CVE-2008-0657

Published: Feb 7, 2008Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Affected (3)

Products: Sun: Jre, Jdk

2 products

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sun Jre	Up to 1.5.0

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Sun Jdk	Up to 5.0_update13
Sun Jre	Up to 1.6.0

Related CWEs

References (52)

http://dev2dev.bea.com/pub/advisory/277

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html

Source: cve@mitre.org

http://secunia.com/advisories/28795

Source: cve@mitre.org

PatchVendor Advisory

http://secunia.com/advisories/28888

Source: cve@mitre.org

http://secunia.com/advisories/29214

Source: cve@mitre.org

http://secunia.com/advisories/29498

Source: cve@mitre.org

http://secunia.com/advisories/29841

Source: cve@mitre.org

http://secunia.com/advisories/29858

Source: cve@mitre.org

http://secunia.com/advisories/29897

Source: cve@mitre.org

http://secunia.com/advisories/30676

Source: cve@mitre.org

http://secunia.com/advisories/30780

Source: cve@mitre.org

http://secunia.com/advisories/31497

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200804-28.xml

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-231261-1

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2008-0123.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2008-0156.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2008-0210.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/27650

Source: cve@mitre.org

http://www.securitytracker.com/id?1019308

Source: cve@mitre.org

http://www.vmware.com/security/advisories/VMSA-2008-0010.html

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/0429

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/1252

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/1856/references

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11505

Source: cve@mitre.org

http://dev2dev.bea.com/pub/advisory/277

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/28795

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/28888

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29214

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29498

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29841

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29858

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29897

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/30676

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/30780

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/31497

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200804-28.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://sunsolve.sun.com/search/document.do?assetkey=1-26-231261-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2008-0123.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2008-0156.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2008-0210.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/27650

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1019308

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vmware.com/security/advisories/VMSA-2008-0010.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/0429

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/1252

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/1856/references

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11505

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.