Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2007-2435 | First vendor Publication | 2007-05-02 |
Vendor | Cve | Last vendor Modification | 2017-10-11 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.2_13 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect Use of System Classes" and probably related to support for JNLP files. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2435 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-264 | Permissions, Privileges, and Access Controls |
OVAL Definitions
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2008-09-24 | Name : Gentoo Security Advisory GLSA 200705-23 (sun-jdk,sun-jre-bin) File : nvt/glsa_200705_23.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200706-08 (emul-linux-x86-java) File : nvt/glsa_200706_08.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200804-20 (sun-jdk, sun-jre-bin, emul-linux-x86... File : nvt/glsa_200804_20.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200804-28 (jrockit-jdk-bin) File : nvt/glsa_200804_28.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200806-11 (ibm-jdk-bin ibm-jre-bin) File : nvt/glsa_200806_11.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
35483 | Sun Java Web Start JNLP File Unspecified Privilege Escalation |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-02-22 | Name : The remote Unix host has an application that is affected by a privilege escal... File : sun_java_jre_102881_unix.nasl - Type : ACT_GATHER_INFO |
2010-01-10 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0261.nasl - Type : ACT_GATHER_INFO |
2010-01-10 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0524.nasl - Type : ACT_GATHER_INFO |
2009-08-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0817.nasl - Type : ACT_GATHER_INFO |
2009-08-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0829.nasl - Type : ACT_GATHER_INFO |
2008-06-26 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200806-11.nasl - Type : ACT_GATHER_INFO |
2008-04-28 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200804-28.nasl - Type : ACT_GATHER_INFO |
2008-04-22 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200804-20.nasl - Type : ACT_GATHER_INFO |
2007-12-17 | Name : The remote host is affected by multiple vulnerabilities. File : macosx_java_rel6.nasl - Type : ACT_GATHER_INFO |
2007-06-27 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200706-08.nasl - Type : ACT_GATHER_INFO |
2007-06-04 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200705-23.nasl - Type : ACT_GATHER_INFO |
2007-05-02 | Name : The remote Windows host has an application that is affected by a privilege es... File : sun_java_jre_102881.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-02-02 01:06:27 |
|
2024-02-01 12:02:16 |
|
2023-09-05 12:06:01 |
|
2023-09-05 01:02:07 |
|
2023-09-02 12:06:07 |
|
2023-09-02 01:02:08 |
|
2023-08-12 12:07:07 |
|
2023-08-12 01:02:08 |
|
2023-08-11 12:06:10 |
|
2023-08-11 01:02:12 |
|
2023-08-06 12:05:52 |
|
2023-08-06 01:02:09 |
|
2023-08-04 12:05:58 |
|
2023-08-04 01:02:12 |
|
2023-07-14 12:05:57 |
|
2023-07-14 01:02:10 |
|
2023-03-29 01:06:38 |
|
2023-03-28 12:02:15 |
|
2022-10-11 12:05:16 |
|
2022-10-11 01:02:00 |
|
2021-05-05 01:03:33 |
|
2021-05-04 12:05:43 |
|
2021-04-22 01:06:17 |
|
2020-05-23 01:38:09 |
|
2020-05-23 00:19:41 |
|
2019-07-31 12:02:00 |
|
2018-11-30 12:02:04 |
|
2018-10-10 12:02:03 |
|
2017-10-11 09:23:56 |
|
2017-07-29 12:02:12 |
|
2016-06-28 16:26:20 |
|
2016-04-26 16:05:04 |
|
2014-02-17 10:40:04 |
|
2013-05-11 10:24:39 |
|
2012-11-07 00:14:41 |
|