CVE-2007-3922

Published: Jul 21, 2007Modified: Apr 23, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to certain localhost services running on the machine that loaded the applet.

Affected (5)

Products: Sun: Jdk, Jre, Sdk

3 products

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Sun Jdk	Up to 1.6.0
Sun Jdk	Up to 1.5.0
Sun Jre	Up to 1.5.0
Sun Jre	Up to 1.6.0
Sun Sdk	Up to 1.4.2_14

References (58)

http://dev2dev.bea.com/pub/advisory/248

Source: cve@mitre.org

http://docs.info.apple.com/article.html?artnum=307177

Source: cve@mitre.org

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01269450

Source: cve@mitre.org

http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

Source: cve@mitre.org

http://secunia.com/advisories/26314

Source: cve@mitre.org

http://secunia.com/advisories/26369

Source: cve@mitre.org

http://secunia.com/advisories/26631

Source: cve@mitre.org

http://secunia.com/advisories/26645

Source: cve@mitre.org

http://secunia.com/advisories/26933

Source: cve@mitre.org

http://secunia.com/advisories/27266

Source: cve@mitre.org

http://secunia.com/advisories/27635

Source: cve@mitre.org

http://secunia.com/advisories/28115

Source: cve@mitre.org

http://secunia.com/advisories/30805

Source: cve@mitre.org

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.486841

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1

Source: cve@mitre.org

http://support.avaya.com/elmodocs2/security/ASA-2007-322.htm

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200709-15.xml

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2007_56_ibmjava.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2007-0818.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2007-0829.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2008-0133.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/25054

Source: cve@mitre.org

http://www.securitytracker.com/id?1018428

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2573

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/3009

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/3861

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/4224

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35491

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10387

Source: cve@mitre.org

http://dev2dev.bea.com/pub/advisory/248

Source: af854a3a-2127-422b-91ae-364da2661108

http://docs.info.apple.com/article.html?artnum=307177

Source: af854a3a-2127-422b-91ae-364da2661108

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01269450

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26314

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26369

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26631

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26645

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26933

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/27266

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/27635

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/28115

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/30805

Source: af854a3a-2127-422b-91ae-364da2661108

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.486841

Source: af854a3a-2127-422b-91ae-364da2661108

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://support.avaya.com/elmodocs2/security/ASA-2007-322.htm

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.gentoo.org/security/en/glsa/glsa-200709-15.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2007_56_ibmjava.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2007-0818.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2007-0829.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2008-0133.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/25054

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018428

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/2573

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/3009

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/3861

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/4224

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/35491

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10387

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.