PT-2007-6680 · Sun+1 · Sun Java Runtime Environment+3
Published
2007-10-29
·
Updated
2018-10-30
·
CVE-2007-5689
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Sun Java Runtime Environment (JRE) versions 1.3.x through 1.3.1 20
Sun Java Runtime Environment (JRE) versions 1.4.x through 1.4.2 15
JDK and JRE 5.x through 5.0 Update 12
JDK and JRE 6.x through 6 Update 2
Description
The Java Virtual Machine (JVM) in Sun Java Runtime Environment (JRE) allows remote attackers to execute arbitrary programs, or read or modify arbitrary files, via applets that grant privileges to themselves.
Recommendations
For Sun Java Runtime Environment (JRE) versions 1.3.x through 1.3.1 20, update to a version later than 1.3.1 20.
For Sun Java Runtime Environment (JRE) versions 1.4.x through 1.4.2 15, update to a version later than 1.4.2 15.
For JDK and JRE 5.x through 5.0 Update 12, update to a version later than 5.0 Update 12.
For JDK and JRE 6.x through 6 Update 2, update to a version later than 6 Update 2.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Hp-Ux
Jdk
Java Virtual Machine
Sun Java Runtime Environment