Buffer Overflow in Sun Java Web Start ActiveX Control Affects Java Runtime Environment
CVE-2007-5019

Currently unrated

Key Information:

Vendor: Oracle
Status: Jre; Java Web Start; Sdk
Vendor: CVE Published:; 20 September 2007

What is CVE-2007-5019?

A buffer overflow vulnerability exists in the Sun Java Web Start ActiveX control within the Java Runtime Environment (JRE) 1.6.0_X. This vulnerability can be exploited by remote attackers who execute a crafted long argument to the dnsResolve (isInstalled.dnsResolve) method, potentially leading to unintended consequences in the system.

References

https://www.exploit-db.com/exploits/4432

exploitx_refsource_EXPLOIT-DB

https://exchange.xforce.ibmcloud.com/vulnerabilities/36682

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/25734

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 20, 2007
Vulnerability Reserved
Sep 20, 2007

Oracle

What is CVE-2007-5019?

References

Timeline