Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-5340
HistoryDec 05, 2008 - 11:30 a.m.

CVE-2008-5340

2008-12-0511:30:00
CWE-264
[email protected]
web.nvd.nist.gov
49
cve-2008-5340
unspecified vulnerability
java
web start
jws
java plug-in
sun jdk
jre 6
update 10
jdk 5.0
update 16
sdk
jre 1.4.2_18
6727081

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.018 Low

EPSS

Percentile

88.3%

JSON

Unspecified vulnerability in Java Web Start (JWS) and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier allows untrusted JWS applications to gain privileges to access local files or applications via unknown vectors, aka 6727081.

Affected configurations

NVD
Node
sunjdkRange5.0update_16
OR
sunjdkRange6update_10
OR
sunjdkMatch5.0update_1
OR
sunjdkMatch5.0update_10
OR
sunjdkMatch5.0update_11
OR
sunjdkMatch5.0update_12
OR
sunjdkMatch5.0update_13
OR
sunjdkMatch5.0update_14
OR
sunjdkMatch5.0update_15
OR
sunjdkMatch5.0update_2
OR
sunjdkMatch5.0update_3
OR
sunjdkMatch5.0update_4
OR
sunjdkMatch5.0update_5
OR
sunjdkMatch5.0update_6
OR
sunjdkMatch5.0update_7
OR
sunjdkMatch5.0update_8
OR
sunjdkMatch5.0update_9
OR
sunjdkMatch6
OR
sunjdkMatch6update_1
OR
sunjdkMatch6update_2
OR
sunjdkMatch6update_3
OR
sunjdkMatch6update_4
OR
sunjdkMatch6update_5
OR
sunjdkMatch6update_6
OR
sunjdkMatch6update_7
OR
sunjdkMatch6update_8
OR
sunjdkMatch6update_9
OR
sunjreRange1.4.2_18
OR
sunjreRange5.0update_16
OR
sunjreRange6update_10
OR
sunjreMatch1.4.2_1
OR
sunjreMatch1.4.2_2
OR
sunjreMatch1.4.2_3
OR
sunjreMatch1.4.2_4
OR
sunjreMatch1.4.2_5
OR
sunjreMatch1.4.2_6
OR
sunjreMatch1.4.2_7
OR
sunjreMatch1.4.2_8
OR
sunjreMatch1.4.2_9
OR
sunjreMatch1.4.2_10
OR
sunjreMatch1.4.2_11
OR
sunjreMatch1.4.2_12
OR
sunjreMatch1.4.2_13
OR
sunjreMatch1.4.2_14
OR
sunjreMatch1.4.2_15
OR
sunjreMatch1.4.2_16
OR
sunjreMatch1.4.2_17
OR
sunjreMatch5.0
OR
sunjreMatch5.0update_1
OR
sunjreMatch5.0update_10
OR
sunjreMatch5.0update_11
OR
sunjreMatch5.0update_12
OR
sunjreMatch5.0update_13
OR
sunjreMatch5.0update_14
OR
sunjreMatch5.0update_15
OR
sunjreMatch5.0update_2
OR
sunjreMatch5.0update_3
OR
sunjreMatch5.0update_4
OR
sunjreMatch5.0update_5
OR
sunjreMatch5.0update_6
OR
sunjreMatch5.0update_7
OR
sunjreMatch5.0update_8
OR
sunjreMatch5.0update_9
OR
sunjreMatch6
OR
sunjreMatch6update_1
OR
sunjreMatch6update_2
OR
sunjreMatch6update_3
OR
sunjreMatch6update_4
OR
sunjreMatch6update_5
OR
sunjreMatch6update_6
OR
sunjreMatch6update_7
OR
sunjreMatch6update_8
OR
sunjreMatch6update_9
OR
sunsdkRange1.4.2_18
OR
sunsdkMatch1.4.2_1
OR
sunsdkMatch1.4.2_2
OR
sunsdkMatch1.4.2_3
OR
sunsdkMatch1.4.2_4
OR
sunsdkMatch1.4.2_5
OR
sunsdkMatch1.4.2_6
OR
sunsdkMatch1.4.2_7
OR
sunsdkMatch1.4.2_8
OR
sunsdkMatch1.4.2_9
OR
sunsdkMatch1.4.2_10
OR
sunsdkMatch1.4.2_11
OR
sunsdkMatch1.4.2_12
OR
sunsdkMatch1.4.2_13
OR
sunsdkMatch1.4.2_14
OR
sunsdkMatch1.4.2_15
OR
sunsdkMatch1.4.2_16
OR
sunsdkMatch1.4.2_17

References

Related

prion 1
nvd 1
cvelist 1
nessus 30
openvas 34
redhat 5
suse 3
seebug 1
vmware 2
gentoo 1
prion
prion
Security feature bypass
2008-12-05 11:30:00
nvd
nvd
CVE-2008-5340
2008-12-05 11:30:00
cvelist
cvelist
CVE-2008-5340
2008-12-05 11:00:00
nessus
nessus
Mac OS X : Java for Mac OS X 10.5 Update 3
2009-02-13 00:00:00
Mac OS X : Java for Mac OS X 10.4 Release 8
2009-02-13 00:00:00
SuSE 11 Security Update : IBM Java 1.6.0 (SAT Patch Number 736)
2009-09-24 00:00:00
openvas
openvas
Java for Mac OS X 10.5 Update 3
2010-05-28 00:00:00
Java for Mac OS X 10.5 Update 3
2010-05-28 00:00:00
SLES11: Security update for IBM Java 1.6.0
2009-10-11 00:00:00
redhat
redhat
(RHSA-2009:0369) Critical: java-1.6.0-ibm security update
2009-03-25 00:00:00
(RHSA-2009:0445) Critical: java-1.4.2-ibm security update
2009-04-23 00:00:00
(RHSA-2008:1018) Critical: java-1.6.0-sun security update
2008-12-04 00:00:00
suse
suse
local privilege escalation in IBMJava5-JRE,java-1_5_0-ibm
2009-01-29 14:08:00
remote code execution in IBM Java 1.4.2 and 6
2009-04-07 14:51:07
remote code execution in Sun Java
2009-01-09 15:49:38
seebug
seebug
Sun Java JDK/JRE安全更新修复多个漏洞
2008-12-09 00:00:00
vmware
vmware
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
gentoo
gentoo
Sun JDK/JRE: Multiple vulnerabilities
2009-11-17 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.018 Low

EPSS

Percentile

88.3%

JSON
Related for CVE-2008-5340
prion1nvd1cvelist1nessus30openvas34redhat5suse3seebug1vmware2gentoo1