CVE-2008-5359

EPSS 35.13%
Published 05.12.2008 11:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.2_18 and earlier; and SDK and JRE 1.3.1_23 and earlier might allow remote attackers to execute arbitrary code, related to a ConvolveOp operation in the Java AWT library.

Affected products Warnungen 0 Metrics 2 CWE 1 References 42

Data is provided by the National Vulnerability Database (NVD)

Sun ≫ Jre Version1.3.1

Sun ≫ Jre Version1.3.1_2

Sun ≫ Jre Version1.3.1_03

Sun ≫ Jre Version1.3.1_04

Sun ≫ Jre Version1.3.1_05

Sun ≫ Jre Version1.3.1_06

Sun ≫ Jre Version1.3.1_07

Sun ≫ Jre Version1.3.1_08

Sun ≫ Jre Version1.3.1_09

Sun ≫ Jre Version1.3.1_10

Sun ≫ Jre Version1.3.1_11

Sun ≫ Jre Version1.3.1_12

Sun ≫ Jre Version1.3.1_13

Sun ≫ Jre Version1.3.1_14

Sun ≫ Jre Version1.3.1_15

Sun ≫ Jre Version1.3.1_16

Sun ≫ Jre Version1.3.1_17

Sun ≫ Jre Version1.3.1_18

Sun ≫ Jre Version1.3.1_19

Sun ≫ Jre Version1.3.1_20

Sun ≫ Jre Version1.3.1_21

Sun ≫ Jre Version1.3.1_22

Sun ≫ Jre Version1.3.1_23

Sun ≫ Jre Version1.4.2

Sun ≫ Jre Version1.4.2_1

Sun ≫ Jre Version1.4.2_2

Sun ≫ Jre Version1.4.2_3

Sun ≫ Jre Version1.4.2_4

Sun ≫ Jre Version1.4.2_5

Sun ≫ Jre Version1.4.2_6

Sun ≫ Jre Version1.4.2_7

Sun ≫ Jre Version1.4.2_8

Sun ≫ Jre Version1.4.2_9

Sun ≫ Jre Version1.4.2_10

Sun ≫ Jre Version1.4.2_11

Sun ≫ Jre Version1.4.2_12

Sun ≫ Jre Version1.4.2_13

Sun ≫ Jre Version1.4.2_14

Sun ≫ Jre Version1.4.2_15

Sun ≫ Jre Version1.4.2_16

Sun ≫ Jre Version1.4.2_17

Sun ≫ Jre Version1.4.2_18

Sun ≫ Jre Version1.5.0

Sun ≫ Jre Version1.5.0 Updateupdate1

Sun ≫ Jre Version1.5.0 Updateupdate10

Sun ≫ Jre Version1.5.0 Updateupdate11

Sun ≫ Jre Version1.5.0 Updateupdate12

Sun ≫ Jre Version1.5.0 Updateupdate13

Sun ≫ Jre Version1.5.0 Updateupdate14

Sun ≫ Jre Version1.5.0 Updateupdate15

Sun ≫ Jre Version1.5.0 Updateupdate16

Sun ≫ Jre Version1.5.0 Updateupdate2

Sun ≫ Jre Version1.6.0

Sun ≫ Jre Version1.6.0 Updateupdate_1

Sun ≫ Jre Version1.6.0 Updateupdate_10

Sun ≫ Jre Version1.6.0 Updateupdate_2

Sun ≫ Jre Version1.6.0 Updateupdate_3

Sun ≫ Jre Version1.6.0 Updateupdate_4

Sun ≫ Jre Version1.6.0 Updateupdate_5

Sun ≫ Jre Version1.6.0 Updateupdate_6

Sun ≫ Jdk Version1.5.0

Sun ≫ Jdk Version1.5.0 Updateupdate1

Sun ≫ Jdk Version1.5.0 Updateupdate10

Sun ≫ Jdk Version1.5.0 Updateupdate2

