Lucene search

MitreCVE-2005-3907

HistoryNov 30, 2005 - 11:03 a.m.

CVE-2005-3907

2005-11-3011:03:00

mitre

web.nvd.nist.gov

security

vulnerability

java

jdk

jre

sandbox

remote attack

nvd

cve-2005-3907

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.026

Percentile

90.4%

JSON

Unspecified vulnerability in Java Runtime Environment in Java JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors involving untrusted Java applets.

Affected configurations

Nvd

Node

sunjdkMatch1.5.0_03linux

sunjdkMatch1.5.0_03solaris

sunjdkMatch1.5.0_03windows

sunjreMatch1.3.0

sunjreMatch1.3.0update1

sunjreMatch1.3.0update2

sunjreMatch1.3.0update3

sunjreMatch1.3.0update4

sunjreMatch1.3.0update5

sunjreMatch1.3.1

sunjreMatch1.3.1update1

sunjreMatch1.3.1update15

sunjreMatch1.3.1update1a

sunjreMatch1.3.1update4

sunjreMatch1.3.1update8

sunjreMatch1.4.1

sunjreMatch1.4.2

sunjreMatch1.4.2_1

sunjreMatch1.4.2_2

sunjreMatch1.4.2_3

sunjreMatch1.4.2_4

sunjreMatch1.4.2_5

sunjreMatch1.4.2_6

sunjreMatch1.4.2_7

sunjreMatch1.4.2_8

sunjreMatch1.5.0

sunjreMatch1.5.0update1

sunjreMatch1.5.0update2

sunjreMatch1.5.0update3

VendorProductVersionCPE
sunjdk1.5.0_03cpe:2.3:a:sun:jdk:1.5.0_03:*:linux:*:*:*:*:*
sunjdk1.5.0_03cpe:2.3:a:sun:jdk:1.5.0_03:*:solaris:*:*:*:*:*
sunjdk1.5.0_03cpe:2.3:a:sun:jdk:1.5.0_03:*:windows:*:*:*:*:*
sunjre1.3.0cpe:2.3:a:sun:jre:1.3.0:*:*:*:*:*:*:*
sunjre1.3.0cpe:2.3:a:sun:jre:1.3.0:update1:*:*:*:*:*:*
sunjre1.3.0cpe:2.3:a:sun:jre:1.3.0:update2:*:*:*:*:*:*
sunjre1.3.0cpe:2.3:a:sun:jre:1.3.0:update3:*:*:*:*:*:*
sunjre1.3.0cpe:2.3:a:sun:jre:1.3.0:update4:*:*:*:*:*:*
sunjre1.3.0cpe:2.3:a:sun:jre:1.3.0:update5:*:*:*:*:*:*
sunjre1.3.1cpe:2.3:a:sun:jre:1.3.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	jdk	1.5.0_03	cpe:2.3:a:sun:jdk:1.5.0_03::linux:::::
sun	jdk	1.5.0_03	cpe:2.3:a:sun:jdk:1.5.0_03::solaris:::::
sun	jdk	1.5.0_03	cpe:2.3:a:sun:jdk:1.5.0_03::windows:::::
sun	jre	1.3.0	cpe:2.3:a:sun:jre:1.3.0:::::::*
sun	jre	1.3.0	cpe:2.3:a:sun:jre:1.3.0:update1::::::
sun	jre	1.3.0	cpe:2.3:a:sun:jre:1.3.0:update2::::::
sun	jre	1.3.0	cpe:2.3:a:sun:jre:1.3.0:update3::::::
sun	jre	1.3.0	cpe:2.3:a:sun:jre:1.3.0:update4::::::
sun	jre	1.3.0	cpe:2.3:a:sun:jre:1.3.0:update5::::::
sun	jre	1.3.1	cpe:2.3:a:sun:jre:1.3.1:::::::*

Rows per page:

1-10 of 291

References

lists.apple.com/archives/security-announce/2005/Nov/msg00004.html

secunia.com/advisories/17748

secunia.com/advisories/17847

secunia.com/advisories/18092

securitytracker.com/id?1015282

sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102050-1

www.kb.cert.org/vuls/id/355284

www.securityfocus.com/bid/15615

www.vupen.com/english/advisories/2005/2636

www.vupen.com/english/advisories/2005/2675

exchange.xforce.ibmcloud.com/vulnerabilities/23250

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.026

Percentile

90.4%

JSON

Related for CVE-2005-3907