Lucene search

[email protected]CVE-2008-1196

HistoryMar 06, 2008 - 9:44 p.m.

CVE-2008-1196

2008-03-0621:44:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-1196

java

web start

buffer overflow

security

vulnerability

nvd

7.5 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.148 Low

EPSS

Percentile

95.7%

JSON

Stack-based buffer overflow in Java Web Start (javaws.exe) in Sun JDK and JRE 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.2_16 and earlier; allows remote attackers to execute arbitrary code via a crafted JNLP file.

CPENameOperatorVersion
sun:jdksun jdkeq1.6.0
sun:jdksun jdkeq1.5.0
sun:jresun jreeq1.6.0
sun:jresun jreeq1.4.2_7
sun:jresun jreeq1.4.2_16
sun:jresun jreeq1.4.2_4
sun:jresun jreeq1.4.2_2
sun:jresun jreeq1.5.0
sun:jresun jreeq1.4.2_15
sun:jresun jreeq1.4.2_13

CPE	Name	Operator	Version
sun:jdk	sun jdk	eq	1.6.0
sun:jdk	sun jdk	eq	1.5.0
sun:jre	sun jre	eq	1.6.0
sun:jre	sun jre	eq	1.4.2_7
sun:jre	sun jre	eq	1.4.2_16
sun:jre	sun jre	eq	1.4.2_4
sun:jre	sun jre	eq	1.4.2_2
sun:jre	sun jre	eq	1.5.0
sun:jre	sun jre	eq	1.4.2_15
sun:jre	sun jre	eq	1.4.2_13

Rows per page:

1-10 of 381

References

download.novell.com/Download?buildid=q5exhSqeBjA~

lists.apple.com/archives/security-announce//2008/Sep/msg00008.html

lists.opensuse.org/opensuse-security-announce/2008-04/msg00000.html

lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html

secunia.com/advisories/29239

secunia.com/advisories/29273

secunia.com/advisories/29498

secunia.com/advisories/29582

secunia.com/advisories/29858

secunia.com/advisories/29897

secunia.com/advisories/30676

secunia.com/advisories/30780

secunia.com/advisories/31067

secunia.com/advisories/31497

secunia.com/advisories/31580

secunia.com/advisories/31586

secunia.com/advisories/32018

security.gentoo.org/glsa/glsa-200804-28.xml

sunsolve.sun.com/search/document.do?assetkey=1-26-233327-1

support.apple.com/kb/HT3178

support.apple.com/kb/HT3179

support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5033642.html

www.gentoo.org/security/en/glsa/glsa-200804-20.xml

www.gentoo.org/security/en/glsa/glsa-200806-11.xml

www.kb.cert.org/vuls/id/223028

www.redhat.com/support/errata/RHSA-2008-0186.html

www.redhat.com/support/errata/RHSA-2008-0210.html

www.redhat.com/support/errata/RHSA-2008-0267.html

www.redhat.com/support/errata/RHSA-2008-0555.html

www.securitytracker.com/id?1019552

www.us-cert.gov/cas/techalerts/TA08-066A.html

www.vmware.com/security/advisories/VMSA-2008-0010.html

www.vupen.com/english/advisories/2008/0770/references

www.vupen.com/english/advisories/2008/1856/references

exchange.xforce.ibmcloud.com/vulnerabilities/41026

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10412

7.5 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.148 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2008-1196

prion1 cert1 ubuntucve1 redhat5 nessus19 openvas23 suse2 vmware2 gentoo1