Sun

Jre

424 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2008-0657

  • EPSS 1.77%
  • Veröffentlicht 07.02.2008 21:00:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as dem...

7.8

CVE-2008-0628

  • EPSS 6%
  • Veröffentlicht 06.02.2008 21:00:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 Update 3 and earlier processes external entity references even when the "external general entities" property is false, which allows remote attackers to conduct XML external entity (XX...

4.3

CVE-2007-0012

  • EPSS 0.69%
  • Veröffentlicht 09.01.2008 23:46:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Sun JRE 5.0 before update 14 allows remote attackers to cause a denial of service (Internet Explorer crash) via an object tag with an encoded applet and an undefined name attribute, which triggers a NULL pointer dereference in jpiexp32.dll when the a...

10

CVE-2007-5689

  • EPSS 8.74%
  • Veröffentlicht 29.10.2007 19:46:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Java Virtual Machine (JVM) in Sun Java Runtime Environment (JRE) in SDK and JRE 1.3.x through 1.3.1_20 and 1.4.x through 1.4.2_15, and JDK and JRE 5.x through 5.0 Update 12 and 6.x through 6 Update 2, allows remote attackers to execute arbitrary ...

2.6

CVE-2007-5273

  • EPSS 6.51%
  • Veröffentlicht 08.10.2007 23:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier, when an HTTP proxy server is used, allows remote attackers to vio...

2.6

CVE-2007-5274

  • EPSS 4.78%
  • Veröffentlicht 08.10.2007 23:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier, when Firefox or Opera is used, allows remote attackers to violate...

5.4

CVE-2007-5236

  • EPSS 0.87%
  • Veröffentlicht 06.10.2007 00:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Java Web Start in Sun JDK and JRE 5.0 Update 12 and earlier, and SDK and JRE 1.4.2_15 and earlier, on Windows does not properly enforce access restrictions for untrusted applications, which allows user-assisted remote attackers to read local files vi...

7.1

CVE-2007-5237

  • EPSS 0.88%
  • Veröffentlicht 06.10.2007 00:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Java Web Start in Sun JDK and JRE 6 Update 2 and earlier does not properly enforce access restrictions for untrusted applications, which allows user-assisted remote attackers to read and modify local files via an untrusted application, aka "two vulne...

2.6

CVE-2007-5238

  • EPSS 0.98%
  • Veröffentlicht 06.10.2007 00:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, and SDK and JRE 1.4.2_15 and earlier does not properly enforce access restrictions for untrusted applications, which allows user-assisted remote attacker...

4

CVE-2007-5239

  • EPSS 1.54%
  • Veröffentlicht 06.10.2007 00:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier does not properly enforce access restrictions for untrusted (1) applications and (...