PT-2007-5562 · Sun · Sdk+2

Published

2007-08-17

Updated

2017-09-29

CVE-2007-4381

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sun JDK and JRE versions 5.0 Update 9 and earlier Sun SDK and JRE versions 1.4.2 14 and earlier

Description The issue is related to an unspecified vulnerability in the font parsing implementation, which allows remote attackers to perform unauthorized actions via an applet that grants certain privileges to itself.

Recommendations For Sun JDK and JRE versions 5.0 Update 9 and earlier, update to a version later than Update 9 to resolve the issue. For Sun SDK and JRE versions 1.4.2 14 and earlier, update to a version later than 1.4.2 14 to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-4381

RHSA-2007:0829

RHSA-2007:0956

RHSA-2007:1086

RHSA-2008:0100

RHSA-2008:0132

Affected Products

Jdk

Jre

Sdk

PT-2007-5562 · Sun · Sdk+2

CVE-2007-4381

Related Identifiers

Affected Products

References · 32