PT-2007-6680 · Sun+1 · Sun Java Runtime Environment+3
Publicado
2007-10-29
·
Atualizado
2018-10-30
·
CVE-2007-5689
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Sun Java Runtime Environment (JRE) versions 1.3.x through 1.3.1 20
Sun Java Runtime Environment (JRE) versions 1.4.x through 1.4.2 15
JDK and JRE 5.x through 5.0 Update 12
JDK and JRE 6.x through 6 Update 2
Description
The Java Virtual Machine (JVM) in Sun Java Runtime Environment (JRE) allows remote attackers to execute arbitrary programs, or read or modify arbitrary files, via applets that grant privileges to themselves.
Recommendations
For Sun Java Runtime Environment (JRE) versions 1.3.x through 1.3.1 20, update to a version later than 1.3.1 20.
For Sun Java Runtime Environment (JRE) versions 1.4.x through 1.4.2 15, update to a version later than 1.4.2 15.
For JDK and JRE 5.x through 5.0 Update 12, update to a version later than 5.0 Update 12.
For JDK and JRE 6.x through 6 Update 2, update to a version later than 6 Update 2.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Hp-Ux
Jdk
Java Virtual Machine
Sun Java Runtime Environment