CVE-2007-3922
First published: Sat Jul 21 2007(Updated: )
Unspecified vulnerability in the Java Runtime Environment (JRE) Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to certain localhost services running on the machine that loaded the applet.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sun JRE | <=1.5.0 | |
| Sun JRE | <=1.6.0 | |
| Sun JDK | <=1.6.0 | |
| Sun SDK | <=1.4.2_14 | |
| Sun JDK | <=1.5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1
- http://support.avaya.com/elmodocs2/security/ASA-2007-322.htm
- http://dev2dev.bea.com/pub/advisory/248
- http://www.gentoo.org/security/en/glsa/glsa-200709-15.xml
- http://www.redhat.com/support/errata/RHSA-2007-0818.html
- http://www.redhat.com/support/errata/RHSA-2007-0829.html
- http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.486841
- http://www.novell.com/linux/security/advisories/2007_56_ibmjava.html
- http://www.securityfocus.com/bid/25054
- http://www.securitytracker.com/id?1018428
- http://secunia.com/advisories/26314
- http://secunia.com/advisories/26369
- http://secunia.com/advisories/26631
- http://secunia.com/advisories/26933
- http://secunia.com/advisories/27266
- http://secunia.com/advisories/26645
- http://secunia.com/advisories/27635
- http://docs.info.apple.com/article.html?artnum=307177
- http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html
- http://secunia.com/advisories/28115
- http://www.redhat.com/support/errata/RHSA-2008-0133.html
- http://secunia.com/advisories/30805
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01269450
- http://www.vupen.com/english/advisories/2007/3861
- http://www.vupen.com/english/advisories/2007/2573
- http://www.vupen.com/english/advisories/2007/4224
- http://www.vupen.com/english/advisories/2007/3009
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35491
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10387
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/author
- agent/severity
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sun
- canonical/sun jre
- version/sun jre/1.5.0
- version/sun jre/1.6.0
- canonical/sun jdk
- version/sun jdk/1.6.0
- canonical/sun sdk
- version/sun sdk/1.4.2_14
- version/sun jdk/1.5.0