Lucene search

[email protected]CVE-2003-1134

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1134

2003-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2003-1134

sun java

jvm crash

local users

nvd

security vulnerability

7.1 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

14.5%

JSON

Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local users to cause a denial of service (JVM crash), possibly by calling the ClassDepth function with a null parameter, which causes a crash instead of generating a null pointer exception.

CPENameOperatorVersion
sun:javasun javaeq1.4.2
sun:javasun javaeq1.4.1
sun:javasun javaeq1.3.1

CPE	Name	Operator	Version
sun:java	sun java	eq	1.4.2
sun:java	sun java	eq	1.4.1
sun:java	sun java	eq	1.3.1

References

lists.grok.org.uk/pipermail/full-disclosure/2003-October/012773.html

www.securityfocus.com/bid/8892

7.1 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

14.5%

JSON