CVE-2008-3106
First published: Wed Jul 09 2008(Updated: )
Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier allows remote attackers to access URLs via unknown vectors involving processing of XML data by an untrusted (1) application or (2) applet, a different vulnerability than CVE-2008-3105.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sun JDK | =5.0-update_12 | |
| Sun JDK | =5.0-update_3 | |
| Sun JRE | =5.0-update_13 | |
| Sun JRE | =5.0-update_1 | |
| Sun JDK | =5.0-update_11 | |
| Sun JRE | <=5.0 | |
| Sun JDK | =5.0-update_8 | |
| Sun JRE | =5.0-update_14 | |
| Sun JRE | =6-update_3 | |
| Sun JRE | =6-update_4 | |
| Sun JRE | =5.0-update_12 | |
| Sun JDK | =5.0-update_1 | |
| Sun JDK | =6-update_1 | |
| Sun JDK | =6-update_3 | |
| Sun JDK | =5.0-update_5 | |
| Sun JRE | =6-update_2 | |
| Sun JRE | =5.0-update_4 | |
| Sun JDK | =6-update_4 | |
| Sun JRE | =5.0-update_9 | |
| Sun JRE | =5.0-update_8 | |
| Sun JRE | =5.0-update_7 | |
| Sun JDK | =5.0-update_6 | |
| Sun JRE | <=6 | |
| Sun JRE | =6-update_5 | |
| Sun JDK | <=6 | |
| Sun JDK | =5.0-update_14 | |
| Sun JRE | =5.0-update_2 | |
| Sun JDK | =6-update_2 | |
| Sun JDK | =5.0-update_13 | |
| Sun JRE | =5.0-update_5 | |
| Sun JRE | =5.0-update_6 | |
| Sun JRE | =5.0-update_11 | |
| Sun JRE | =6-update_1 | |
| Sun JDK | =6-update_5 | |
| Sun JDK | =5.0-update_10 | |
| Sun JDK | =5.0-update_2 | |
| Sun JDK | <=5.0 | |
| Sun JDK | =5.0-update_4 | |
| Sun JDK | =5.0-update_9 | |
| Sun JRE | =5.0-update_3 | |
| Sun JRE | =5.0-update_10 | |
| Sun JDK | =5.0-update_7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-238628-1
- http://www.securityfocus.com/bid/30143
- http://secunia.com/advisories/31010
- http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00000.html
- http://www.us-cert.gov/cas/techalerts/TA08-193A.html
- http://secunia.com/advisories/31320
- http://secunia.com/advisories/31600
- http://secunia.com/advisories/31497
- http://www.redhat.com/support/errata/RHSA-2008-0790.html
- http://www.redhat.com/support/errata/RHSA-2008-0594.html
- http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00002.html
- http://secunia.com/advisories/32018
- http://support.apple.com/kb/HT3179
- http://lists.apple.com/archives/security-announce//2008/Sep/msg00007.html
- http://secunia.com/advisories/32180
- http://www.vmware.com/security/advisories/VMSA-2008-0016.html
- http://marc.info/?l=bugtraq&m=122331139823057&w=2
- http://secunia.com/advisories/32179
- http://secunia.com/advisories/32436
- http://www.securitytracker.com/id?1020457
- http://secunia.com/advisories/33238
- http://www.redhat.com/support/errata/RHSA-2008-1044.html
- http://secunia.com/advisories/33237
- http://www.redhat.com/support/errata/RHSA-2008-1045.html
- http://www.redhat.com/support/errata/RHSA-2008-0906.html
- http://support.avaya.com/elmodocs2/security/ASA-2008-428.htm
- http://support.avaya.com/elmodocs2/security/ASA-2008-507.htm
- http://support.avaya.com/elmodocs2/security/ASA-2008-299.htm
- http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=751014
- http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=756717
- http://support.avaya.com/elmodocs2/security/ASA-2008-509.htm
- http://security.gentoo.org/glsa/glsa-200911-02.xml
- http://secunia.com/advisories/37386
- http://www.vupen.com/english/advisories/2008/2056/references
- http://www.vupen.com/english/advisories/2008/2740
- http://secunia.com/advisories/31736
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43658
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10866
- http://www.securityfocus.com/archive/1/497041/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sun
- canonical/sun jdk
- version/sun jdk/5.0-update_12
- version/sun jdk/5.0-update_3
- canonical/sun jre
- version/sun jre/5.0-update_13
- version/sun jre/5.0-update_1
- version/sun jdk/5.0-update_11
- version/sun jre/5.0
- version/sun jdk/5.0-update_8
- version/sun jre/5.0-update_14
- version/sun jre/6-update_3
- version/sun jre/6-update_4
- version/sun jre/5.0-update_12
- version/sun jdk/5.0-update_1
- version/sun jdk/6-update_1
- version/sun jdk/6-update_3
- version/sun jdk/5.0-update_5
- version/sun jre/6-update_2
- version/sun jre/5.0-update_4
- version/sun jdk/6-update_4
- version/sun jre/5.0-update_9
- version/sun jre/5.0-update_8
- version/sun jre/5.0-update_7
- version/sun jdk/5.0-update_6
- version/sun jre/6
- version/sun jre/6-update_5
- version/sun jdk/6
- version/sun jdk/5.0-update_14
- version/sun jre/5.0-update_2
- version/sun jdk/6-update_2
- version/sun jdk/5.0-update_13
- version/sun jre/5.0-update_5
- version/sun jre/5.0-update_6
- version/sun jre/5.0-update_11
- version/sun jre/6-update_1
- version/sun jdk/6-update_5
- version/sun jdk/5.0-update_10
- version/sun jdk/5.0-update_2
- version/sun jdk/5.0
- version/sun jdk/5.0-update_4
- version/sun jdk/5.0-update_9
- version/sun jre/5.0-update_3
- version/sun jre/5.0-update_10
- version/sun jdk/5.0-update_7