Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.apple.com/archives/security-announce//2008/Sep/msg00007.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.html - | |
References | () http://marc.info/?l=bugtraq&m=122331139823057&w=2 - | |
References | () http://secunia.com/advisories/31010 - Vendor Advisory | |
References | () http://secunia.com/advisories/31600 - | |
References | () http://secunia.com/advisories/32018 - | |
References | () http://secunia.com/advisories/32179 - | |
References | () http://secunia.com/advisories/32180 - | |
References | () http://secunia.com/advisories/32436 - | |
References | () http://secunia.com/advisories/33238 - | |
References | () http://secunia.com/advisories/37386 - | |
References | () http://security.gentoo.org/glsa/glsa-200911-02.xml - | |
References | () http://sunsolve.sun.com/search/document.do?assetkey=1-66-238687-1 - Patch | |
References | () http://support.apple.com/kb/HT3179 - | |
References | () http://support.avaya.com/elmodocs2/security/ASA-2008-428.htm - | |
References | () http://support.avaya.com/elmodocs2/security/ASA-2008-509.htm - | |
References | () http://www.redhat.com/support/errata/RHSA-2008-0594.html - | |
References | () http://www.redhat.com/support/errata/RHSA-2008-0906.html - | |
References | () http://www.redhat.com/support/errata/RHSA-2008-1045.html - | |
References | () http://www.securityfocus.com/archive/1/497041/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/30144 - | |
References | () http://www.securitytracker.com/id?1020456 - | |
References | () http://www.us-cert.gov/cas/techalerts/TA08-193A.html - US Government Resource | |
References | () http://www.vmware.com/security/advisories/VMSA-2008-0016.html - | |
References | () http://www.vupen.com/english/advisories/2008/2056/references - | |
References | () http://www.vupen.com/english/advisories/2008/2740 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/43660 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8540 - |
Information
Published : 2008-07-09 23:41
Updated : 2024-11-21 00:48
NVD link : CVE-2008-3109
Mitre link : CVE-2008-3109
CVE.ORG link : CVE-2008-3109
JSON object : View
Products Affected
sun
- jre
- jdk
CWE
CWE-264
Permissions, Privileges, and Access Controls