Lucene search
Ubuntu.comUB:CVE-2008-0628HistoryFeb 06, 2008 - 12:00 a.m.
CVE-2008-0628
2008-02-0600:00:00
ubuntu.com
ubuntu.com
4
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:P/A:C
0.007 Low
EPSS
Percentile
80.4%
The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 Update 3
and earlier processes external entity references even when the “external
general entities” property is false, which allows remote attackers to
conduct XML external entity (XXE) attacks and cause a denial of service or
access restricted resources.
Related
nessus
nessus
Sun Java JRE External XML Entities Restriction Bypass (231246)
2008-02-01 00:00:00
Sun Java JRE External XML Entities Restriction Bypass (231246) (Unix)
2013-02-22 00:00:00
RHEL 5 : java-1.6.0-bea (RHSA-2008:0245)
2013-01-24 00:00:00
prion
prion
Xxe
2008-02-06 21:00:00
cve
cve
CVE-2008-0628
2008-02-06 21:00:00
redhat
redhat
(RHSA-2008:0245) Moderate: java-1.6.0-bea security update
2008-04-28 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200804-28 (jrockit-jdk-bin)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200804-20 (sun-jdk, sun-jre-bin, emul-linux-x86-java)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200806-11 (ibm-jdk-bin ibm-jre-bin)
2008-09-24 00:00:00
gentoo
gentoo
Sun JDK/JRE: Multiple vulnerabilities
2008-04-17 00:00:00
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:P/A:C
0.007 Low
EPSS
Percentile
80.4%
Related for UB:CVE-2008-0628