CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
96.8%
readObject in (1) Java Runtime Environment (JRE) and (2) Software Development Kit (SDK) 1.4.0 through 1.4.2_05 allows remote attackers to cause a denial of service (JVM unresponsive) via crafted serialized data.
Vendor | Product | Version | CPE |
---|---|---|---|
sun | jdk | 1.4 | cpe:2.3:a:sun:jdk:1.4:*:linux:*:*:*:*:* |
sun | jdk | 1.4 | cpe:2.3:a:sun:jdk:1.4:*:solaris:*:*:*:*:* |
sun | jdk | 1.4 | cpe:2.3:a:sun:jdk:1.4:*:windows:*:*:*:*:* |
sun | jdk | 1.4.0_01 | cpe:2.3:a:sun:jdk:1.4.0_01:*:windows:*:*:*:*:* |
sun | jdk | 1.4.0_02 | cpe:2.3:a:sun:jdk:1.4.0_02:*:linux:*:*:*:*:* |
sun | jdk | 1.4.0_02 | cpe:2.3:a:sun:jdk:1.4.0_02:*:solaris:*:*:*:*:* |
sun | jdk | 1.4.0_02 | cpe:2.3:a:sun:jdk:1.4.0_02:*:windows:*:*:*:*:* |
sun | jdk | 1.4.0_03 | cpe:2.3:a:sun:jdk:1.4.0_03:*:linux:*:*:*:*:* |
sun | jdk | 1.4.0_03 | cpe:2.3:a:sun:jdk:1.4.0_03:*:solaris:*:*:*:*:* |
sun | jdk | 1.4.0_03 | cpe:2.3:a:sun:jdk:1.4.0_03:*:windows:*:*:*:*:* |