CVE-2007-3922 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-3922
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-3922

Description: Unspecified vulnerability in the Java Runtime Environment (JRE) Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to certain localhost services running on the machine that loaded the applet.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/35491 SUSE http://www.novell.com/linux/security/advisories/2007_56_ibmjava.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1 ST 1018428 SLACKWARE http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.486841 SAID Secunia Advisory: SA28115 Secunia Advisory: SA27635 Secunia Advisory: SA26369 Secunia Advisory: SA26631 Secunia Advisory: SA26933 Secunia Advisory: SA27266 Secunia Advisory: SA26645 Secunia Advisory: SA26314 Secunia Advisory: SA30805 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0818.html http://www.redhat.com/support/errata/RHSA-2007-0829.html http://www.redhat.com/support/errata/RHSA-2008-0133.html MISC http://docs.info.apple.com/article.html?artnum=307177 HP http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01269450 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200709-15.xml CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2007-322.htm BID 25054 BEA http://dev2dev.bea.com/pub/advisory/248 APPLE http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

Return to the previous page.