Denial of Service Vulnerability in Java Plug-in by Sun Microsystems
CVE-2005-4845

Currently unrated

Key Information:

Vendor: Oracle
Status: Java Plug-in
Vendor: CVE Published:; 31 December 2005

What is CVE-2005-4845?

The Java Plug-in versions 1.4.2_03 and 1.4.2_04 contain a vulnerability that allows remote attackers to exploit the control's CLSID by creating a COM object not intended for Internet Explorer usage. This exploit potentially leads to a denial of service, causing Internet Explorer instances to crash. Users of these versions are advised to assess their security posture and consider updates to mitigate potential risks.

References

http://www.securityfocus.com/archive/1/391803

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2005

Oracle

What is CVE-2005-4845?

References

Timeline