Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.4
CVSSv2

CVE-2007-5236

Published: 06/10/2007 Updated: 30/10/2018
CVSS v2 Base Score: 5.4 | Impact Score: 6.9 | Exploitability Score: 4.9
VMScore: 481
Vector: AV:N/AC:H/Au:N/C:C/I:N/A:N
Subscribe to Jdk

Vulnerability Summary

Java Web Start in Sun JDK and JRE 5.0 Update 12 and previous versions, and SDK and JRE 1.4.2_15 and previous versions, on Windows does not properly enforce access restrictions for untrusted applications, which allows user-assisted remote malicious users to read local files via an untrusted application.

Vulnerable Product Search on Vulmon Subscribe to Product

sun jdk 1.5.0

sun jre 1.4.2_1

sun jre 1.4.2_10

sun jre 1.4.2_21

sun jre 1.4.2_3

sun jre 1.5.0

sun sdk 1.4.2_12

sun sdk 1.4.2_13

sun jre 1.4.2_11

sun jre 1.4.2_12

sun jre 1.4.2_4

sun jre 1.4.2_5

sun sdk 1.4.2_03

sun sdk 1.4.2_14

sun sdk 1.4.2_15

sun jre 1.4.2

sun jre 1.4.2_15

sun jre 1.4.2_2

sun jre 1.4.2_8

sun jre 1.4.2_9

sun sdk 1.4.2_10

sun sdk 1.4.2_11

sun jre 1.4.2_13

sun jre 1.4.2_14

sun jre 1.4.2_6

sun jre 1.4.2_7

sun sdk 1.4.2_08

sun sdk 1.4.2_09

References

CWE-264http://sunsolve.sun.com/search/document.do?assetkey=1-26-103073-1http://support.novell.com/techcenter/psdb/0c36b6416afc3868b8b1b9012955e323.htmlhttp://www.novell.com/linux/security/advisories/2007_55_java.htmlhttp://www.securityfocus.com/bid/25920http://secunia.com/advisories/27261http://secunia.com/advisories/27716http://secunia.com/advisories/27693http://secunia.com/advisories/28777http://dev2dev.bea.com/pub/advisory/272http://secunia.com/advisories/29042http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.htmlhttp://secunia.com/advisories/29897http://www.vmware.com/security/advisories/VMSA-2008-0010.htmlhttp://secunia.com/advisories/30676http://www.vupen.com/english/advisories/2008/1856/referenceshttp://www.vupen.com/english/advisories/2008/0609http://www.vupen.com/english/advisories/2007/3895http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01234533https://exchange.xforce.ibmcloud.com/vulnerabilities/36946https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6115https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377CVE-2024-20859CVE-2023-49606injectarbitrary CVE-2024-33788CVE-2024-30973IDORCVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook