PT-2007-5562 · Sun · Sdk+2

Publicado

2007-08-17

Atualizado

2017-09-29

CVE-2007-4381

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sun JDK and JRE versions 5.0 Update 9 and earlier Sun SDK and JRE versions 1.4.2 14 and earlier

Description The issue is related to an unspecified vulnerability in the font parsing implementation, which allows remote attackers to perform unauthorized actions via an applet that grants certain privileges to itself.

Recommendations For Sun JDK and JRE versions 5.0 Update 9 and earlier, update to a version later than Update 9 to resolve the issue. For Sun SDK and JRE versions 1.4.2 14 and earlier, update to a version later than 1.4.2 14 to resolve the issue.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-4381

RHSA-2007:0829

RHSA-2007:0956

RHSA-2007:1086

RHSA-2008:0100

RHSA-2008:0132

Produtos afetados

Jdk

Jre

Sdk

PT-2007-5562 · Sun · Sdk+2

CVE-2007-4381

Identificadores relacionados

Produtos afetados

Referências · 32