PT-2005-4644 · Oracle · Java Jdk+1
Adam Gowdiak
·
Published
2005-11-30
·
Updated
2018-10-30
·
CVE-2005-3904
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Java JDK and JRE versions 1.3.1 and later, 1.4.2 and later, 5.0 Update 3
Description
The issue allows remote attackers to escape the Java sandbox, potentially accessing arbitrary files or executing arbitrary applications. The exact attack vectors are not specified.
Recommendations
For Java JDK and JRE versions 1.3.1 and later, 1.4.2 and later, 5.0 Update 3, at the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Java Jdk
Java Jre