PT-2008-6468 · Sun+2 · Jre+4

Published

2008-12-05

Updated

2017-09-29

CVE-2008-5344

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Sun JDK and JRE versions prior to 6 Update 11 Sun JDK and JRE versions prior to 5.0 Update 17 Sun SDK and JRE versions prior to 1.4.2 19

Description The issue allows untrusted applets to read arbitrary files and make unauthorized network connections via unknown vectors related to applet classloading.

Recommendations For Sun JDK and JRE versions prior to 6 Update 11, update to version 6 Update 11 or later. For Sun JDK and JRE versions prior to 5.0 Update 17, update to version 5.0 Update 17 or later. For Sun SDK and JRE versions prior to 1.4.2 19, update to version 1.4.2 19 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-5344

HPSBUX02411

RHSA-2008:1018

RHSA-2008:1025

RHSA-2009:0015

RHSA-2009:0016

RHSA-2009:0445

Affected Products

Hp-Ux

Jdk

Jre

Java Platform

Sdk

PT-2008-6468 · Sun+2 · Jre+4

CVE-2008-5344

Related Identifiers

Affected Products

References · 56