Network Vulnerability in Java Web Start and Java Plug-in by Sun Microsystems
CVE-2008-5339

Currently unrated

Key Information:

Vendor: Oracle
Status: Jdk; Jre; Sdk
Vendor: CVE Published:; 5 December 2008

Summary

This vulnerability in Java Web Start and Java Plug-in versions from Sun Microsystems allows untrusted applications to establish network connections to unauthorized hosts. This occurs via unclear vectors, potentially leading to data exposure or other malicious activities. It affects multiple versions of the Java Development Kit (JDK) and Java Runtime Environment (JRE), emphasizing the importance of updating software to secure against unauthorized network access.

References

http://marc.info/?l=bugtraq&m=126583436323697&w=2

vendor-advisoryx_refsource_HP

http://lists.opensuse.org/opensuse-security-announce/2009...

vendor-advisoryx_refsource_SUSE

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Timeline

Vulnerability published
Dec 5, 2008
Vulnerability Reserved
Dec 4, 2008