Lucene search
FreeBSDAC619D06-3EF8-11D9-8741-C942C075AA41HistoryNov 24, 2004 - 12:00 a.m.
jdk/jre -- Security Vulnerability With Java Plugin
2004-11-2400:00:00
vuxml.freebsd.org
15
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.192 Low
EPSS
Percentile
96.3%
The Sun Java Plugin capability in Java 2 Runtime Environment
(JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does
not properly restrict access between Javascript and Java
applets during data transfer, which allows remote attackers to
load unsafe classes and execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | jdk | = 1.4.0 | UNKNOWN |
| FreeBSD | any | noarch | jdk | <= 1.4.2p6_6 | UNKNOWN |
| FreeBSD | any | noarch | linux-jdk | = 1.4.0 | UNKNOWN |
| FreeBSD | any | noarch | linux-jdk | <= 1.4.2.05 | UNKNOWN |
| FreeBSD | any | noarch | linux-sun-jdk | = 1.4.0 | UNKNOWN |
| FreeBSD | any | noarch | linux-sun-jdk | <= 1.4.2.05 | UNKNOWN |
| FreeBSD | any | noarch | linux-blackdown-jdk | = 1.3.0 | UNKNOWN |
| FreeBSD | any | noarch | linux-blackdown-jdk | <= 1.4.2 | UNKNOWN |
| FreeBSD | any | noarch | linux-ibm-jdk | = 1.3.0 | UNKNOWN |
| FreeBSD | any | noarch | linux-ibm-jdk | <= 1.4.2 | UNKNOWN |
Related
cert
cert
Sun Java Plug-in fails to restrict access to private Java packages
2004-11-23 00:00:00
openvas
openvas
SLES9: Security update for Java2
2009-10-10 00:00:00
FreeBSD Ports: jdk
2008-09-04 00:00:00
SLES9: Security update for Java2
2009-10-10 00:00:00
gentoo
gentoo
Sun and Blackdown Java: Applet privilege escalation
2004-11-29 00:00:00
nessus
nessus
Sun Java JRE Plug-in Capability Arbitrary Package Access
2005-01-22 00:00:00
FreeBSD : jdk/jre -- Security Vulnerability With Java Plugin (81)
2004-11-30 00:00:00
nvd
nvd
CVE-2004-1029
2005-03-01 05:00:00
cvelist
cvelist
CVE-2004-1029
2004-11-24 05:00:00
cve
cve
CVE-2004-1029
2005-03-01 05:00:00
securityvulns
securityvulns
checkpoint_advisories
checkpoint_advisories
Sun Java Plug-in Sandbox Security Bypass (CVE-2004-1029)
2009-11-30 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.192 Low
EPSS
Percentile
96.3%
Related for AC619D06-3EF8-11D9-8741-C942C075AA41