CVE-2005-3907

Published: Nov 30, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in Java Runtime Environment in Java JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors involving untrusted Java applets.

Affected (29)

Products: Sun: Jdk, Jre

2 products

Configuration A

29 vulnerable

Vulnerable Software	Affected Versions
Sun Jdk	Version 1.5.0_03
Sun Jdk	Version 1.5.0_03
Sun Jdk	Version 1.5.0_03
Sun Jre	Version 1.3.0
Sun Jre	Version 1.3.0 update1
Sun Jre	Version 1.3.0 update2
Sun Jre	Version 1.3.0 update3
Sun Jre	Version 1.3.0 update4
Sun Jre	Version 1.3.0 update5
Sun Jre	Version 1.3.1
Sun Jre	Version 1.3.1 update15
Sun Jre	Version 1.3.1 update1
Sun Jre	Version 1.3.1 update1a
Sun Jre	Version 1.3.1 update4
Sun Jre	Version 1.3.1 update8
Sun Jre	Version 1.4.1
Sun Jre	Version 1.4.2
Sun Jre	Version 1.4.2_1
Sun Jre	Version 1.4.2_2
Sun Jre	Version 1.4.2_3
Sun Jre	Version 1.4.2_4
Sun Jre	Version 1.4.2_5
Sun Jre	Version 1.4.2_6
Sun Jre	Version 1.4.2_7
Sun Jre	Version 1.4.2_8
Sun Jre	Version 1.5.0
Sun Jre	Version 1.5.0 update1
Sun Jre	Version 1.5.0 update2
Sun Jre	Version 1.5.0 update3

References (22)

http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html

Source: cve@mitre.org

http://secunia.com/advisories/17748

Source: cve@mitre.org

PatchVendor Advisory

http://secunia.com/advisories/17847

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/18092

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1015282

Source: cve@mitre.org

http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102050-1

Source: cve@mitre.org

PatchVendor Advisory

http://www.kb.cert.org/vuls/id/355284

Source: cve@mitre.org

US Government Resource

http://www.securityfocus.com/bid/15615

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2005/2636

Source: cve@mitre.org

Vendor Advisory

http://www.vupen.com/english/advisories/2005/2675

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/23250

Source: cve@mitre.org

http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/17748

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/17847

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/18092

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1015282

Source: af854a3a-2127-422b-91ae-364da2661108

http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102050-1

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.kb.cert.org/vuls/id/355284

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.securityfocus.com/bid/15615

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2005/2636

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2005/2675

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/23250

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.