Lucene search

K

[email protected]CVE-2008-1189

HistoryMar 06, 2008 - 9:44 p.m.

CVE-2008-1189

2008-03-0621:44:00

CWE-119

[email protected]

web.nvd.nist.gov

27

cve-2008-1189

buffer overflow

java web start

sun jdk

jre

nvd

security vulnerability

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.168 Low

EPSS

Percentile

96.0%

Buffer overflow in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.2_16 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different issue than CVE-2008-1188, aka the “third” issue.

CPENameOperatorVersion
sun:jdksun jdkeq1.6.0
sun:jdksun jdkeq1.5.0
sun:jresun jreeq1.6.0
sun:jresun jreeq1.4.2_7
sun:jresun jreeq1.4.2_16
sun:jresun jreeq1.4.2_4
sun:jresun jreeq1.4.2_2
sun:jresun jreeq1.5.0
sun:jresun jreeq1.4.2_15
sun:jresun jreeq1.4.2_13

Rows per page:

1-10 of 381

References

lists.apple.com/archives/security-announce//2008/Sep/msg00008.html

lists.opensuse.org/opensuse-security-announce/2008-04/msg00000.html

lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html

secunia.com/advisories/29239

secunia.com/advisories/29273

secunia.com/advisories/29498

secunia.com/advisories/29582

secunia.com/advisories/29858

secunia.com/advisories/29897

secunia.com/advisories/30676

secunia.com/advisories/30780

secunia.com/advisories/31497

secunia.com/advisories/32018

security.gentoo.org/glsa/glsa-200804-28.xml

sunsolve.sun.com/search/document.do?assetkey=1-26-233323-1

support.apple.com/kb/HT3178

support.apple.com/kb/HT3179

www.gentoo.org/security/en/glsa/glsa-200804-20.xml

www.gentoo.org/security/en/glsa/glsa-200806-11.xml

www.redhat.com/support/errata/RHSA-2008-0186.html

www.redhat.com/support/errata/RHSA-2008-0210.html

www.redhat.com/support/errata/RHSA-2008-0267.html

www.securitytracker.com/id?1019549

www.us-cert.gov/cas/techalerts/TA08-066A.html

www.vmware.com/security/advisories/VMSA-2008-0010.html

www.vupen.com/english/advisories/2008/0770/references

www.vupen.com/english/advisories/2008/1856/references

exchange.xforce.ibmcloud.com/vulnerabilities/41029

exchange.xforce.ibmcloud.com/vulnerabilities/41133

exchange.xforce.ibmcloud.com/vulnerabilities/41135

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9582

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.168 Low

EPSS

Percentile

96.0%

Related for CVE-2008-1189

prion2 ubuntucve2 cve1 checkpoint_advisories1 securityvulns3 zdi2 nessus17 redhat5 openvas19 suse2 f52 vmware2 gentoo1