PT-2008-6469 · Oracle+1 · Java Runtime Environment+2

Publicado

2008-12-05

Atualizado

2019-10-09

CVE-2008-5345

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Java Runtime Environment (JRE) versions 6 Update 10 and earlier Java Runtime Environment (JRE) versions 5.0 Update 16 and earlier Java Runtime Environment (JRE) versions 1.4.2 18 and earlier Java Runtime Environment (JRE) versions 1.3.1 23 and earlier

Description The issue allows code loaded from a local filesystem to read arbitrary files and make unauthorized connections to localhost.

Recommendations For Java Runtime Environment (JRE) versions 6 Update 10 and earlier, update to a version later than 6 Update 10. For Java Runtime Environment (JRE) versions 5.0 Update 16 and earlier, update to a version later than 5.0 Update 16. For Java Runtime Environment (JRE) versions 1.4.2 18 and earlier, update to a version later than 1.4.2 18. For Java Runtime Environment (JRE) versions 1.3.1 23 and earlier, update to a version later than 1.3.1 23.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2008-5345

HPSBUX02411

RHSA-2008:1018

RHSA-2008:1025

RHSA-2009:0015

RHSA-2009:0016

RHSA-2009:0445

RHSA-2009:0466

Produtos afetados

Hp-Ux

Java Platform

Java Runtime Environment

PT-2008-6469 · Oracle+1 · Java Runtime Environment+2

CVE-2008-5345

Identificadores relacionados

Produtos afetados

Referências · 56