w=2
http://secunia.com/advisories/31010
Patch
Vendor Advisory
http://secunia.com/advisories/31055
http://secunia.com/advisories/31600
http://secunia.com/advisories/32179
http://secunia.com/advisories/32180
http://secunia.com/advisories/32436
http://secunia.com/advisories/33237
http://secunia.com/advisories/33238
http://secunia.com/advisories/37386
http://security.gentoo.org/glsa/glsa-200911-02.xml
http://support.avaya.com/elmodocs2/security/ASA-2008-428.htm
http://support.avaya.com/elmodocs2/security/ASA-2008-507.htm
http://support.avaya.com/elmodocs2/security/ASA-2008-509.htm
http://www.redhat.com/support/errata/RHSA-2008-0594.html
http://www.redhat.com/support/errata/RHSA-2008-0595.html
http://www.redhat.com/support/errata/RHSA-2008-0906.html
http://www.redhat.com/support/errata/RHSA-2008-1044.html
http://www.redhat.com/support/errata/RHSA-2008-1045.html
http://www.securityfocus.com/archive/1/497041/100/0/threaded
http://www.us-cert.gov/cas/techalerts/TA08-193A.html
US Government Resource
http://www.vmware.com/security/advisories/VMSA-2008-0016.html
http://www.vupen.com/english/advisories/2008/2056/references
http://www.vupen.com/english/advisories/2008/2740
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html
http://rhn.redhat.com/errata/RHSA-2008-0955.html
http://secunia.com/advisories/31269
http://secunia.com/advisories/31320
http://secunia.com/advisories/31736
http://secunia.com/advisories/32826
http://secunia.com/advisories/33194
http://secunia.com/advisories/33236
http://secunia.com/advisories/35065
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238968-1
Patch
http://www.redhat.com/support/errata/RHSA-2008-0790.html
http://www.redhat.com/support/errata/RHSA-2008-1043.html
http://www.securityfocus.com/bid/30140
http://www.securitytracker.com/id?1020459
https://exchange.xforce.ibmcloud.com/vulnerabilities/43662
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9565