CVE-2003-1123
First published: Wed Dec 31 2003(Updated: )
Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Java Development Kit (JDK) | =1.2.2_10 | |
| Java Development Kit (JDK) | =1.2.2_10 | |
| Sun Java Runtime Environment (JRE) | =1.3.1_03 | |
| Sun Java Runtime Environment (JRE) | =1.4.0_01 | |
| Sun Java Runtime Environment (JRE) | =1.2.2_011 | |
| Sun Java Runtime Environment (JRE) | =1.4.0_01 | |
| Java Development Kit (JDK) | =1.3.1_01 | |
| Java Development Kit (JDK) | =1.3.0_05 | |
| Java Development Kit (JDK) | =1.3.0_02 | |
| Java Development Kit (JDK) | =1.2.2_11 | |
| Java Development Kit (JDK) | =1.2.2_11 | |
| Java Development Kit (JDK) | =1.4.0_01 | |
| Sun Java Runtime Environment (JRE) | =1.3.0 | |
| Sun Java Runtime Environment (JRE) | =1.3.1-update1 | |
| Sun Java Runtime Environment (JRE) | =1.3.1_03 | |
| Java Development Kit (JDK) | =1.3.1_03 | |
| Java Development Kit (JDK) | =1.4 | |
| Sun Java Runtime Environment (JRE) | =1.2.2_011 | |
| Sun Java Runtime Environment (JRE) | =1.3.1-update1 | |
| Sun Java Runtime Environment (JRE) | =1.3.1-update4 | |
| Sun Java Runtime Environment (JRE) | =1.4 | |
| Sun Java Runtime Environment (JRE) | =1.4 | |
| Java Development Kit (JDK) | =1.3.1_03 | |
| Java Development Kit (JDK) | =1.3.1_03 | |
| Sun Java Runtime Environment (JRE) | =1.2.2 | |
| Sun Java Runtime Environment (JRE) | =1.3.0-update5 | |
| Sun Java Runtime Environment (JRE) | =1.3.1-update4 | |
| Java Development Kit (JDK) | =1.2.2_10 | |
| Java Development Kit (JDK) | =1.3.0_05 | |
| Java Development Kit (JDK) | =1.3.0_05 | |
| Java Development Kit (JDK) | =1.3.1_04 | |
| Java Development Kit (JDK) | =1.3 | |
| Sun Java Runtime Environment (JRE) | =1.2.2-update10 | |
| Sun Java Runtime Environment (JRE) | =1.2.2-update10 | |
| Java Development Kit (JDK) | =1.2.2_11 | |
| Java Development Kit (JDK) | =1.3.1_01 | |
| Java Development Kit (JDK) | =1.4 | |
| Sun Java Runtime Environment (JRE) | =1.2.2-update10 | |
| Sun Java Runtime Environment (JRE) | =1.2.2_003 | |
| Sun Java Runtime Environment (JRE) | =1.3.0-update2 | |
| Sun Java Runtime Environment (JRE) | =1.3.0-update2 | |
| Sun Java Runtime Environment (JRE) | =1.3.1-update1 | |
| Sun Java Runtime Environment (JRE) | =1.3.0 | |
| Sun Java Runtime Environment (JRE) | =1.3.0 | |
| Sun Java Runtime Environment (JRE) | =1.3.0-update5 | |
| Sun Java Runtime Environment (JRE) | =1.3.1 | |
| Java Development Kit (JDK) | =1.2.2 | |
| Java Development Kit (JDK) | =1.2.2_12 | |
| Java Development Kit (JDK) | =1.3.0_02 | |
| Java Development Kit (JDK) | =1.3.1_01a | |
| Java Development Kit (JDK) | =1.4 | |
| Sun Java Runtime Environment (JRE) | =1.3.0-update2 | |
| Sun Java Runtime Environment (JRE) | =1.3.0-update4 | |
| Java Development Kit (JDK) | =1.3.0_02 | |
| Sun Java Runtime Environment (JRE) | =1.2.2 | |
| Sun Java Runtime Environment (JRE) | =1.2.2_011 | |
| Sun Java Runtime Environment (JRE) | =1.2.2_012 | |
| Sun Java Runtime Environment (JRE) | =1.3.0-update5 | |
| Sun Java Runtime Environment (JRE) | =1.3.1_03 | |
| Sun Java Runtime Environment (JRE) | =1.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2003-1123?
CVE-2003-1123 is classified as a high severity vulnerability due to its potential to bypass security restrictions.
How do I fix CVE-2003-1123?
To fix CVE-2003-1123, upgrade to a later version of the Sun Java Runtime Environment or SDK that addresses this vulnerability.
What are the affected versions in CVE-2003-1123?
Affected versions in CVE-2003-1123 include Sun Java Runtime Environment and SDK 1.4.0_01 and earlier.
Can CVE-2003-1123 be exploited remotely?
Yes, CVE-2003-1123 can be exploited remotely since untrusted applets may access data from trusted applets.
What types of software does CVE-2003-1123 impact?
CVE-2003-1123 impacts various versions of Sun JRE and JDK across different operating systems including Windows, Linux, and Solaris.
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/remedy
- agent/author
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/sun
- canonical/java development kit (jdk)
- version/java development kit (jdk)/1.2.2_10
- canonical/sun java runtime environment (jre)
- version/sun java runtime environment (jre)/1.3.1_03
- version/sun java runtime environment (jre)/1.4.0_01
- version/sun java runtime environment (jre)/1.2.2_011
- version/java development kit (jdk)/1.3.1_01
- version/java development kit (jdk)/1.3.0_05
- version/java development kit (jdk)/1.3.0_02
- version/java development kit (jdk)/1.2.2_11
- version/java development kit (jdk)/1.4.0_01
- version/sun java runtime environment (jre)/1.3.0
- version/sun java runtime environment (jre)/1.3.1-update1
- version/java development kit (jdk)/1.3.1_03
- version/java development kit (jdk)/1.4
- version/sun java runtime environment (jre)/1.3.1-update4
- version/sun java runtime environment (jre)/1.4
- version/sun java runtime environment (jre)/1.2.2
- version/sun java runtime environment (jre)/1.3.0-update5
- version/java development kit (jdk)/1.3.1_04
- version/java development kit (jdk)/1.3
- version/sun java runtime environment (jre)/1.2.2-update10
- version/sun java runtime environment (jre)/1.2.2_003
- version/sun java runtime environment (jre)/1.3.0-update2
- version/sun java runtime environment (jre)/1.3.1
- version/java development kit (jdk)/1.2.2
- version/java development kit (jdk)/1.2.2_12
- version/java development kit (jdk)/1.3.1_01a
- version/sun java runtime environment (jre)/1.3.0-update4
- version/sun java runtime environment (jre)/1.2.2_012