NA
CVSSv3

CVE-2008-3107

CVSSv4: NA | CVSSv3: NA | CVSSv2: 10 | VMScore: 1000 | EPSS: 0.01265 | KEV: Not Included
Published: 09/07/2008 Updated: 21/11/2024

Vulnerability Summary

Unspecified vulnerability in the Virtual Machine in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x prior to 1.4.2_18 allows context-dependent malicious users to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Vulnerable Product Search on Vulmon Subscribe to Product

sun jdk

sun jdk 5.0

sun jdk 6

sun jre

sun jre 1.4.2

sun jre 1.4.2 01

sun jre 1.4.2 02

sun jre 1.4.2 03

sun jre 1.4.2 3

sun jre 1.4.2 04

sun jre 1.4.2 05

sun jre 1.4.2 06

sun jre 1.4.2 07

sun jre 1.4.2 8

sun jre 1.4.2 9

sun jre 1.4.2 10

sun jre 1.4.2 11

sun jre 1.4.2 12

sun jre 1.4.2 13

sun jre 1.4.2 14

sun jre 1.4.2 15

sun jre 1.4.2 16

sun jre 5.0

sun jre 6

sun sdk

sun sdk 1.4.2 02

sun sdk 1.4.2 03

sun sdk 1.4.2 04

sun sdk 1.4.2 05

sun sdk 1.4.2 06

sun sdk 1.4.2 07

sun sdk 1.4.2 08

sun sdk 1.4.2 09

sun sdk 1.4.2 10

sun sdk 1.4.2 11

sun sdk 1.4.2 12

sun sdk 1.4.2 13

sun sdk 1.4.2 14

sun sdk 1.4.2 15

sun sdk 1.4.2 16

References

CWE-264NVD-CWE-noinfohttps://nvd.nist.govhttps://www.first.org/epsshttp://lists.apple.com/archives/security-announce//2008/Sep/msg00008.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.htmlhttp://marc.info/?l=bugtraq&m=122331139823057&w=2http://secunia.com/advisories/31010http://secunia.com/advisories/31055http://secunia.com/advisories/31497http://secunia.com/advisories/31600http://secunia.com/advisories/32018http://secunia.com/advisories/32179http://secunia.com/advisories/32180http://secunia.com/advisories/37386http://security.gentoo.org/glsa/glsa-200911-02.xmlhttp://sunsolve.sun.com/search/document.do?assetkey=1-66-238967-1http://support.apple.com/kb/HT3178http://support.apple.com/kb/HT3179http://www.redhat.com/support/errata/RHSA-2008-0594.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0595.htmlhttp://www.securityfocus.com/archive/1/497041/100/0/threadedhttp://www.securityfocus.com/bid/30141http://www.securitytracker.com/id?1020455http://www.us-cert.gov/cas/techalerts/TA08-193A.htmlhttp://www.vmware.com/security/advisories/VMSA-2008-0016.htmlhttp://www.vupen.com/english/advisories/2008/2056/referenceshttp://www.vupen.com/english/advisories/2008/2740https://exchange.xforce.ibmcloud.com/vulnerabilities/43659https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10219http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.htmlhttp://marc.info/?l=bugtraq&m=122331139823057&w=2http://secunia.com/advisories/31010http://secunia.com/advisories/31055http://secunia.com/advisories/31497http://secunia.com/advisories/31600http://secunia.com/advisories/32018http://secunia.com/advisories/32179http://secunia.com/advisories/32180http://secunia.com/advisories/37386http://security.gentoo.org/glsa/glsa-200911-02.xmlhttp://sunsolve.sun.com/search/document.do?assetkey=1-66-238967-1http://support.apple.com/kb/HT3178http://support.apple.com/kb/HT3179http://www.redhat.com/support/errata/RHSA-2008-0594.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0595.htmlhttp://www.securityfocus.com/archive/1/497041/100/0/threadedhttp://www.securityfocus.com/bid/30141http://www.securitytracker.com/id?1020455http://www.us-cert.gov/cas/techalerts/TA08-193A.htmlhttp://www.vmware.com/security/advisories/VMSA-2008-0016.htmlhttp://www.vupen.com/english/advisories/2008/2056/referenceshttp://www.vupen.com/english/advisories/2008/2740https://exchange.xforce.ibmcloud.com/vulnerabilities/43659https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10219