12 matches found
Sun Java Web Start JRE Buffer Overflow - Ver2 (CVE-2007-3655)
A buffer overflow vulnerability has been reported in Sun JRE. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Scientific Linux Security Update : jdk (java) on SL3.x, SL4.x i386/x86_64
NOTE: This combination of rpm's replaces j2sdk-1.4.2 with jdk-1.5.0. So your java will change from version 1.4.2 to 1.5.0. We apologize if this causes any problems, but it needed to be done for security reasons. A flaw in the applet caching mechanism of the Java Runtime Environment JRE did not...
SLES9: Security update for IBM Java2 JRE and SDK
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: IBMJava2-JRE IBMJava2-SDK For more information, please visit the referenced security advisories. More details may also be found by searching for keyword...
SLES9: Security update for IBM Java2 JRE and SDK
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: IBMJava2-JRE IBMJava2-SDK For more information, please visit the referenced security advisories. More details may also be found by searching for keyword...
RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2007:0829)
Updated java-1.5.0-ibm packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.5.0 Java release includes the IBM Java 2...
Gentoo Security Advisory GLSA 200806-11 (ibm-jdk-bin ibm-jre-bin)
The remote host is missing updates announced in advisory GLSA 200806-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200804-20 (sun-jdk, sun-jre-bin, emul-linux-x86-java)
The remote host is missing updates announced in advisory GLSA 200804-20. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-200804-20 : Sun JDK/JRE: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200804-20 Sun JDK/JRE: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Sun Java: Daniel Soeder discovered that a long codebase attribute string in a JNLP file will overflow a stack variable when launched ...
Sun JDK/JRE: Multiple vulnerabilities
Background The Sun Java Development Kit JDK and the Sun Java Runtime Environment JRE provide the Sun Java platform. Description Multiple vulnerabilities have been discovered in Sun Java: Daniel Soeder discovered that a long codebase attribute string in a JNLP file will overflow a stack variable...
Mac OS X : Java for Mac OS X 10.4 Release 6
The remote Mac OS X 10.4 host is running a version of Java for Mac OS X that is older than release 6. The remote version of this software contains several security vulnerabilities that may allow a rogue Java applet to escalate its privileges and to add or remove arbitrary items from the user's...
SuSE 10 Security Update : IBM Java 1.5.0 (ZYPP Patch Number 4544)
The IBM Java JRE/SDK has been brought to release 1.5.0 SR5a, containing several bugfixes, including the following security fixes : - A buffer overflow vulnerability in the image parsing code in the JavaTM Runtime Environment may allow an untrusted applet or application to elevate its privileges...
CVE-2007-3655
CVE-2007-3655 is a stack-based buffer overflow in javaws.exe (Sun Java Web Start) within JRE 5.0 Update 11 and earlier and 6.0 Update 1 and earlier. An attacker could remotely exploit a long codebase attribute in a JNLP file to execute arbitrary code. Red Hat advisories indicate this CVE was addr...