First published: Wed Nov 24 2004(Updated: )
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote attackers to load unsafe classes and execute arbitrary code by using the reflection API to access private Java packages.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sun JRE | =1.4.0_02 | |
Sun JRE | =1.3.1_06 | |
Symantec Enterprise Firewall | =8.0 | |
Sun JRE | =1.3.1_03 | |
Sun JRE | =1.4.0_04 | |
Sun JDK | =1.4.0_4 | |
Sun JDK | =1.3.1_06 | |
Sun JDK | =1.4.1_03 | |
Sun JRE | =1.4.2-update2 | |
Sun JDK | =1.4.2_05 | |
Sun JDK | =1.4.0_02 | |
Sun JRE | =1.4.0_01 | |
Sun JDK | =1.4.2 | |
Sun JDK | =1.4.2 | |
Sun JRE | =1.4.2-update5 | |
Sun JDK | =1.3.1_02 | |
Sun JRE | =1.4.0_01 | |
Sun JRE | =1.4.2-update3 | |
Sun JDK | =1.3.1_01 | |
Sun JDK | =1.3.1_02 | |
Sun JRE | =1.4.1 | |
Sun JDK | =1.4.0_03 | |
Sun JRE | =1.3.1_07 | |
Symantec Enterprise Firewall | =8.0 | |
Sun JDK | =1.3.1_03 | |
Sun JRE | =1.4.2-update4 | |
Sun JRE | =1.3.1_06 | |
Sun JDK | =1.4.1_02 | |
Sun JDK | =1.3.1_07 | |
Sun JDK | =1.4 | |
Sun JRE | =1.3.1-update1 | |
Sun JRE | =1.4.0_03 | |
Sun JDK | =1.3.1_03 | |
Sun JRE | =1.4.1_02 | |
Sun JRE | =1.4.1-update3 | |
Sun JRE | =1.4.1_02 | |
Sun JRE | =1.4 | |
Sun JRE | =1.4.1_01 | |
Sun JRE | =1.4.0_04 | |
Sun JDK | =1.4.2_01 | |
Sun JRE | =1.4.2-update3 | |
Sun JDK | =1.3.1_05 | |
Sun JDK | =1.4.2_04 | |
Sun JDK | =1.3.1_02 | |
Sun JDK | =1.4.1_02 | |
Sun JRE | =1.3.1-update4 | |
Sun JRE | =1.4.2-update5 | |
Sun JRE | =1.3.1_05 | |
Sun JRE | =1.3.1-update4 | |
Sun JDK | =1.4.1 | |
Sun JRE | =1.4.1_01 | |
Sun JDK | =1.4.2 | |
Sun JRE | =1.4 | |
Sun JDK | =1.3.1_07 | |
Sun JRE | =1.3.1-update1a | |
Sun JRE | =1.4.2-update1 | |
Sun JDK | =1.3.1_03 | |
Sun JRE | =1.3.0 | |
Sun JRE | =1.3.1_03 | |
Sun JDK | =1.4.2_03 | |
Sun JDK | =1.4.2_03 | |
Sun JRE | =1.4.0_03 | |
Sun JRE | =1.4.0_02 | |
Sun JRE | =1.4.2-update3 | |
Sun JRE | =1.3.1-update1 | |
Sun JRE | =1.4.2-update1 | |
Sun JDK | =1.3.1_06 | |
Sun JDK | =1.4.0_01 | |
Sun JRE | =1.4.1 | |
Sun JRE | =1.3.0-update5 | |
Sun JDK | =1.4.1_01 | |
Sun JDK | =1.4 | |
Sun JDK | =1.4.0_03 | |
Sun JDK | =1.3.1_05 | |
Symantec Enterprise Firewall | =8.0 | |
Sun JDK | =1.4.0_02 | |
Sun JDK | =1.4.1_01 | |
Sun JDK | =1.3.1_07 | |
Sun JRE | =1.3.0-update2 | |
Sun JRE | =1.3.1_02 | |
Sun JRE | =1.4.2-update1 | |
Sun JRE | =1.4.1-update3 | |
Sun JDK | =1.4.1_03 | |
Sun JRE | =1.3.1-update8 | |
Sun JDK | =1.3.1_01a | |
Sun JRE | =1.3.0 | |
Sun JRE | =1.3.1 | |
Sun JRE | =1.3.1-update1 | |
Sun JDK | =1.4.0_03 | |
Sun JRE | =1.3.1_09 | |
Sun JRE | =1.3.1-update8 | |
Sun JRE | =1.3.1_07 | |
Sun JRE | =1.4.1_01 | |
Sun JDK | =1.4.2_04 | |
Sun JDK | =1.4.2_05 | |
Sun JRE | =1.4.2 | |
Sun JRE | =1.4.2-update4 | |
Sun JRE | =1.4.2-update2 | |
Sun JRE | =1.3.1_07 | |
Sun JRE | =1.3.1_09 | |
Sun JDK | =1.4.2_04 | |
Sun JDK | =1.4.0_4 | |
Sun JRE | =1.4.2 | |
Sun JRE | =1.3.0-update4 | |
Sun JRE | =1.3.0-update3 | |
Hp Java Sdk-rte | =1.4 | |
Sun JRE | =1.4.2-update4 | |
Sun JRE | =1.3.1_06 | |
Sun JDK | =1.4.1_03 | |
Sun JDK | =1.3.1_04 | |
Sun JDK | =1.3.1_05 | |
Sun JDK | =1.4.1 | |
Sun JDK | =1.4.0_4 | |
Sun JRE | =1.3.1_02 | |
Sun JRE | =1.4.2 | |
Sun JRE | =1.3.1_02 | |
Sun JRE | =1.4.2-update5 | |
Sun JDK | =1.4.1 | |
Sun JDK | =1.4.2_02 | |
Sun JRE | =1.3.0-update5 | |
Sun JRE | =1.3.0-update2 | |
Sun JRE | =1.4.0_04 | |
Sun JRE | =1.3.0-update5 | |
Sun JRE | =1.3.1_05 | |
Sun JRE | =1.4 | |
Sun JDK | =1.3.1_06 | |
Sun JRE | =1.4.0_03 | |
Sun JRE | =1.3.0-update1 | |
Sun JDK | =1.4.2_03 | |
Sun JDK | =1.4.1_02 | |
Conectiva Linux | =10.0 | |
Sun JRE | =1.4.1_02 | |
Sun JRE | =1.3.0-update2 | |
Sun JRE | =1.3.1-update8 | |
Hp Java Sdk-rte | =1.3 | |
Sun JRE | =1.3.0-update4 | |
Sun JDK | =1.3.1_01 | |
Sun JRE | =1.4.1-update3 | |
Sun JDK | =1.4.1_01 | |
Sun JRE | =1.4.1_07 | |
Sun JDK | =1.4 | |
Sun JRE | =1.3.1_03 | |
Sun JDK | =1.4.0_02 | |
Sun JRE | =1.3.1_09 | |
Sun JRE | =1.3.1_05 | |
Sun JRE | =1.4.2-update2 | |
Sun JDK | =1.4.2_05 | |
Sun JRE | =1.4.0_02 | |
Sun JRE | =1.4.1 | |
Sun JRE | =1.3.0 | |
HP HP-UX | =11.11 | |
HP HP-UX | =11.00 | |
HP HP-UX | =11.23 | |
HP HP-UX | =11.22 | |
Gentoo Linux | ||
Symantec Gateway Security 5400 | =2.0.1 | |
Symantec Gateway Security 5400 | =2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.