Rapid7 Vulnerability & Exploit Database

JRE Image Parsing Library Vulnerabilities

Back to Search

JRE Image Parsing Library Vulnerabilities

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
03/06/2008
Created
07/25/2018
Added
11/18/2009
Modified
09/13/2018

Description

Multiple vulnerabilities exist in the Java Runtime Environment (JRE) 6 and 5.0. The first vulnerability can potentially allow untrusted applications to elevate its privileges, giving it access to the local filesystem and granting it the ability to execute local applications. The second vulnerabilitiy may allow an untrusted applet or application to crash the JRE, resulting in a denial of service.

Solution(s)

  • jre-upgrade-latest

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;