Lucene search

[email protected]CVE-2008-5349

HistoryDec 05, 2008 - 11:30 a.m.

CVE-2008-5349

2008-12-0511:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2008-5349

java

jre

vulnerability

denial of service

cpu consumption

nvd

7.5 High

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.077 Low

EPSS

Percentile

94.1%

JSON

Unspecified vulnerability in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows remote attackers to cause a denial of service (CPU consumption) via a crafted RSA public key.

CPENameOperatorVersion
sun:jdksun jdkeq5.0
sun:jresun jreeq6
sun:jresun jreeq5.0
sun:jdksun jdkeq6

CPE	Name	Operator	Version
sun:jdk	sun jdk	eq	5.0
sun:jre	sun jre	eq	6
sun:jre	sun jre	eq	5.0
sun:jdk	sun jdk	eq	6

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01745133

lists.opensuse.org/opensuse-security-announce/2009-03/msg00001.html

lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html

lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html

osvdb.org/50504

rhn.redhat.com/errata/RHSA-2008-1018.html

rhn.redhat.com/errata/RHSA-2008-1025.html

secunia.com/advisories/32991

secunia.com/advisories/33015

secunia.com/advisories/33709

secunia.com/advisories/34259

secunia.com/advisories/34972

secunia.com/advisories/35255

secunia.com/advisories/37386

security.gentoo.org/glsa/glsa-200911-02.xml

sunsolve.sun.com/search/document.do?assetkey=1-26-246286-1

support.avaya.com/elmodocs2/security/ASA-2008-491.htm

support.avaya.com/elmodocs2/security/ASA-2009-012.htm

support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=829914&poid=

www.redhat.com/support/errata/RHSA-2009-0016.html

www.securityfocus.com/archive/1/504010/100/0/threaded

www.securityfocus.com/bid/32608

www.securitytracker.com/id?1021309

www.us-cert.gov/cas/techalerts/TA08-340A.html

www.vupen.com/english/advisories/2008/3339

www.vupen.com/english/advisories/2009/1426

www116.nortel.com/pub/repository/CLARIFY/DOCUMENT/2009/03/024431-01.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/47064

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5843

rhn.redhat.com/errata/RHSA-2009-0466.html

7.5 High

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.077 Low

EPSS

Percentile

94.1%

JSON

Related for CVE-2008-5349

prion1 ubuntucve1 nessus28 openvas33 redhat6 ubuntu1 securityvulns2 fedora2 seebug1 suse1 vmware2 oracle1 gentoo1 ibm1