PT-2008-4524 · Sun+1 · Sun Java Runtime Environment+1

Publicado

2008-07-09

Atualizado

2018-10-30

CVE-2008-3104

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Sun Java Runtime Environment (JRE) versions prior to 6 Update 7 Sun Java Runtime Environment (JRE) versions prior to 5.0 Update 16 Sun Java Runtime Environment (JRE) versions prior to 1.4.2 18 Sun Java Runtime Environment (JRE) versions prior to 1.3.1 23

Description: The issue allows remote attackers to violate the security model for an applet's outbound connections by connecting to localhost services running on the machine that loaded the applet.

Recommendations: For versions prior to 6 Update 7, update to version 6 Update 7 or later. For versions prior to 5.0 Update 16, update to version 5.0 Update 16 or later. For versions prior to 1.4.2 18, update to version 1.4.2 18 or later. For versions prior to 1.3.1 23, update to version 1.3.1 23 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2008-3104

RHSA-2008:0594

RHSA-2008:0595

RHSA-2008:0636

RHSA-2008:0638

RHSA-2008:0790

RHSA-2008:0906

RHSA-2008:0955

Produtos afetados

Java Platform

Sun Java Runtime Environment

PT-2008-4524 · Sun+1 · Sun Java Runtime Environment+1

CVE-2008-3104

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 52