Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:0817
HistoryAug 06, 2007 - 12:00 a.m.

(RHSA-2007:0817) Critical: java-1.4.2-ibm security update

2007-08-0600:00:00
access.redhat.com
15

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.623 Medium

EPSS

Percentile

97.5%

JSON

IBM’s 1.4.2 SR9 Java release includes the IBM Java 2 Runtime Environment
and the IBM Java 2 Software Development Kit.

A security vulnerability in the Java Web Start component was discovered.
An untrusted application could elevate it’s privileges and read and write
local files that are accessible to the user running the Java Web Start
application. (CVE-2007-2435)

A buffer overflow in the image code JRE was found. An untrusted
applet or application could use this flaw to elevate its privileges and
potentially execute arbitrary code as the user running the java virtual
machine. (CVE-2007-3004)

An unspecified vulnerability was discovered in the Java Runtime
Environment. An untrusted applet or application could cause the java
virtual machine to become unresponsive. (CVE-2007-3005)

All users of java-1.4.2-ibm should upgrade to these updated packages,
which contain IBM’s 1.4.2 SR9 Java release that resolves these issues.

OSVersionArchitecturePackageVersionFilename
RedHat5ppcjava-1.4.2-ibm-src< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-src-1.4.2.9-1jpp.1.el5.ppc.rpm
RedHat5ppcjava-1.4.2-ibm< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-1.4.2.9-1jpp.1.el5.ppc.rpm
RedHat5s390java-1.4.2-ibm-demo< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-demo-1.4.2.9-1jpp.1.el5.s390.rpm
RedHat5ppcjava-1.4.2-ibm-jdbc< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-jdbc-1.4.2.9-1jpp.1.el5.ppc.rpm
RedHat5i386java-1.4.2-ibm-demo< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-demo-1.4.2.9-1jpp.1.el5.i386.rpm
RedHat5ppcjava-1.4.2-ibm-demo< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-demo-1.4.2.9-1jpp.1.el5.ppc.rpm
RedHat5ia64java-1.4.2-ibm-devel< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-devel-1.4.2.9-1jpp.1.el5.ia64.rpm
RedHat5s390xjava-1.4.2-ibm-demo< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-demo-1.4.2.9-1jpp.1.el5.s390x.rpm
RedHat5i386java-1.4.2-ibm-plugin< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-plugin-1.4.2.9-1jpp.1.el5.i386.rpm
RedHat5i386java-1.4.2-ibm-javacomm< 1.4.2.9-1jpp.1.el5java-1.4.2-ibm-javacomm-1.4.2.9-1jpp.1.el5.i386.rpm
Rows per page:
1-10 of 311

Related

nessus 23
openvas 20
securityvulns 2
gentoo 4
suse 2
redhat 7
prion 6
cve 6
jvn 1
checkpoint_advisories 1
cert 1
ubuntucve 3
vmware 2
nessus
nessus
RHEL 3 / 4 / 5 : java-1.4.2-ibm (RHSA-2007:0817)
2009-08-24 00:00:00
openSUSE 10 Security Update : java-1_5_0-sun (java-1_5_0-sun-3832)
2007-10-17 00:00:00
GLSA-200705-23 : Sun JDK/JRE: Multiple vulnerabilities
2007-06-04 00:00:00
openvas
openvas
RedHat Update for IBMJava2 RHSA-2008:0133-01
2009-03-06 00:00:00
Gentoo Security Advisory GLSA 200705-23 (sun-jdk,sun-jre-bin)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200706-08 (emul-linux-x86-java)
2008-09-24 00:00:00
securityvulns
securityvulns
[ GLSA 200705-23 ] Sun JDK/JRE: Multiple vulnerabilities
2007-06-01 00:00:00
Sun JRE / JDK multiple security vulnerabilities
2007-06-01 00:00:00
gentoo
gentoo
emul-linux-x86-java: Multiple vulnerabilities
2007-06-26 00:00:00
Sun JDK/JRE: Multiple vulnerabilities
2007-05-31 00:00:00
BEA JRockit: Multiple vulnerabilities
2007-09-23 00:00:00
suse
suse
remote code execution in IBM Java
2007-10-18 17:55:07
remote code execution in IBM Java, Sun Java
2007-07-18 17:38:23
redhat
redhat
(RHSA-2007:1086) Moderate: java-1.4.2-bea security update
2007-12-12 00:00:00
(RHSA-2007:0829) Critical: java-1.5.0-ibm security update
2007-08-07 00:00:00
(RHSA-2007:0956) Moderate: java-1.5.0-bea security update
2007-10-16 00:00:00
prion
prion
Design/Logic Flaw
2007-06-04 17:30:00
Design/Logic Flaw
2007-06-04 17:30:00
Integer overflow
2007-05-22 00:30:00
cve
cve
CVE-2007-3005
2007-06-04 17:30:00
CVE-2007-3004
2007-06-04 17:30:00
CVE-2007-2789
2007-05-22 00:30:00
jvn
jvn
JVN#44724673: Java Web Start vulnerable to execution of unauthorized system classes
2007-05-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Sun JDK Hard Coded Image in Java File (CVE-2007-2788)
2010-03-23 00:00:00
cert
cert
Java Runtime Environment Image Parsing Code buffer overflow vulnerability
2007-06-06 00:00:00
ubuntucve
ubuntucve
CVE-2007-2789
2007-05-22 00:00:00
CVE-2007-2435
2007-05-02 00:00:00
CVE-2009-3885
2009-11-09 00:00:00
vmware
vmware
Updated Tomcat and Java JRE packages for VirtualCenter 2.5, VirtualCenter 2.0.2, ESX 3.5, ESX 3.0.2, and ESX 3.0.1.
2008-01-07 00:00:00
Updated Tomcat and Java JRE packages for VirtualCenter 2.5, VirtualCenter 2.0.2, ESX 3.5, ESX 3.0.2, and ESX 3.0.1.
2008-01-07 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.623 Medium

EPSS

Percentile

97.5%

JSON
Related for RHSA-2007:0817
nessus23openvas20securityvulns2gentoo4suse2redhat7prion6cve6jvn1checkpoint_advisories1cert1ubuntucve3vmware2