Lucene search

[email protected]CVE-2008-3103

HistoryJul 09, 2008 - 11:41 p.m.

CVE-2008-3103

2008-07-0923:41:00

CWE-264

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2008-3103

java

jmx

jre

jdk

vulnerability

unauthorized operations

nvd

8.7 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.025 Low

EPSS

Percentile

90.0%

JSON

Unspecified vulnerability in the Java Management Extensions (JMX) management agent in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier, when local monitoring is enabled, allows remote attackers to “perform unauthorized operations” via unspecified vectors.

CPENameOperatorVersion
sun:jdksun jdkeq5.0
sun:jresun jreeq5.0
sun:jresun jreeq6
sun:jdksun jdkeq6

CPE	Name	Operator	Version
sun:jdk	sun jdk	eq	5.0
sun:jre	sun jre	eq	5.0
sun:jre	sun jre	eq	6
sun:jdk	sun jdk	eq	6

References

lists.apple.com/archives/security-announce//2008/Sep/msg00008.html

lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.html

lists.opensuse.org/opensuse-security-announce/2008-10/msg00009.html

marc.info/?l=bugtraq&m=122331139823057&w=2

secunia.com/advisories/31010

secunia.com/advisories/31055

secunia.com/advisories/31497

secunia.com/advisories/31600

secunia.com/advisories/32018

secunia.com/advisories/32179

secunia.com/advisories/32180

secunia.com/advisories/32394

secunia.com/advisories/32436

secunia.com/advisories/32437

secunia.com/advisories/33237

secunia.com/advisories/33238

secunia.com/advisories/34972

secunia.com/advisories/37386

security.gentoo.org/glsa/glsa-200911-02.xml

sunsolve.sun.com/search/document.do?assetkey=1-66-238965-1

support.apple.com/kb/HT3178

support.apple.com/kb/HT3179

support.avaya.com/elmodocs2/security/ASA-2008-428.htm

support.avaya.com/elmodocs2/security/ASA-2008-507.htm

support.avaya.com/elmodocs2/security/ASA-2008-509.htm

www.redhat.com/support/errata/RHSA-2008-0594.html

www.redhat.com/support/errata/RHSA-2008-0595.html

www.redhat.com/support/errata/RHSA-2008-0891.html

www.redhat.com/support/errata/RHSA-2008-0906.html

www.redhat.com/support/errata/RHSA-2008-1044.html

www.redhat.com/support/errata/RHSA-2008-1045.html

www.securityfocus.com/archive/1/497041/100/0/threaded

www.securityfocus.com/bid/30146

www.securitytracker.com/id?1020458

www.us-cert.gov/cas/techalerts/TA08-193A.html

www.vmware.com/security/advisories/VMSA-2008-0016.html

www.vupen.com/english/advisories/2008/2056/references

www.vupen.com/english/advisories/2008/2740

exchange.xforce.ibmcloud.com/vulnerabilities/43669

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10920

rhn.redhat.com/errata/RHSA-2009-0466.html

8.7 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.025 Low

EPSS

Percentile

90.0%

JSON

Related for CVE-2008-3103

nessus24 ubuntucve1 redhat8 prion1 openvas7 suse1 securityvulns1 vmware2 gentoo1 ibm1