CVE-2007-4381 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-4381
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-4381

Description: Unspecified vulnerability in the font parsing implementation in Sun JDK and JRE 5.0 Update 9 and earlier, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to perform unauthorized actions via an applet that grants certain privileges to itself.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36061 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-103024-1 ST 1018576 SAID Secunia Advisory: SA29897 Secunia Advisory: SA29340 Secunia Advisory: SA28880 Secunia Advisory: SA28777 Secunia Advisory: SA28115 Secunia Advisory: SA28056 Secunia Advisory: SA27716 Secunia Advisory: SA26933 Secunia Advisory: SA26402 Secunia Advisory: SA27203 Secunia Advisory: SA26631 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0132.html http://www.redhat.com/support/errata/RHSA-2007-0956.html http://www.redhat.com/support/errata/RHSA-2008-0100.html http://www.redhat.com/support/errata/RHSA-2007-1086.html MISC http://docs.info.apple.com/article.html?artnum=307177 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200709-15.xml CONFIRM http://support.novell.com/techcenter/psdb/0c36b6416afc3868b8b1b9012955e323.html BID 25340 BEA http://dev2dev.bea.com/pub/advisory/248 APPLE http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

Return to the previous page.