Lucene search

[email protected]CVE-2007-0243

HistoryJan 17, 2007 - 10:28 p.m.

CVE-2007-0243

2007-01-1722:28:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2007-0243

buffer overflow

sun jdk

jre

privilege escalation

memory corruption

nvd

6.5 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.424 Medium

EPSS

Percentile

97.3%

JSON

Buffer overflow in Sun JDK and Java Runtime Environment (JRE) 5.0 Update 9 and earlier, SDK and JRE 1.4.2_12 and earlier, and SDK and JRE 1.3.1_18 and earlier allows applets to gain privileges via a GIF image with a block with a 0 width field, which triggers memory corruption.

CPENameOperatorVersion
sun:jresun jreeq1.4.2_7
sun:sdksun sdkeq1.4.2
sun:jresun jreeq1.4.2_4
sun:sdksun sdkeq1.4.2_10
sun:sdksun sdkeq1.4.2_12
sun:jdksun jdkeq1.5.0
sun:jresun jreeq1.4.2_2
sun:jresun jreeq1.4.2_1
sun:jresun jreeq1.4.2_8
sun:jresun jreeq1.5.0

CPE	Name	Operator	Version
sun:jre	sun jre	eq	1.4.2_7
sun:sdk	sun sdk	eq	1.4.2
sun:jre	sun jre	eq	1.4.2_4
sun:sdk	sun sdk	eq	1.4.2_10
sun:sdk	sun sdk	eq	1.4.2_12
sun:jdk	sun jdk	eq	1.5.0
sun:jre	sun jre	eq	1.4.2_2
sun:jre	sun jre	eq	1.4.2_1
sun:jre	sun jre	eq	1.4.2_8
sun:jre	sun jre	eq	1.5.0

Rows per page:

1-10 of 251

References

dev2dev.bea.com/pub/advisory/242

docs.info.apple.com/article.html?artnum=307177

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00876579

lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

osvdb.org/32834

secunia.com/advisories/23757

secunia.com/advisories/24189

secunia.com/advisories/24202

secunia.com/advisories/24468

secunia.com/advisories/24993

secunia.com/advisories/25283

secunia.com/advisories/26049

secunia.com/advisories/26119

secunia.com/advisories/26645

secunia.com/advisories/27203

secunia.com/advisories/28115

security.gentoo.org/glsa/glsa-200702-08.xml

securityreason.com/securityalert/2158

securitytracker.com/id?1017520

sunsolve.sun.com/search/document.do?assetkey=1-26-102760-1

support.novell.com/techcenter/psdb/4f850d1e2b871db609de64ec70f0089c.html

support.novell.com/techcenter/psdb/d2f549cc040cd81ae4a268bb5edfe918.html

www.gentoo.org/security/en/glsa/glsa-200702-07.xml

www.kb.cert.org/vuls/id/388289

www.novell.com/linux/security/advisories/2007_45_java.html

www.redhat.com/support/errata/RHSA-2007-0166.html

www.redhat.com/support/errata/RHSA-2007-0167.html

www.redhat.com/support/errata/RHSA-2007-0956.html

www.redhat.com/support/errata/RHSA-2008-0261.html

www.securityfocus.com/archive/1/457159/100/0/threaded

www.securityfocus.com/archive/1/457638/100/0/threaded

www.securityfocus.com/bid/22085

www.us-cert.gov/cas/techalerts/TA07-022A.html

www.vupen.com/english/advisories/2007/0211

www.vupen.com/english/advisories/2007/0936

www.vupen.com/english/advisories/2007/1814

www.vupen.com/english/advisories/2007/4224

www.zerodayinitiative.com/advisories/ZDI-07-005.html

exchange.xforce.ibmcloud.com/vulnerabilities/31537

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11073

6.5 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.424 Medium

EPSS

Percentile

97.3%

JSON

Related for CVE-2007-0243

nessus16 seebug1 cert1 gentoo2 redhat6 prion2 zdi1 checkpoint_advisories3 openvas9 securityvulns3 cve1 suse1