Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:0166
HistoryApr 25, 2007 - 12:00 a.m.

(RHSA-2007:0166) Critical: java-1.4.2-ibm security update

2007-04-2500:00:00
access.redhat.com
12

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.388 Low

EPSS

Percentile

96.9%

JSON

IBM’s 1.4.2 SR8 Java release includes the IBM Java 2 Runtime Environment
and the IBM Java 2 Software Development Kit.

A flaw in GIF image handling was found in the SUN Java Runtime Environment
that has now been reported as also affecting IBM Java 2. An untrusted
applet or application could use this flaw to elevate its privileges and
potentially execute arbitrary code. (CVE-2007-0243)

All users of java-1.4.2-ibm should upgrade to these updated packages, which
contain IBM’s 1.4.2 SR8 Java release which resolves this issue.

OSVersionArchitecturePackageVersionFilename
RedHat5x86_64java-1.4.2-ibm<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-1.4.2.8-1jpp.1.el5.x86_64.rpm
RedHat5ppcjava-1.4.2-ibm-jdbc<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-jdbc-1.4.2.8-1jpp.1.el5.ppc.rpm
RedHat5s390java-1.4.2-ibm<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-1.4.2.8-1jpp.1.el5.s390.rpm
RedHat5s390java-1.4.2-ibm-jdbc<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-jdbc-1.4.2.8-1jpp.1.el5.s390.rpm
RedHat5i386java-1.4.2-ibm-jdbc<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-jdbc-1.4.2.8-1jpp.1.el5.i386.rpm
RedHat5ia64java-1.4.2-ibm-devel<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-devel-1.4.2.8-1jpp.1.el5.ia64.rpm
RedHat5ppcjava-1.4.2-ibm-src<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-src-1.4.2.8-1jpp.1.el5.ppc.rpm
RedHat5s390xjava-1.4.2-ibm-src<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-src-1.4.2.8-1jpp.1.el5.s390x.rpm
RedHat5i386java-1.4.2-ibm-devel<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-devel-1.4.2.8-1jpp.1.el5.i386.rpm
RedHat5x86_64java-1.4.2-ibm-devel<Β 1.4.2.8-1jpp.1.el5java-1.4.2-ibm-devel-1.4.2.8-1jpp.1.el5.x86_64.rpm
Rows per page:
1-10 of 311

Related

checkpoint_advisories 3
openvas 11
prion 2
nessus 16
redhat 5
zdi 1
gentoo 2
cert 1
cve 2
seebug 1
securityvulns 3
suse 1
checkpoint_advisories
checkpoint_advisories
Sun Java GIF File Handling Memory Corruption (CVE-2007-0243)
2009-12-29 00:00:00
Sun Java GIF File Handling Memory Corruption - Improved Performance (CVE-2007-0243)
2013-05-12 00:00:00
Update Protection against Sun Java GIF Image Remote Code Execution Vulnerability
2007-05-13 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200702-07 (java)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200702-07 (java)
2008-09-24 00:00:00
HP-UX Update for HP-UX Pkg HPSBUX02196
2009-05-05 00:00:00
prion
prion
Buffer overflow
2007-01-17 22:28:00
Design/Logic Flaw
2007-01-17 00:28:00
nessus
nessus
GLSA-200702-07 : Sun JDK/JRE: Execution of arbitrary code
2007-02-18 00:00:00
Sun Java JRE GIF Image Handling Buffer Overflow (102760)
2007-01-17 00:00:00
Sun Java JRE GIF Image Handling Buffer Overflow (102760) (Unix)
2013-02-22 00:00:00
redhat
redhat
(RHSA-2007:0167) Critical: java-1.5.0-ibm security update
2007-04-25 00:00:00
(RHSA-2007:0072) Critical: IBMJava2 security update
2007-02-08 00:00:00
(RHSA-2007:0956) Moderate: java-1.5.0-bea security update
2007-10-16 00:00:00
zdi
zdi
Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability
2007-01-16 00:00:00
gentoo
gentoo
Sun JDK/JRE: Execution of arbitrary code
2007-02-17 00:00:00
AMD64 x86 emulation Sun's J2SE Development Kit: Multiple vulnerabilities
2007-02-17 00:00:00
cert
cert
Sun Microsystems Java GIF image processing buffer overflow
2007-01-17 00:00:00
cve
cve
CVE-2007-0243
2007-01-17 22:28:00
CVE-2007-0234
2007-01-17 00:28:00
seebug
seebug
Sun JavaθΏθ‘Œζ—ΆηŽ―ε’ƒGIFε›Ύε½’ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2007-01-17 00:00:00
securityvulns
securityvulns
ZDI-07-005: Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability
2007-01-18 00:00:00
Sun Java memory corruption
2007-01-23 00:00:00
US-CERT Technical Cyber Security Alert TA07-022A
2007-01-23 00:00:00
suse
suse
remote code execution in IBM Java, Sun Java
2007-07-18 17:38:23

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.388 Low

EPSS

Percentile

96.9%

JSON
Related for RHSA-2007:0166
checkpoint_advisories3openvas11prion2nessus16redhat5zdi1gentoo2cert1cve2seebug1securityvulns3suse1