Lucene search

MitreCVE-2008-1185

HistoryMar 06, 2008 - 9:44 p.m.

CVE-2008-1185

2008-03-0621:44:00

CWE-264

mitre

web.nvd.nist.gov

cve-2008-1185

sun java runtime environment

jdk

remote attackers

privileges

untrusted application

applet

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.7

Confidence

High

EPSS

0.01

Percentile

84.1%

JSON

Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment (JRE) and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.2_16 and earlier allows remote attackers to gain privileges via an untrusted application or applet, a different issue than CVE-2008-1186, aka “the first issue.”

Affected configurations

Nvd

Node

sunjdkMatch1.5.0

sunjdkMatch1.5.0update1

sunjdkMatch1.5.0update10

sunjdkMatch1.5.0update11

sunjdkMatch1.5.0update12

sunjdkMatch1.5.0update13

sunjdkMatch1.5.0update14

sunjdkMatch1.5.0update2

sunjdkMatch1.5.0update3

sunjdkMatch1.5.0update4

sunjdkMatch1.5.0update5

sunjdkMatch1.5.0update6

sunjdkMatch1.5.0update7

sunjdkMatch1.5.0update8

sunjdkMatch1.5.0update9

sunjdkMatch1.6.0

sunjdkMatch1.6.0update_3

sunjdkMatch1.6.0update_4

Node

sunjreMatch1.4.2

sunjreMatch1.4.2_1

sunjreMatch1.4.2_2

sunjreMatch1.4.2_3

sunjreMatch1.4.2_4

sunjreMatch1.4.2_5

sunjreMatch1.4.2_6

sunjreMatch1.4.2_7

sunjreMatch1.4.2_8

sunjreMatch1.4.2_9

sunjreMatch1.4.2_10

sunjreMatch1.4.2_11

sunjreMatch1.4.2_12

sunjreMatch1.4.2_13

sunjreMatch1.4.2_14

sunjreMatch1.4.2_15

sunjreMatch1.4.2_16

sunjreMatch1.5.0

sunjreMatch1.5.0update1

sunjreMatch1.5.0update10

sunjreMatch1.5.0update11

sunjreMatch1.5.0update12

sunjreMatch1.5.0update13

sunjreMatch1.5.0update14

sunjreMatch1.5.0update2

sunjreMatch1.5.0update3

sunjreMatch1.5.0update4

sunjreMatch1.5.0update5

sunjreMatch1.5.0update6

sunjreMatch1.5.0update7

sunjreMatch1.5.0update8

sunjreMatch1.5.0update9

sunjreMatch1.6.0

sunjreMatch1.6.0update_1

sunjreMatch1.6.0update_2

sunjreMatch1.6.0update_3

sunjreMatch1.6.0update_4

Node

sunsdkMatch1.4.2

sunsdkMatch1.4.2_1

sunsdkMatch1.4.2_2

sunsdkMatch1.4.2_3

sunsdkMatch1.4.2_4

sunsdkMatch1.4.2_5

sunsdkMatch1.4.2_6

sunsdkMatch1.4.2_7

sunsdkMatch1.4.2_8

sunsdkMatch1.4.2_9

sunsdkMatch1.4.2_10

sunsdkMatch1.4.2_11

sunsdkMatch1.4.2_12

sunsdkMatch1.4.2_13

sunsdkMatch1.4.2_14

sunsdkMatch1.4.2_15

sunsdkMatch1.4.2_16

VendorProductVersionCPE
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:*:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update11:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update12:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update13:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update14:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:::::::*
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update1::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update10::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update11::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update12::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update13::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update14::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update2::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update3::::::
sun	jdk	1.5.0	cpe:2.3:a:sun:jdk:1.5.0:update4::::::