CVE - CVE-2008-1195

CVE-ID
CVE-2008-1195	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Unspecified vulnerability in Sun JDK and Java Runtime Environment (JRE) 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.2_16 and earlier; allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java APIs.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
APPLE:APPLE-SA-2008-09-24 URL:http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.html BUGTRAQ:20080327 rPSA-2008-0128-1 firefox URL:http://www.securityfocus.com/archive/1/490196/100/0/threaded CERT:TA08-066A URL:http://www.us-cert.gov/cas/techalerts/TA08-066A.html CERT:TA08-087A URL:http://www.us-cert.gov/cas/techalerts/TA08-087A.html CONFIRM:http://support.apple.com/kb/HT3178 CONFIRM:http://support.apple.com/kb/HT3179 CONFIRM:http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0128 CONFIRM:http://www.mozilla.org/security/announce/2008/mfsa2008-18.html CONFIRM:http://www.vmware.com/security/advisories/VMSA-2008-0010.html GENTOO:GLSA-200804-20 URL:http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml GENTOO:GLSA-200804-28 URL:http://security.gentoo.org/glsa/glsa-200804-28.xml GENTOO:GLSA-200806-11 URL:http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml MANDRIVA:MDVSA-2008:080 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:080~~ (Obsolete source) OVAL:oval:org.mitre.oval:def:9486 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9486 REDHAT:RHSA-2008:0186 URL:http://www.redhat.com/support/errata/RHSA-2008-0186.html REDHAT:RHSA-2008:0210 URL:http://www.redhat.com/support/errata/RHSA-2008-0210.html REDHAT:RHSA-2008:0267 URL:http://www.redhat.com/support/errata/RHSA-2008-0267.html SECTRACK:1019553 URL:http://www.securitytracker.com/id?1019553 SECUNIA:29239 URL:http://secunia.com/advisories/29239 SECUNIA:29273 URL:http://secunia.com/advisories/29273 SECUNIA:29498 URL:http://secunia.com/advisories/29498 SECUNIA:29526 URL:http://secunia.com/advisories/29526 SECUNIA:29541 URL:http://secunia.com/advisories/29541 SECUNIA:29547 URL:http://secunia.com/advisories/29547 SECUNIA:29560 URL:http://secunia.com/advisories/29560 SECUNIA:29582 URL:http://secunia.com/advisories/29582 SECUNIA:29645 URL:http://secunia.com/advisories/29645 SECUNIA:29858 URL:http://secunia.com/advisories/29858 SECUNIA:29897 URL:http://secunia.com/advisories/29897 SECUNIA:30620 URL:http://secunia.com/advisories/30620 SECUNIA:30676 URL:http://secunia.com/advisories/30676 SECUNIA:30780 URL:http://secunia.com/advisories/30780 SECUNIA:31497 URL:http://secunia.com/advisories/31497 SECUNIA:32018 URL:http://secunia.com/advisories/32018 SUNALERT:233326 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-233326-1~~ (Obsolete source) SUNALERT:238492 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1~~ (Obsolete source) SUSE:SUSE-SA:2008:018 URL:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00000.html SUSE:SUSE-SA:2008:019 URL:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00002.html SUSE:SUSE-SA:2008:025 URL:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html UBUNTU:USN-592-1 URL:http://www.ubuntu.com/usn/usn-592-1 VUPEN:ADV-2008-0770 URL:~~http://www.vupen.com/english/advisories/2008/0770/references~~ (Obsolete source) VUPEN:ADV-2008-0998 URL:~~http://www.vupen.com/english/advisories/2008/0998/references~~ (Obsolete source) VUPEN:ADV-2008-1793 URL:~~http://www.vupen.com/english/advisories/2008/1793/references~~ (Obsolete source) VUPEN:ADV-2008-1856 URL:~~http://www.vupen.com/english/advisories/2008/1856/references~~ (Obsolete source) XF:sun-jre-javascript-unauthorized-access(41030) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/41030
Assigning CNA
MITRE Corporation
Date Record Created
20080306	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080306)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)