Lucene search

[email protected]CVE-2007-5019

HistorySep 20, 2007 - 9:17 p.m.

CVE-2007-5019

2007-09-2021:17:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2007-5019

buffer overflow

sun java

web start

activex

jre

security vulnerability

remote attack

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.93 High

EPSS

Percentile

99.0%

JSON

Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment (JRE) 1.6.0_X allows remote attackers to have an unknown impact via a long argument to the dnsResolve (isInstalled.dnsResolve) method.

CPENameOperatorVersion
sun:jresun jreeq1.6.0_10
sun:jresun jreeq1.6.0_0
sun:java_web_startsun java web starteq*
sun:sdksun sdkeq1.3.0

CPE	Name	Operator	Version
sun:jre	sun jre	eq	1.6.0_10
sun:jre	sun jre	eq	1.6.0_0
sun:java_web_start	sun java web start	eq	*
sun:sdk	sun sdk	eq	1.3.0

References

osvdb.org/38297

www.securityfocus.com/bid/25734

exchange.xforce.ibmcloud.com/vulnerabilities/36682

www.exploit-db.com/exploits/4432

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.93 High

EPSS

Percentile

99.0%

JSON

Related for CVE-2007-5019

prion1 checkpoint_advisories3