Lucene search
HistoryDec 31, 2003 - 5:00 a.m.
CVE-2003-1123
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.02
Percentile
89.2%
Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model.
Affected configurations
Node
sunjdkMatch1.2.2solaris
ORsunjdkMatch1.2.2_10linux
ORsunjdkMatch1.2.2_10solaris
ORsunjdkMatch1.2.2_10windows
ORsunjdkMatch1.2.2_11linux
ORsunjdkMatch1.2.2_11solaris
ORsunjdkMatch1.2.2_11windows
ORsunjdkMatch1.2.2_12windows
ORsunjdkMatch1.3solaris
ORsunjdkMatch1.3.0_02linux
ORsunjdkMatch1.3.0_02solaris
ORsunjdkMatch1.3.0_02windows
ORsunjdkMatch1.3.0_05linux
ORsunjdkMatch1.3.0_05solaris
ORsunjdkMatch1.3.0_05windows
ORsunjdkMatch1.3.1_01linux
ORsunjdkMatch1.3.1_01solaris
ORsunjdkMatch1.3.1_01awindows
ORsunjdkMatch1.3.1_03linux
ORsunjdkMatch1.3.1_03solaris
ORsunjdkMatch1.3.1_03windows
ORsunjdkMatch1.3.1_04windows
ORsunjdkMatch1.4linux
ORsunjdkMatch1.4solaris
ORsunjdkMatch1.4windows
ORsunjdkMatch1.4.0_01windows
ORsunjreMatch1.2.2solaris
ORsunjreMatch1.2.2windows
ORsunjreMatch1.2.2update10linux
ORsunjreMatch1.2.2update10solaris
ORsunjreMatch1.2.2update10windows
ORsunjreMatch1.2.2_003linux
ORsunjreMatch1.2.2_011linux
ORsunjreMatch1.2.2_011solaris
ORsunjreMatch1.2.2_011windows
ORsunjreMatch1.2.2_012solaris
ORsunjreMatch1.3.0linux
ORsunjreMatch1.3.0solaris
ORsunjreMatch1.3.0windows
ORsunjreMatch1.3.0update2linux
ORsunjreMatch1.3.0update2solaris
ORsunjreMatch1.3.0update2windows
ORsunjreMatch1.3.0update4windows
ORsunjreMatch1.3.0update5linux
ORsunjreMatch1.3.0update5solaris
ORsunjreMatch1.3.0update5windows
ORsunjreMatch1.3.1linux
ORsunjreMatch1.3.1update1linux
ORsunjreMatch1.3.1update1solaris
ORsunjreMatch1.3.1update1windows
ORsunjreMatch1.3.1update4solaris
ORsunjreMatch1.3.1update4windows
ORsunjreMatch1.3.1_03linux
ORsunjreMatch1.3.1_03solaris
ORsunjreMatch1.3.1_03windows
ORsunjreMatch1.4linux
ORsunjreMatch1.4solaris
ORsunjreMatch1.4windows
ORsunjreMatch1.4.0_01solaris
ORsunjreMatch1.4.0_01windows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sun | jdk | 1.2.2 | cpe:2.3:a:sun:jdk:1.2.2:*:solaris:*:*:*:*:* |
| sun | jdk | 1.2.2_10 | cpe:2.3:a:sun:jdk:1.2.2_10:*:linux:*:*:*:*:* |
| sun | jdk | 1.2.2_10 | cpe:2.3:a:sun:jdk:1.2.2_10:*:solaris:*:*:*:*:* |
| sun | jdk | 1.2.2_10 | cpe:2.3:a:sun:jdk:1.2.2_10:*:windows:*:*:*:*:* |
| sun | jdk | 1.2.2_11 | cpe:2.3:a:sun:jdk:1.2.2_11:*:linux:*:*:*:*:* |
| sun | jdk | 1.2.2_11 | cpe:2.3:a:sun:jdk:1.2.2_11:*:solaris:*:*:*:*:* |
| sun | jdk | 1.2.2_11 | cpe:2.3:a:sun:jdk:1.2.2_11:*:windows:*:*:*:*:* |
| sun | jdk | 1.2.2_12 | cpe:2.3:a:sun:jdk:1.2.2_12:*:windows:*:*:*:*:* |
| sun | jdk | 1.3 | cpe:2.3:a:sun:jdk:1.3:*:solaris:*:*:*:*:* |
| sun | jdk | 1.3.0_02 | cpe:2.3:a:sun:jdk:1.3.0_02:*:linux:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2003-1123
2005-03-12 05:00:00
exploitdb
exploitdb
Sun JRE/SDK 1.x - Untrusted Applet Java Security Model Violation
2003-06-05 00:00:00
cve
cve
CVE-2003-1123
2005-03-12 05:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.02
Percentile
89.2%
Related for NVD:CVE-2003-1123