Lucene search
+L

12 matches found

Prion
Prion
added 2008/12/05 11:30 a.m.17 views

Design/Logic Flaw

Unspecified vulnerability in Java Web Start JWS and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows untrusted applets to read arbitrary files and make unauthorized network connections via unknown vectors...

7.5CVSS6.2AI score0.03426EPSS
Exploits1References32Affected Software3
Prion
Prion
added 2008/12/05 11:30 a.m.21 views

Code injection

Java Web Start JWS and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows remote attackers to make unauthorized network connections and hijack HTTP sessions via a crafted file that validates as both a GIF an...

9CVSS6.3AI score0.05093EPSS
Exploits1References35Affected Software3
NVD
NVD
added 2008/12/05 11:30 a.m.24 views

CVE-2008-5354

Stack-based buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows locally-launched and possibly remote untrusted Java applications to execute arbitrary code via a JAR file with...

9.3CVSS8.1AI score0.04798EPSS
Exploits5References37
NVD
NVD
added 2008/12/05 11:30 a.m.33 views

CVE-2008-5353

The Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier does not properly enforce context of ZoneInfo objects during deserialization, which allows remote attackers to run untrusted applets and...

10CVSS7.5AI score0.85695EPSS
Exploits19References42
NVD
NVD
added 2008/12/05 11:30 a.m.32 views

CVE-2008-5348

Unspecified vulnerability in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier, when using Kerberos authentication, allows remote attackers to cause a denial of service OS resource consumption via...

7.1CVSS7.2AI score0.04306EPSS
Exploits1References36
CVE
CVE
added 2008/12/05 11:0 a.m.100 views

CVE-2008-5340

CVE-2008-5340 concerns an unspecified vulnerability in Java Web Start (JWS) and Java Plug-in affecting Sun JDK/JRE lines: Java SE 6 Update 10 and earlier; Java SE 5.0 Update 16 and earlier; and SDK/JRE 1.4.2_18 and earlier. The untrusted JWS applications can gain privileges to access local files ...

10CVSS7.6AI score0.03648EPSS
Exploits1References32Affected Software3
Cvelist
Cvelist
added 2008/12/05 11:0 a.m.39 views

CVE-2008-5353

The Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier does not properly enforce context of ZoneInfo objects during deserialization, which allows remote attackers to run untrusted applets and...

7.5AI score0.85695EPSS
Exploits19References42
CVE
CVE
added 2008/12/05 11:0 a.m.101 views

CVE-2008-5348

CVE-2008-5348 concerns an unspecified vulnerability in Sun JDK/JRE across multiple major versions (JDK/JRE 6 Update 10 and earlier; 5.0 Update 16 and earlier; 1.4.2_18 and earlier) that, when Kerberos authentication is used, can allow remote attackers to cause a denial of service through OS resou...

7.1CVSS7.3AI score0.04306EPSS
Exploits1References36Affected Software3
Cvelist
Cvelist
added 2008/12/05 11:0 a.m.29 views

CVE-2008-5339

Unspecified vulnerability in Java Web Start JWS and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows untrusted JWS applications to perform network connections to unauthorized hosts via unknown vectors, aka...

7.4AI score0.03451EPSS
Exploits1References30
UbuntuCve
UbuntuCve
added 2008/12/05 12:0 a.m.25 views

CVE-2008-5351

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier accepts UTF-8 encodings that are not the "shortest" form, which makes it easier for attackers to bypass protection mechanisms for other applications...

7.5CVSS7.1AI score0.03426EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2008/12/05 12:0 a.m.57 views

CVE-2008-5353

The Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier does not properly enforce context of ZoneInfo objects during deserialization, which allows remote attackers to run untrusted applets and...

10CVSS7.1AI score0.85695EPSS
Exploits19References2
UbuntuCve
UbuntuCve
added 2008/12/05 12:0 a.m.34 views

CVE-2008-5360

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier creates temporary files with predictable file names, which allows attackers to write malicious JAR files via unknow...

6.4CVSS7AI score0.03478EPSS
Exploits1References2
Rows per page
Query Builder