CVE-2008-3111

Published: Jul 9, 2008Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Multiple buffer overflows in Sun Java Web Start in JDK and JRE 6 before Update 4, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allow context-dependent attackers to gain privileges via an untrusted application, as demonstrated by (a) an application that grants itself privileges to (1) read local files, (2) write to local files, or (3) execute local programs; and as demonstrated by (b) a long value associated with a java-vm-args attribute in a j2se tag in a JNLP file, which triggers a stack-based buffer overflow in the GetVMArgsOption function; aka CR 6557220.

Affected (73)

Products: Sun: Jdk, Jre, Sdk

3 products

Configuration A

73 vulnerable

Vulnerable Software	Affected Versions
Sun Jdk	Version 5.0 update_10
Sun Jdk	Version 5.0 update_11
Sun Jdk	Version 5.0 update_12
Sun Jdk	Version 5.0 update_13
Sun Jdk	Version 5.0 update_14
Sun Jdk	Version 5.0 update_15
Sun Jdk	Version 5.0 update_1
Sun Jdk	Version 5.0 update_2
Sun Jdk	Version 5.0 update_3
Sun Jdk	Version 5.0 update_4
Sun Jdk	Version 5.0 update_5
Sun Jdk	Version 5.0 update_6
Sun Jdk	Version 5.0 update_7
Sun Jdk	Version 5.0 update_8
Sun Jdk	Version 5.0 update_9
Sun Jdk	Version 6 update_1
Sun Jdk	Version 6 update_2
Sun Jdk	Version 6 update_3
Sun Jre	Version 1.4.2_01
Sun Jre	Version 1.4.2_02
Sun Jre	Version 1.4.2_03
Sun Jre	Version 1.4.2_04
Sun Jre	Version 1.4.2_05
Sun Jre	Version 1.4.2_06
Sun Jre	Version 1.4.2_07
Sun Jre	Version 1.4.2_10
Sun Jre	Version 1.4.2_11
Sun Jre	Version 1.4.2_12
Sun Jre	Version 1.4.2_13
Sun Jre	Version 1.4.2_14
Sun Jre	Version 1.4.2_15
Sun Jre	Version 1.4.2_16
Sun Jre	Version 1.4.2_17
Sun Jre	Version 1.4.2_8
Sun Jre	Version 1.4.2_9
Sun Jre	Version 1.4
Sun Jre	Version 5.0 update_10
Sun Jre	Version 5.0 update_11
Sun Jre	Version 5.0 update_12
Sun Jre	Version 5.0 update_13
Sun Jre	Version 5.0 update_14
Sun Jre	Version 5.0 update_15
Sun Jre	Version 5.0 update_1
Sun Jre	Version 5.0 update_2
Sun Jre	Version 5.0 update_3
Sun Jre	Version 5.0 update_4
Sun Jre	Version 5.0 update_5
Sun Jre	Version 5.0 update_6
Sun Jre	Version 5.0 update_7
Sun Jre	Version 5.0 update_8
Sun Jre	Version 5.0 update_9
Sun Jre	Version 6 update_1
Sun Jre	Version 6 update_2
Sun Jre	Version 6 update_3
Sun Sdk	Version 1.4.2
Sun Sdk	Version 1.4.2_01
Sun Sdk	Version 1.4.2_02
Sun Sdk	Version 1.4.2_03
Sun Sdk	Version 1.4.2_04
Sun Sdk	Version 1.4.2_05
Sun Sdk	Version 1.4.2_06
Sun Sdk	Version 1.4.2_07
Sun Sdk	Version 1.4.2_08
Sun Sdk	Version 1.4.2_09
Sun Sdk	Version 1.4.2_10
Sun Sdk	Version 1.4.2_11
Sun Sdk	Version 1.4.2_12
Sun Sdk	Version 1.4.2_13
Sun Sdk	Version 1.4.2_14
Sun Sdk	Version 1.4.2_15
Sun Sdk	Version 1.4.2_16
Sun Sdk	Version 1.4.2_17
Sun Sdk	Version 1.4

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (64)

http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00000.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00002.html

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=122331139823057&w=2

Source: cve@mitre.org

http://secunia.com/advisories/31010

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/31055

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/31320

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/31497

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/31600

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/31736

Source: cve@mitre.org

http://secunia.com/advisories/32018

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/32179

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/32180

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/37386

Source: cve@mitre.org

Vendor Advisory

http://security.gentoo.org/glsa/glsa-200911-02.xml

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-66-238905-1

Source: cve@mitre.org

Patch

http://support.apple.com/kb/HT3178

Source: cve@mitre.org

http://support.apple.com/kb/HT3179

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2008-0595.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2008-0790.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/494505/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/497041/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/30148

Source: cve@mitre.org

http://www.securitytracker.com/id?1020452

Source: cve@mitre.org

http://www.us-cert.gov/cas/techalerts/TA08-193A.html

Source: cve@mitre.org

US Government Resource

http://www.vmware.com/security/advisories/VMSA-2008-0016.html

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/2056/references

Source: cve@mitre.org

Vendor Advisory

http://www.vupen.com/english/advisories/2008/2740

Source: cve@mitre.org

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-08-043/

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/43664

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10541

Source: cve@mitre.org

http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.html