CVE-2008-1186

Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment (JRE) and JDK 5.0 Update 13 and earlier, and SDK/JRE 1.4.2_16 and earlier, allows remote attackers to gain privileges via an untrusted application or applet, a different issue than CVE-2008-1185, aka "the second issue."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
VendorProductVersion
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjdk
1.5.0
sunjre
1.4.2
sunjre
1.4.2_1:_1
sunjre
1.4.2_2:_2
sunjre
1.4.2_3:_3
sunjre
1.4.2_4:_4
sunjre
1.4.2_5:_5
sunjre
1.4.2_6:_6
sunjre
1.4.2_7:_7
sunjre
1.4.2_8:_8
sunjre
1.4.2_9:_9
sunjre
1.4.2_10:_10
sunjre
1.4.2_11:_11
sunjre
1.4.2_12:_12
sunjre
1.4.2_13:_13
sunjre
1.4.2_14:_14
sunjre
1.4.2_15:_15
sunjre
1.4.2_16:_16
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunjre
1.5.0
sunsdk
1.4.2
sunsdk
1.4.2_1:_1
sunsdk
1.4.2_2:_2
sunsdk
1.4.2_3:_3
sunsdk
1.4.2_4:_4
sunsdk
1.4.2_5:_5
sunsdk
1.4.2_6:_6
sunsdk
1.4.2_7:_7
sunsdk
1.4.2_8:_8
sunsdk
1.4.2_9:_9
sunsdk
1.4.2_10:_10
sunsdk
1.4.2_11:_11
sunsdk
1.4.2_12:_12
sunsdk
1.4.2_13:_13
sunsdk
1.4.2_14:_14
sunsdk
1.4.2_15:_15
sunsdk
1.4.2_16:_16
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
sun-java5
karmic
dne
jaunty
Fixed 1.5.0-15-0ubuntu1
released
intrepid
Fixed 1.5.0-15-0ubuntu1
released
hardy
Fixed 1.5.0-15-0ubuntu1
released
gutsy
ignored
feisty
ignored
edgy
ignored
dapper
ignored
sun-java6
karmic
Fixed 6-05-0ubuntu1
released
jaunty
Fixed 6-05-0ubuntu1
released
intrepid
Fixed 6-05-0ubuntu1
released
hardy
Fixed 6-05-0ubuntu1
released
gutsy
ignored
feisty
ignored
edgy
dne
dapper
dne
Common Weakness Enumeration
References
http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00000.html
http://secunia.com/advisories/29239
http://secunia.com/advisories/29273
http://secunia.com/advisories/29582
http://secunia.com/advisories/29858
http://secunia.com/advisories/30676
http://secunia.com/advisories/30780
http://secunia.com/advisories/32018
http://security.gentoo.org/glsa/glsa-200804-28.xml
http://securitytracker.com/id?1019555
http://sunsolve.sun.com/search/document.do?assetkey=1-26-233321-1
http://support.apple.com/kb/HT3178
http://support.apple.com/kb/HT3179
http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml
http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml
http://www.redhat.com/support/errata/RHSA-2008-0186.html
http://www.us-cert.gov/cas/techalerts/TA08-066A.html
http://www.vmware.com/security/advisories/VMSA-2008-0010.html
http://www.vupen.com/english/advisories/2008/0770/references
http://www.vupen.com/english/advisories/2008/1856/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41025
https://exchange.xforce.ibmcloud.com/vulnerabilities/41138
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9585
http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00000.html
http://secunia.com/advisories/29239
http://secunia.com/advisories/29273
http://secunia.com/advisories/29582
http://secunia.com/advisories/29858
http://secunia.com/advisories/30676
http://secunia.com/advisories/30780
http://secunia.com/advisories/32018
http://security.gentoo.org/glsa/glsa-200804-28.xml
http://securitytracker.com/id?1019555
http://sunsolve.sun.com/search/document.do?assetkey=1-26-233321-1
http://support.apple.com/kb/HT3178
http://support.apple.com/kb/HT3179
http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml
http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml
http://www.redhat.com/support/errata/RHSA-2008-0186.html
http://www.us-cert.gov/cas/techalerts/TA08-066A.html
http://www.vmware.com/security/advisories/VMSA-2008-0010.html
http://www.vupen.com/english/advisories/2008/0770/references
http://www.vupen.com/english/advisories/2008/1856/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41025
https://exchange.xforce.ibmcloud.com/vulnerabilities/41138
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9585