PT-2008-2785 · Sun · Sdk+2

John Heasman

Published

2008-03-06

Updated

2019-07-31

CVE-2008-1192

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Sun JDK and JRE versions 6 Update 4 and earlier Sun JDK and JRE versions 5.0 Update 14 and earlier Sun SDK and JRE versions 1.4.2 16 and earlier Sun SDK and JRE versions 1.3.1 21 and earlier

Description The issue allows remote attackers to bypass the same origin policy and execute local applications via unknown vectors. This could potentially lead to unauthorized access or execution of local resources.

Recommendations For Sun JDK and JRE versions 6 Update 4 and earlier, update to a version later than Update 4. For Sun JDK and JRE versions 5.0 Update 14 and earlier, update to a version later than Update 14. For Sun SDK and JRE versions 1.4.2 16 and earlier, update to a version later than 1.4.2 16. For Sun SDK and JRE versions 1.3.1 21 and earlier, update to a version later than 1.3.1 21.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-254

Related Identifiers

CVE-2008-1192

RHSA-2008:0132

RHSA-2008:0186

RHSA-2008:0210

RHSA-2008:0267

RHSA-2008:0638

Affected Products

Jdk

Jre

Sdk

PT-2008-2785 · Sun · Sdk+2

CVE-2008-1192

Weakness Enumeration

Related Identifiers

Affected Products

References · 34