返回 CVE 浏览器

CVE-2008-0657

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0760%

EPSS Percentile25.53th

Published2008年2月7日

Last Modified2026年4月23日

Vulnerability Description

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Affected Platforms (CPE)

📦

Sun

Jre

<= 1.5.0

📦

Sun

Jre

<= 1.6.0

📦

Sun

Jdk

<= 5.0_update13

References & Advisories

🔗 http://dev2dev.bea.com/pub/advisory/277

🔗 http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html

🔗 http://secunia.com/advisories/28795

🔗 http://secunia.com/advisories/28888

🔗 http://secunia.com/advisories/29214

🔗 http://secunia.com/advisories/29498

🔗 http://secunia.com/advisories/29841

🔗 http://secunia.com/advisories/29858

相关漏洞威胁

CVE-2012-508610.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 3...

CVE-2013-243110.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6...

CVE-2004-276410.0

Sun SDK and Java Runtime Environment (JRE) 1.4.2 through 1.4.2_04, 1.4.1 through 1.4.1_07, and 1.4.0 through 1.4.0_04 allows untru...

CVE-2013-243210.0

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 a...

CVE-2008-0657 Detail & Impact Analysis | CVSS 10.0 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space