Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 06/10/2007 Updated: 30/10/2018

CVSS v2 Base Score: 4 | Impact Score: 4.9 | Exploitability Score: 4.9

VMScore: 356

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N

Java Web Start in Sun JDK and JRE 6 Update 2 and previous versions, JDK and JRE 5.0 Update 12 and previous versions, SDK and JRE 1.4.2_15 and previous versions, and SDK and JRE 1.3.1_20 and previous versions does not properly enforce access restrictions for untrusted (1) applications and (2) applets, which allows user-assisted remote malicious users to copy or rename arbitrary files when local users perform drag-and-drop operations from the untrusted application or applet window onto certain types of desktop applications.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun jdk 1.5.0
sun jdk 1.6.0
sun jre 1.3.0
sun jre 1.3.1
sun jre 1.4
sun jre 1.4.2_14
sun jre 1.4.2_15
sun jre 1.5.0
sun jre 1.4.2_1
sun jre 1.4.2_10
sun jre 1.4.2_9
sun sdk 1.3.1_01a
sun sdk 1.3.1_16
sun jre 1.6.0
sun sdk 1.4.2
sun sdk 1.4.2_03
sun sdk 1.4.2_14
sun sdk 1.4.2_15
sun sdk 1.3.1_18
sun sdk 1.4.2_10
sun sdk 1.4.2_11
sun jre 1.4.2_11
sun jre 1.4.2_12
sun jre 1.4.2_13
sun sdk 1.3.1_19
sun sdk 1.3.1_20
sun sdk 1.4.2_12
sun sdk 1.4.2_13
sun jre 1.4.1
sun jre 1.4.2
sun jre 1.4.2_3
sun jre 1.4.2_8
sun sdk 1.3.1_01
sun sdk 1.4.2_08
sun sdk 1.4.2_09

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-5239

Vulnerability Summary

References

Vulmon Search

About

Products

Connect