Lucene search
Ubuntu.comUB:CVE-2008-5352HistoryDec 05, 2008 - 12:00 a.m.
CVE-2008-5352
2008-12-0500:00:00
ubuntu.com
ubuntu.com
7
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.948
Percentile
99.3%
Integer overflow in the JAR unpacking utility (unpack200) in the unpack
library (unpack.dll) in Java Runtime Environment (JRE) for Sun JDK and JRE
6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows
untrusted applications and applets to gain privileges via a Pack200
compressed JAR file that triggers a heap-based buffer overflow.
Notes
| Author | Note |
|---|---|
| kees | http://sunsolve.sun.com/search/document.do?assetkey=1-26-244992-1 6755943 |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | openjdk-6 | < 6b11-2ubuntu2.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | openjdk-6 | < 6b12-0ubuntu6.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | sun-java5 | < 1.5.0-22-0ubuntu0.8.04 | UNKNOWN |
| ubuntu | 8.10 | noarch | sun-java5 | < 1.5.0-19-0ubuntu0.8.10 | UNKNOWN |
| ubuntu | 9.04 | noarch | sun-java5 | < 1.5.0-19-0ubuntu0.9.04 | UNKNOWN |
| ubuntu | 8.04 | noarch | sun-java6 | < 6-17-0ubuntu1.8.04 | UNKNOWN |
| ubuntu | 8.10 | noarch | sun-java6 | < 6-14-0ubuntu1.8.10 | UNKNOWN |
| ubuntu | 9.04 | noarch | sun-java6 | < 6-16-0ubuntu1.9.04 | UNKNOWN |
| ubuntu | 9.10 | noarch | sun-java6 | < 6-15-1 | UNKNOWN |
Related
prion
prion
Integer overflow
2008-12-05 11:30:00
nvd
nvd
CVE-2008-5352
2008-12-05 11:30:00
cvelist
cvelist
CVE-2008-5352
2008-12-05 11:00:00
cve
cve
CVE-2008-5352
2008-12-05 11:30:00
checkpoint_advisories
checkpoint_advisories
ubuntu
ubuntu
openjdk-6 vulnerabilities
2009-01-27 00:00:00
openvas
openvas
Ubuntu USN-713-1 (openjdk-6)
2009-02-02 00:00:00
Ubuntu: Security Advisory (USN-713-1)
2009-02-02 00:00:00
RedHat Security Advisory RHSA-2009:0015
2009-01-20 00:00:00
nessus
nessus
Ubuntu 8.10 : OpenJDK vulnerabilities (USN-713-1)
2009-04-23 00:00:00
RHEL 4 / 5 : java-1.6.0-ibm (RHSA-2009:0015)
2009-08-24 00:00:00
Fedora 9 : java-1.6.0-openjdk-1.6.0.0-0.20.b09.fc9 (2008-10860)
2008-12-08 00:00:00
securityvulns
securityvulns
[USN-713-1] openjdk-6 vulnerabilities
2009-01-31 00:00:00
Sun Java JRE / JDK / Web Start multiple security vulnerabilities
2009-04-23 00:00:00
redhat
redhat
(RHSA-2009:0015) Critical: java-1.6.0-ibm security update
2009-01-13 00:00:00
(RHSA-2009:0466) Low: java-1.5.0-ibm security update
2009-05-07 00:00:00
(RHSA-2008:1025) Critical: java-1.5.0-sun security update
2008-12-04 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: java-1.6.0-openjdk-1.6.0.0-0.20.b09.fc9
2008-12-07 04:27:51
[SECURITY] Fedora 10 Update: java-1.6.0-openjdk-1.6.0.0-7.b12.fc10
2008-12-07 04:33:22
suse
suse
local privilege escalation in IBMJava5-JRE,java-1_5_0-ibm
2009-01-29 14:08:00
remote code execution in Sun Java
2009-01-09 15:49:38
seebug
seebug
Sun Java JDK/JRE安全更新修复多个漏洞
2008-12-09 00:00:00
vmware
vmware
oracle
oracle
cpuapr2009.html
2009-04-14 00:00:00
gentoo
gentoo
Sun JDK/JRE: Multiple vulnerabilities
2009-11-17 00:00:00
ibm
ibm
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.948
Percentile
99.3%
Related for UB:CVE-2008-5352