CyberSec.Space Logo
Back to CVE Browser

CVE-2008-0657

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0760%
EPSS Percentile25.53th
PublishedFeb 7, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Affected Platforms (CPE)

πŸ“¦
Sun

Jre

<= 1.5.0
πŸ“¦
Sun

Jre

<= 1.6.0
πŸ“¦
Sun

Jdk

<= 5.0_update13

References & Advisories

πŸ”— http://dev2dev.bea.com/pub/advisory/277
πŸ”— http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html
πŸ”— http://secunia.com/advisories/28795
πŸ”— http://secunia.com/advisories/28888
πŸ”— http://secunia.com/advisories/29214
πŸ”— http://secunia.com/advisories/29498
πŸ”— http://secunia.com/advisories/29841
πŸ”— http://secunia.com/advisories/29858

Related Vulnerabilities

CVE-2012-508610.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 3...

CVE-2013-243110.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6...

CVE-2004-276410.0

Sun SDK and Java Runtime Environment (JRE) 1.4.2 through 1.4.2_04, 1.4.1 through 1.4.1_07, and 1.4.0 through 1.4.0_04 allows untru...

CVE-2013-243210.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 a...