Jre@1.4.2 1 Security Vulnerabilities and Issues — Page 4 of Jre@1.4.2 1 CVE List

Lucene search

SunJre1.4.2 1

159 matches found

CVE•added 2008/03/06 9:44 p.m.•47 views

CVE-2008-1189

Buffer overflow in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.2_16 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different issue than CVE-2008-1188, aka the "third" issue.

6.8CVSS9AI score0.34701EPSS

CVE•added 2008/03/06 9:44 p.m.•45 views

CVE-2008-1192

Unspecified vulnerability in the Java Plug-in for Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier; and SDK and JRE 1.4.2_16 and earlier, and 1.3.1_21 and earlier; allows remote attackers to bypass the same origin policy and "execute local applications" via unknown vectors.

6.8CVSS8.4AI score0.14809EPSS

CVE•added 2006/02/09 2:2 a.m.•43 views

CVE-2006-0615

Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 4 and earlier, SDK and JRE 1.4.x through 1.4.2_09 allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "second and third issues."

4CVSS6.9AI score0.07229EPSS

CVE•added 2005/11/30 11:3 a.m.•42 views

CVE-2005-3905

Unspecified vulnerability in reflection APIs in Java SDK and JRE 1.3.1_15 and earlier, 1.4.2_08 and earlier, and JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors, a differen...

7.5CVSS7.3AI score0.11508EPSS

CVE•added 2005/11/30 11:3 a.m.•41 views

CVE-2005-3904

Unspecified vulnerability in Java Management Extensions (JMX) in Java JDK and JRE 5.0 Update 3, 1.4.2 and later, 1.3.1 and later allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors.

7.5CVSS7.4AI score0.10002EPSS

CVE•added 2007/10/06 12:17 a.m.•41 views

CVE-2007-5239

Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier does not properly enforce access restrictions for untrusted (1) applications and (2) applets, which allows user-assisted remote att...

4CVSS6.2AI score0.01538EPSS

CVE•added 2005/11/30 11:3 a.m.•40 views

CVE-2005-3907

Unspecified vulnerability in Java Runtime Environment in Java JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors involving untrusted Java applets.

7.5CVSS7.3AI score0.08015EPSS

CVE•added 2005/11/30 11:3 a.m.•39 views

CVE-2005-3906

Multiple unspecified vulnerabilities in reflection APIs in Java SDK and JRE 1.4.2_08 and earlier and JDK and JRE 5.0 Update 3 and earlier allow remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors, a different set of vul...

7.5CVSS7.4AI score0.11508EPSS

CVE•added 2009/06/02 10:30 a.m.•37 views

CVE-2004-2764

Sun SDK and Java Runtime Environment (JRE) 1.4.2 through 1.4.2_04, 1.4.1 through 1.4.1_07, and 1.4.0 through 1.4.0_04 allows untrusted applets and unprivileged servlets to gain privileges and read data from other applets via unspecified vectors related to classes in the XSLT processor, aka "XML sni...

10CVSS6.9AI score0.01067EPSS

Total number of security vulnerabilities159