Denial of Service Vulnerability in Sun Java Runtime Environment
CVE-2008-5348

Currently unrated

Key Information:

Vendor: Oracle
Status: Jdk; Jre; Sdk
Vendor: CVE Published:; 5 December 2008

Summary

This vulnerability affects the Java Runtime Environment utilized by Sun's JDK, enabling remote attackers to potentially disrupt service by consuming system resources. The issue arises specifically when the Kerberos authentication mechanism is employed, which may allow attackers to exploit unknown vectors, leading to a denial of service. Users and system administrators are advised to upgrade to the latest versions of the JRE and JDK to mitigate this risk.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

http://marc.info/?l=bugtraq&m=126583436323697&w=2

vendor-advisoryx_refsource_HP

http://lists.opensuse.org/opensuse-security-announce/2009...

vendor-advisoryx_refsource_SUSE

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 5, 2008
Vulnerability Reserved
Dec 4, 2008