Rapid7 Vulnerability & Exploit Database

Gentoo Linux: CVE-2008-3109: Sun JDK/JRE: Multiple vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

Gentoo Linux: CVE-2008-3109: Sun JDK/JRE: Multiple vulnerabilities

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

07/09/2008

Created

07/25/2018

Added

10/30/2017

Modified

10/30/2017

Description

Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Solution(s)

gentoo-linux-upgrade-app-emulation-emul-linux-x86-java
gentoo-linux-upgrade-dev-java-blackdown-jdk
gentoo-linux-upgrade-dev-java-blackdown-jre
gentoo-linux-upgrade-dev-java-sun-jdk
gentoo-linux-upgrade-dev-java-sun-jre-bin

References

https://attackerkb.com/topics/cve-2008-3109
APPLE-SA-2008-09-24
30144
TA08-193A
CVE - 2008-3109
200911-02
OVAL8540
RHSA-2008:0594
RHSA-2008:0906
RHSA-2008:1045
SUSE-SA:2008:042
43660

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;