CVE-2007-0243

Loading...

General

Score:6.8/10.0
Severity:Medium
Category:Buffer Error
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Relative vulnerabilities

CVE-2004-0687, CVE-2004-0688, CVE-2004-0885, CVE-2004-0914, CVE-2005-0605, CVE-2005-2090, CVE-2005-3510, CVE-2005-3964, CVE-2005-4838, CVE-2006-0254, CVE-2006-0898, CVE-2006-1329, CVE-2006-3835, CVE-2006-4339, CVE-2006-5752, CVE-2006-6731, CVE-2006-6736, CVE-2006-6745, CVE-2006-7195, CVE-2006-7196, CVE-2006-7197, CVE-2007-0450, CVE-2007-1349, CVE-2007-1355, CVE-2007-1358, CVE-2007-1860, CVE-2007-2435, CVE-2007-2449, CVE-2007-2450, CVE-2007-2788, CVE-2007-2789, CVE-2007-3004, CVE-2007-3005, CVE-2007-3304, CVE-2007-3382, CVE-2007-3385, CVE-2007-3503, CVE-2007-3504, CVE-2007-3655, CVE-2007-3698, CVE-2007-3922, CVE-2007-4381, CVE-2007-4465, CVE-2007-5000, CVE-2007-5232, CVE-2007-5461, CVE-2007-5862, CVE-2007-5961, CVE-2007-6306, CVE-2007-6388, CVE-2008-0128

Published on 17/01/07 - Updated on 30/10/18

Description

Buffer overflow in Sun JDK and Java Runtime Environment (JRE) 5.0 Update 9 and earlier, SDK and JRE 1.4.2_12 and earlier, and SDK and JRE 1.3.1_18 and earlier allows applets to gain privileges via a GIF image with a block with a 0 width field, which triggers memory corruption.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2007-0243
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2007-AVI-033, CERTA-2007-AVI-121, CERTA-2007-AVI-546
Redhat RHSA-2008:0261, RHSA-2008:0524
Renater 2007/VULN521

Exploits

Exploit-DBEDB-3168
SecurityFocusBID-22085

Relative technologies

VendorProduct
sunjdk
sunjre
sunsdk

Share this vulnerability with:

Twitter Facebook LinkedIn Mail