Unspecified Vulnerability in Java Runtime Environment by Sun
CVE-2008-5350

Currently unrated

Key Information:

Vendor: Oracle
Status: Jdk; Jre; Sdk
Vendor: CVE Published:; 5 December 2008

Summary

This vulnerability exists within the Java Runtime Environment (JRE), specifically affecting Sun JDK and JRE versions 6 Update 10 and earlier, JDK and JRE 5.0 Update 16 and earlier, as well as SDK and JRE 1.4.2_18 and earlier. It allows untrusted applications and applets to potentially exploit unknown vectors to list the contents of a user's operating directory, leading to unauthorized access to sensitive information on the user's system.

References

http://marc.info/?l=bugtraq&m=126583436323697&w=2

vendor-advisoryx_refsource_HP

http://lists.opensuse.org/opensuse-security-announce/2009...

vendor-advisoryx_refsource_SUSE

http://secunia.com/advisories/34259

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Dec 5, 2008
Vulnerability Reserved
Dec 4, 2008