Rapid7 Vulnerability & Exploit Database

JRE Java Scripting Language Support

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

JRE Java Scripting Language Support

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

07/09/2008

Created

07/25/2018

Added

11/18/2009

Modified

09/13/2018

Description

The Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier suffers from two vulnerabilities. The first allows context-dependent attackers to gain privileges via an untrusted application or applet. This could potentially allow the attacker to read, write or execute local programs and files. The second vulnerability allows an untrusted applet to access information from another applet.

Solution(s)

jre-upgrade-latest

References

https://attackerkb.com/topics/cve-2008-3109
APPLE-SA-2008-09-24
30144
TA08-193A
CVE - 2008-3109
CVE - 2008-3110
OVAL10734
OVAL8540
RHSA-2008:0594
RHSA-2008:0906
RHSA-2008:1045
SUSE-SA:2008:042
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238687-1
43660
43661

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

JRE Java Scripting Language Support

JRE Java Scripting Language Support

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.