Sun ≫ Jdk Version1.5.0 Updateupdate3

Sun ≫ Jdk Version1.5.0 Updateupdate4

Sun ≫ Jdk Version1.5.0 Updateupdate5

Sun ≫ Jdk Version1.5.0 Updateupdate6

Sun ≫ Jdk Version1.5.0 Updateupdate7

Sun ≫ Jdk Version1.5.0 Updateupdate7_b03

Sun ≫ Jdk Version1.5.0 Updateupdate8

Sun ≫ Jdk Version1.5.0 Updateupdate9

Sun ≫ Jdk Version1.6.0

Sun ≫ Jdk Version1.6.0 Updateupdate_10

Sun ≫ Jdk Version1.6.0 Updateupdate_3

Sun ≫ Jdk Version1.6.0 Updateupdate_4

Sun ≫ Jdk Version1.6.0 Updateupdate_5

Sun ≫ Jdk Version1.6.0 Updateupdate_6

Sun ≫ Jdk Version1.6.0 Updateupdate_7

Sun ≫ Sdk Version1.3.1

Sun ≫ Sdk Version1.3.1_01

Sun ≫ Sdk Version1.3.1_01a

Sun ≫ Sdk Version1.3.1_02

Sun ≫ Sdk Version1.3.1_03

Sun ≫ Sdk Version1.3.1_04

Sun ≫ Sdk Version1.3.1_05

Sun ≫ Sdk Version1.3.1_06

Sun ≫ Sdk Version1.3.1_07

Sun ≫ Sdk Version1.3.1_08

Sun ≫ Sdk Version1.3.1_09

Sun ≫ Sdk Version1.3.1_10

Sun ≫ Sdk Version1.3.1_11

Sun ≫ Sdk Version1.3.1_12

Sun ≫ Sdk Version1.3.1_13

Sun ≫ Sdk Version1.3.1_14

Sun ≫ Sdk Version1.3.1_15

Sun ≫ Sdk Version1.3.1_16

Sun ≫ Sdk Version1.3.1_17

Sun ≫ Sdk Version1.3.1_18

Sun ≫ Sdk Version1.3.1_19

Sun ≫ Sdk Version1.3.1_20

Sun ≫ Sdk Version1.3.1_21

Sun ≫ Sdk Version1.3.1_22

Sun ≫ Sdk Version1.3.1_23

Sun ≫ Sdk Version1.4.2

Sun ≫ Sdk Version1.4.2_1

Sun ≫ Sdk Version1.4.2_2

Sun ≫ Sdk Version1.4.2_02

Sun ≫ Sdk Version1.4.2_03

Sun ≫ Sdk Version1.4.2_3

Sun ≫ Sdk Version1.4.2_04

Sun ≫ Sdk Version1.4.2_4

Sun ≫ Sdk Version1.4.2_5

Sun ≫ Sdk Version1.4.2_6

Sun ≫ Sdk Version1.4.2_7

Sun ≫ Sdk Version1.4.2_8

Sun ≫ Sdk Version1.4.2_08

Sun ≫ Sdk Version1.4.2_09

Sun ≫ Sdk Version1.4.2_9

Sun ≫ Sdk Version1.4.2_10

Sun ≫ Sdk Version1.4.2_11

Sun ≫ Sdk Version1.4.2_12

Sun ≫ Sdk Version1.4.2_13

Sun ≫ Sdk Version1.4.2_14

Sun ≫ Sdk Version1.4.2_15

Sun ≫ Sdk Version1.4.2_16

Sun ≫ Sdk Version1.4.2_17

Sun ≫ Sdk Version1.4.2_18

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	35.13%	0.969

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00001.html

Third Party Advisory

Mailing List

http://secunia.com/advisories/34259

Third Party Advisory

http://secunia.com/advisories/34972

Third Party Advisory

http://secunia.com/advisories/37386

Third Party Advisory

http://security.gentoo.org/glsa/glsa-200911-02.xml

Third Party Advisory

https://rhn.redhat.com/errata/RHSA-2009-0466.html