PT-2008-2788 · Sun · Java Runtime Environment+1

Gregory Fleischer

Published

2008-03-06

Updated

2019-07-31

CVE-2008-1195

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sun JDK and Java Runtime Environment (JRE) versions 6 Update 4 and earlier Sun JDK and Java Runtime Environment (JRE) versions 5.0 Update 14 and earlier Sun JDK and Java Runtime Environment (JRE) versions 1.4.2 16 and earlier

Description The issue allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java APIs.

Recommendations For versions 6 Update 4 and earlier, update to a version later than Update 4. For versions 5.0 Update 14 and earlier, update to a version later than Update 14. For versions 1.4.2 16 and earlier, update to a version later than 1.4.2 16.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-254

Related Identifiers

CVE-2008-1195

RHSA-2008:0132

RHSA-2008:0186

RHSA-2008:0210

RHSA-2008:0267

RHSA-2008:0638

Affected Products

Jdk

Java Runtime Environment

PT-2008-2788 · Sun · Java Runtime Environment+1

CVE-2008-1195

Weakness Enumeration

Related Identifiers

Affected Products

References · 47