CVE-2008-0657

Severity

99%

Complexity

99%

Confidentiality

165%

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 17 years ago

2008-02-07 21:00:00

Last updated 7 years ago

2017-09-29 01:30:00

Affected Software

Sun JDK

References

BEA08-201.00

SUSE-SA:2008:025

28795

Patch, Vendor Advisory

28888

29214

29498

29841

29858

29897

30676

30780

31497

GLSA-200804-28

231261

GLSA-200804-20

GLSA-200806-11

RHSA-2008:0123

RHSA-2008:0156

RHSA-2008:0210

27650

1019308

http://www.vmware.com/security/advisories/VMSA-2008-0010.html

ADV-2008-0429

ADV-2008-1252

ADV-2008-1856

oval:org.mitre.oval:def:11505

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.