Rapid7 Vulnerability & Exploit Database

JRE Java Web Start Multiple Buffer Overflows

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

JRE Java Web Start Multiple Buffer Overflows

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

03/06/2008

Created

07/25/2018

Added

11/18/2009

Modified

09/13/2018

Description

There are three buffer overflow security vulnerabilities in the Java Web Start in the Java Runtime Environment (JRE) 6 and earlier, JRE/JDK 5.0 and earlier and JRE 1.4.2_16 and earlier. These privileges can potentially allow the elevation of privileges for a given application and potentially for remote code execution.

Solution(s)

jre-upgrade-latest

References

https://attackerkb.com/topics/cve-2008-1188
APPLE-SA-2008-09-24
TA08-066A
CVE - 2008-1188
CVE - 2008-1189
CVE - 2008-1190
CVE - 2008-1191
OVAL10167
OVAL11209
OVAL9582
OVAL9914
RHSA-2008:0186
RHSA-2008:0210
RHSA-2008:0267
SUSE-SA:2008:018
SUSE-SA:2008:025
http://sunsolve.sun.com/search/document.do?assetkey=1-66-233323-1
41029
41133
41135
41136

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;