Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-3906

Published: 30/11/2005 Updated: 30/10/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Sun

Vulnerability Summary

Multiple unspecified vulnerabilities in reflection APIs in Java SDK and JRE 1.4.2_08 and previous versions and JDK and JRE 5.0 Update 3 and previous versions allow remote malicious users to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors, a different set of vulnerabilities than CVE-2005-3905. NOTE: this is associated with the "second and third issues" identified in SUNALERT:102003.

Vulnerable Product Search on Vulmon Subscribe to Product

sun jdk 1.3.1_01

sun jdk 1.3.1_03

sun jdk 1.3.1_04

sun jdk 1.3.1_07

sun jdk 1.3.1_10

sun jdk 1.3.1_12

sun jdk 1.3.1_13

sun jdk 1.3.1_15

sun jdk 1.3

sun jdk 1.4.0_03

sun jdk 1.4.1

sun jdk 1.4.1_01

sun jdk 1.4.1_03

sun jdk 1.4.2

sun jdk 1.4.2_03

sun jdk 1.4.2_04

sun jdk 1.4.2_08

sun jdk 1.4

sun jre 1.3.0

sun jre 1.3.1

sun jre 1.4.2_5

sun jre 1.4.2_6

sun jdk 1.3.0_02

sun jdk 1.3.1_02

sun jdk 1.3.1_06

sun jdk 1.3.1_08

sun jdk 1.3.1_09

sun jdk 1.3.1_11

sun jdk 1.3.1_14

sun jdk 1.4.0_01

sun jdk 1.4.0_02

sun jdk 1.4.0_4

sun jdk 1.4.1_02

sun jdk 1.4.2_01

sun jdk 1.4.2_02

sun jdk 1.4.2_05

sun jdk 1.5.0_03

sun jre 1.4.2

sun jre 1.4.2_1

sun jre 1.4.2_2

sun jre 1.5.0

sun jdk 1.3.0_05

sun jre 1.4.2_3

sun jre 1.4.2_4

sun jdk 1.3.1_01a

sun jdk 1.3.1_05

sun jdk 1.3_02

sun jdk 1.3_05

sun jre 1.4.1

sun jre 1.4.2_7

sun jre 1.4.2_8

References

NVD-CWE-noinfohttp://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102003-1http://www.securityfocus.com/bid/15615http://secunia.com/advisories/17748http://securitytracker.com/id?1015280http://www.kb.cert.org/vuls/id/974188http://www-1.ibm.com/support/docview.wss?uid=swg21225628http://secunia.com/advisories/18092http://secunia.com/advisories/17847http://www.gentoo.org/security/en/glsa/glsa-200601-10.xmlhttp://lists.apple.com/archives/security-announce/2005/Nov/msg00004.htmlhttp://secunia.com/advisories/18503http://secunia.com/advisories/18435http://www.vupen.com/english/advisories/2005/2636http://www.vupen.com/english/advisories/2005/2675http://www.vupen.com/english/advisories/2005/2946https://exchange.xforce.ibmcloud.com/vulnerabilities/23251https://nvd.nist.govhttps://www.kb.cert.org/vuls/id/974188
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook