critical
9.3
CWE
264
Advisory Published
Updated

CVE-2008-1186

First published: Thu Mar 06 2008(Updated: )

Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment (JRE) and JDK 5.0 Update 13 and earlier, and SDK/JRE 1.4.2_16 and earlier, allows remote attackers to gain privileges via an untrusted application or applet, a different issue than CVE-2008-1185, aka "the second issue."

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
OpenJDK=1.5.0-update3
OpenJDK=1.5.0-update11
OpenJDK=1.5.0-update9
OpenJDK=1.5.0-update6
OpenJDK=1.5.0-update1
OpenJDK=1.5.0-update4
OpenJDK=1.5.0-update7
OpenJDK=1.5.0
OpenJDK=1.5.0-update12
OpenJDK=1.5.0-update5
OpenJDK=1.5.0-update2
OpenJDK=1.5.0-update13
OpenJDK=1.5.0-update8
OpenJDK=1.5.0-update10
Sun JRE=1.4.2_7
Sun JRE=1.4.2_16
Sun JRE=1.5.0
Sun JRE=1.4.2_4
Sun JRE=1.4.2_2
Sun JRE=1.5.0-update2
Sun JRE=1.4.2_15
Sun JRE=1.5.0-update13
Sun JRE=1.4.2_13
Sun JRE=1.4.2_1
Sun JRE=1.4.2_8
Sun JRE=1.5.0-update12
Sun JRE=1.5.0-update8
Sun JRE=1.4.2_12
Sun JRE=1.5.0-update11
Sun JRE=1.4.2_14
Sun JRE=1.5.0-update7
Sun JRE=1.5.0-update3
Sun JRE=1.4.2_10
Sun JRE=1.5.0-update5
Sun JRE=1.4.2_9
Sun JRE=1.4.2
Sun JRE=1.5.0-update6
Sun JRE=1.5.0-update9
Sun JRE=1.4.2_11
Sun JRE=1.5.0-update1
Sun JRE=1.5.0-update10
Sun JRE=1.4.2_3
Sun JRE=1.5.0-update4
Sun JRE=1.4.2_5
Sun JRE=1.4.2_6
Sun SDK=1.4.2
Sun SDK=1.4.2_10
Sun SDK=1.4.2_12
Sun SDK=1.4.2_14
Sun SDK=1.4.2_13
Sun SDK=1.4.2_6
Sun SDK=1.4.2_2
Sun SDK=1.4.2_5
Sun SDK=1.4.2_1
Sun SDK=1.4.2_4
Sun SDK=1.4.2_7
Sun SDK=1.4.2_8
Sun SDK=1.4.2_16
Sun SDK=1.4.2_11
Sun SDK=1.4.2_9
Sun SDK=1.4.2_3
Sun SDK=1.4.2_15

Remedy

http://sunsolve.sun.com/search/document.do?assetkey=1-26-233321-1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2008-1186?

    CVE-2008-1186 has been classified as a high severity vulnerability due to its potential to allow remote attackers to gain elevated privileges.

  • How do I fix CVE-2008-1186?

    To mitigate CVE-2008-1186, you should upgrade to a patched version of the Java Runtime Environment (JRE) that addresses this vulnerability.

  • What versions are affected by CVE-2008-1186?

    CVE-2008-1186 affects Sun Java Runtime Environment (JRE) and JDK 5.0 Update 13 and earlier, as well as SDK/JRE 1.4.2_16 and earlier.

  • What is the exploit condition for CVE-2008-1186?

    The exploit for CVE-2008-1186 can occur through an untrusted application or applet that runs in the Java Virtual Machine.

  • Who is impacted by CVE-2008-1186?

    Users and organizations running vulnerable versions of Sun Java Runtime Environment or SDK are at risk of the CVE-2008-1186 vulnerability.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203