Jre@1.3.1 25 Security Vulnerabilities and Issues — Jre@1.3.1 25 CVE List

Lucene search

SunJre1.3.1 25

33 matches found

CVE•added 2010/04/01 4:30 p.m.•104 views

CVE-2010-0848

Unspecified vulnerability in the Java 2D component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

7.5CVSS6.8AI score0.03647EPSS

CVE•added 2009/11/05 4:30 p.m.•103 views

CVE-2009-3869

Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote at...

9.3CVSS7.8AI score0.78483EPSS

CVE•added 2009/11/05 4:30 p.m.•96 views

CVE-2009-3876

Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to cause a denial of service (memory consumption) via crafted DER encoded data, which is not...

5CVSS6.2AI score0.10466EPSS

CVE•added 2010/10/19 10:0 p.m.•92 views

CVE-2010-3571

Unspecified vulnerability in the 2D component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2...

10CVSS7.5AI score0.14119EPSS

CVE•added 2009/11/05 4:30 p.m.•90 views

CVE-2009-3877

5CVSS6.2AI score0.08574EPSS

CVE•added 2009/11/05 4:30 p.m.•89 views

CVE-2009-3873

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968.

9.3CVSS6.5AI score0.11365EPSS

CVE•added 2010/10/19 10:0 p.m.•88 views

CVE-2010-3556

10CVSS6.8AI score0.1145EPSS

CVE•added 2009/11/05 4:30 p.m.•87 views

CVE-2009-3868

Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 does not properly parse color profiles, which allows remote attackers to gain privileges via a crafted image file, aka Bug Id 6862970.

9.3CVSS6.3AI score0.14549EPSS

CVE•added 2009/11/05 4:30 p.m.•87 views

CVE-2009-3875

The MessageDigest.isEqual function in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to spoof HMAC-based digital signatures, and possi...

5CVSS6.3AI score0.02476EPSS

CVE•added 2010/10/19 10:0 p.m.•86 views

CVE-2010-3562

10CVSS7.9AI score0.15526EPSS

CVE•added 2009/11/05 4:30 p.m.•84 views

CVE-2009-3874

Integer overflow in the JPEGImageReader implementation in the ImageI/O component in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via large subsample dimensions in a JPEG file ...

9.3CVSS7.8AI score0.06624EPSS

CVE•added 2009/11/05 4:30 p.m.•82 views

CVE-2009-3871

Heap-based buffer overflow in the setBytePixels function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote ...

9.3CVSS7.9AI score0.09429EPSS

CVE•added 2010/10/19 10:0 p.m.•81 views

CVE-2010-3574

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the O...

10CVSS7.3AI score0.08474EPSS

CVE•added 2009/11/05 4:30 p.m.•80 views

CVE-2009-3867

Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a long file: URL in a...

9.3CVSS7.7AI score0.89161EPSS

CVE•added 2010/10/19 10:0 p.m.•80 views

CVE-2010-3549

6.8CVSS7.2AI score0.05715EPSS

CVE•added 2010/10/19 10:0 p.m.•77 views

CVE-2010-3559

Unspecified vulnerability in the Sound component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

10CVSS7.5AI score0.1366EPSS

CVE•added 2010/04/01 4:30 p.m.•75 views

CVE-2010-0842

Unspecified vulnerability in the Sound component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March ...

7.5CVSS7.4AI score0.91327EPSS

CVE•added 2010/10/19 10:0 p.m.•75 views

CVE-2010-3541

5.1CVSS7.3AI score0.01328EPSS

CVE•added 2010/04/01 4:30 p.m.•74 views

CVE-2010-0847

7.5CVSS7.5AI score0.05186EPSS

CVE•added 2009/11/05 4:30 p.m.•73 views

CVE-2009-3872

Unspecified vulnerability in the JPEG JFIF Decoder in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to gain privileges via a crafted image file, aka Bug Id 6862969.

9.3CVSS6.2AI score0.13016EPSS

CVE•added 2010/10/19 10:0 p.m.•72 views

CVE-2010-3557

Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

6.8CVSS7.2AI score0.05715EPSS

CVE•added 2010/04/01 4:30 p.m.•71 views

CVE-2010-0082

Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

5.1CVSS6.8AI score0.03647EPSS

CVE•added 2010/10/19 10:0 p.m.•71 views

CVE-2010-3572

10CVSS6.8AI score0.1145EPSS

CVE•added 2010/04/01 4:30 p.m.•69 views

CVE-2010-0088

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2010-...

6.8CVSS7AI score0.03647EPSS

CVE•added 2010/04/01 4:30 p.m.•69 views

CVE-2010-0846

Unspecified vulnerability in the ImageIO component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Marc...

7.5CVSS7.5AI score0.09854EPSS

CVE•added 2010/04/01 4:30 p.m.•68 views

CVE-2010-0085

5.1CVSS7AI score0.03647EPSS

CVE•added 2010/10/19 10:0 p.m.•68 views

CVE-2010-3554

Unspecified vulnerability in the CORBA component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

10CVSS7.1AI score0.06885EPSS

CVE•added 2010/10/19 10:0 p.m.•66 views

CVE-2010-3553

10CVSS7.2AI score0.10973EPSS

CVE•added 2010/04/01 4:30 p.m.•62 views

CVE-2010-0087

Unspecified vulnerability in the Java Web Start, Java Plug-in component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

7.5CVSS6.8AI score0.02519EPSS

CVE•added 2010/04/01 4:30 p.m.•61 views

CVE-2010-0850

Unspecified vulnerability in the Java 2D component in Oracle Java SE and Java for Business 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

7.5CVSS6.8AI score0.01681EPSS

CVE•added 2010/04/01 4:30 p.m.•59 views

CVE-2010-0844

7.5CVSS6.9AI score0.06412EPSS

CVE•added 2010/04/01 4:30 p.m.•58 views

CVE-2010-0849

7.5CVSS7.3AI score0.0567EPSS

CVE•added 2010/04/01 4:30 p.m.•57 views

CVE-2010-0839

7.5CVSS6.8AI score0.03618EPSS