6.8 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.016 Low
EPSS
Percentile
87.3%
Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or © execute local programs.
dev2dev.bea.com/pub/advisory/277
lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html
secunia.com/advisories/28795
secunia.com/advisories/28888
secunia.com/advisories/29214
secunia.com/advisories/29498
secunia.com/advisories/29841
secunia.com/advisories/29858
secunia.com/advisories/29897
secunia.com/advisories/30676
secunia.com/advisories/30780
secunia.com/advisories/31497
security.gentoo.org/glsa/glsa-200804-28.xml
sunsolve.sun.com/search/document.do?assetkey=1-26-231261-1
www.gentoo.org/security/en/glsa/glsa-200804-20.xml
www.gentoo.org/security/en/glsa/glsa-200806-11.xml
www.redhat.com/support/errata/RHSA-2008-0123.html
www.redhat.com/support/errata/RHSA-2008-0156.html
www.redhat.com/support/errata/RHSA-2008-0210.html
www.securityfocus.com/bid/27650
www.securitytracker.com/id?1019308
www.vmware.com/security/advisories/VMSA-2008-0010.html
www.vupen.com/english/advisories/2008/0429
www.vupen.com/english/advisories/2008/1252
www.vupen.com/english/advisories/2008/1856/references
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11505