CVE-2007-5019

The CVE-2007-5019 issue is a buffer overflow in the Sun Java Web Start ActiveX control of Java Runtime Environment (JRE) 1.6.0_X. The vulnerability occurs when processing a long argument to dnsResolve (isInstalled.dnsResolve), due to a boundary error in the ActiveX control. Affected component: Su...

CVE-2003-1229

The issue concerns X509TrustManager in Java Secure Socket Extension (JSSE) across multiple Java platforms (SDK/JRE 1.4.0–1.4.0_01, JSSE before 1.0.3, Java Plug‑in SDK/JRE 1.3.0–1.4.1, and Java Web Start 1.0–1.2). The X509TrustManager incorrectly calls isClientTrusted when determining server trust...

CVE-2008-4910

CVE-2008-4910 affects Sun Java Web Start (BasicService). The vulnerability allows a remote attacker to execute arbitrary programs on a client machine by passing a file:// URL argument to the showDocument method. Impact is described as remote code execution with full confidentiality/integrity/avai...

CVE-2002-2005

Technical details about CVE-2002-2005 are not publicly available in the provided documents. No concrete affected product/version, root cause, or remediation are described here. Monitor for updates from trusted sources.

CVE-2006-4302

CVE-2006-4302 affects the Java Plug-in J2SE 1.3.0_02–5.0 Update 5, and Java Web Start 1.0–1.2 and J2SE 1.4.2–5.0 Update 5. Remote attackers could exploit vulnerabilities by specifying a JRE version that contains vulnerable components. The available documents do not provide concrete exploit detail...