Vulnerability & Exploit Database

Displaying entries 1 - 10 of 33 in total

Results for: CVE-2008-5342 Back to search

Sun Patch: SunOS 5.10_x86: Oracle Java Web Console 3.1 Patch Vulnerability

  • Severity: 8
  • Published: February 06, 2012

Certain AJP protocol connector implementations in Apache Tomcat 7.0.0 through 7.0.20, 6.0.0 through 6.0.33, 5.5.0 through 5.5.33, and possibly other versions allow remote attackers to spoof AJP requests, bypass authentication, and obtain sensitive information by causing the connector to interpret a request body as a new request.

Sun Patch: SunOS 5.10: Oracle Java Web Console 3.1 Patch Vulnerability

  • Severity: 8
  • Published: February 06, 2012

Certain AJP protocol connector implementations in Apache Tomcat 7.0.0 through 7.0.20, 6.0.0 through 6.0.33, 5.5.0 through 5.5.33, and possibly other versions allow remote attackers to spoof AJP requests, bypass authentication, and obtain sensitive information by causing the connector to interpret a request body as a new request.

SUSE Linux Security Advisory: SUSE-SR:2009:010 Vulnerability

  • Severity: 10
  • Published: April 16, 2009

Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.

SUSE Linux Security Advisory: SUSE-SR:2009:004 Vulnerability

  • Severity: 10
  • Published: December 23, 2008

Heap-based buffer overflow in ext/mbstring/libmbfl/filters/mbfilter_htmlent.c in the mbstring extension in PHP 4.3.0 through 5.2.6 allows context-dependent attackers to execute arbitrary code via a crafted string containing an HTML entity, which is not properly handled during Unicode conversion, related to the (1) mb_convert_encoding, (2...

VMSA-2009-0014.3: JRE Security Update (CVE-2008-5342) Vulnerability

  • Severity: 5
  • Published: December 05, 2008

Unspecified vulnerability in the BasicService for Java Web Start (JWS) and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier allows untrusted downloaded applications to cause local files to be displayed in the browser of the user of the untrusted applica...

SUSE Linux Security Advisory: SUSE-SA:2009:001 Vulnerability

  • Severity: 10
  • Published: December 05, 2008

The "Java Update" feature for Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier does not verify the signature of the JRE that is downloaded, which allows remote attackers to execute arbitrary code via DNS man-in-the-middle attacks.

SUSE Linux Security Vulnerability: CVE-2008-5342 Vulnerability

  • Severity: 5
  • Published: December 05, 2008

Unspecified vulnerability in the BasicService for Java Web Start (JWS) and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier allows untrusted downloaded applications to cause local files to be displayed in the browser of the user of the untrusted applica...

RHSA-2009:0445: java-1.4.2-ibm security update Vulnerability

  • Severity: 10
  • Published: December 05, 2008

The IBM® 1.4.2 SR13 Java™ release includes the IBM Java 2 RuntimeEnvironment and the IBM Java 2 Software Development Kit.This update fixes several vulnerabilities in the IBM Java 2 RuntimeEnvironment and the IBM Java 2 Software Development Kit. Thesevulnerabilities are summarized on the IBM "Security alerts" page listed inthe References ...

RHSA-2009:0369: java-1.6.0-ibm security update Vulnerability

  • Severity: 10
  • Published: December 05, 2008

The IBM® 1.6.0 Java™ release includes the IBM Java 2 Runtime Environmentand the IBM Java 2 Software Development Kit.This update fixes several vulnerabilities in the IBM Java 2 RuntimeEnvironment and the IBM Java 2 Software Development Kit. Thesevulnerabilities are summarized on the IBM "Security alerts" page listed inthe References secti...

RHSA-2009:0016: java-1.5.0-ibm security update Vulnerability

  • Severity: 10
  • Published: December 05, 2008

The IBM 1.5.0 Java release includes the IBM Java 2 Runtime Environment andthe IBM Java 2 Software Development Kit.This update fixes several vulnerabilities in the IBM Java 2 RuntimeEnvironment and the IBM Java 2 Software Development Kit. These aresummarized in the "Security Alerts" from IBM. All users of java-1.5.0-ibm are advised to upg...