oval:org.mitre.oval:def:11209

Definition Id: oval:org.mitre.oval:def:11209

Oval ID:	oval:org.mitre.oval:def:11209
Title:	Multiple buffer overflows in the useEncodingDecl function in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier, allow remote attackers to execute arbitrary code via a JNLP file with (1) a long key name in the xml header or (2) a long charset value, different issues than CVE-2008-1189, aka "The first two issues."
Description:	Multiple buffer overflows in the useEncodingDecl function in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier, allow remote attackers to execute arbitrary code via a JNLP file with (1) a long key name in the xml header or (2) a long charset value, different issues than CVE-2008-1189, aka "The first two issues."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2008-1188	Version:	3
Platform(s):	Red Hat Enterprise Linux Extras 4 Red Hat Enterprise Linux Extras 5	Product(s):
Definition Synopsis:
IF redhat-release is version 4 AND java-1.5.0-ibm-javacomm is earlier than 0:1.5.0.7-1jpp.2.el4 AND java-1.5.0-ibm-devel is earlier than 0:1.5.0.7-1jpp.2.el4 AND java-1.5.0-ibm-src is earlier than 0:1.5.0.7-1jpp.2.el4 AND java-1.5.0-sun-plugin is earlier than 0:1.5.0.15-1jpp.2.el4 AND java-1.5.0-ibm-demo is earlier than 0:1.5.0.7-1jpp.2.el4 AND java-1.5.0-sun is earlier than 0:1.5.0.15-1jpp.2.el4 AND java-1.5.0-ibm is earlier than 0:1.5.0.7-1jpp.2.el4 AND java-1.5.0-sun-demo is earlier than 0:1.5.0.15-1jpp.2.el4 AND java-1.5.0-sun-jdbc is earlier than 0:1.5.0.15-1jpp.2.el4 AND java-1.5.0-sun-src is earlier than 0:1.5.0.15-1jpp.2.el4 AND java-1.5.0-ibm-jdbc is earlier than 0:1.5.0.7-1jpp.2.el4 AND java-1.5.0-ibm-plugin is earlier than 0:1.5.0.7-1jpp.2.el4 AND java-1.5.0-sun-devel is earlier than 0:1.5.0.15-1jpp.2.el4 OR redhat-release is version 5 AND java-1.5.0-ibm-javacomm is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.5.0-ibm-devel is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.5.0-sun-plugin is earlier than 0:1.5.0.15-1jpp.2.el5 AND java-1.5.0-sun is earlier than 0:1.5.0.15-1jpp.2.el5 AND java-1.6.0-ibm-accessibility is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.6.0-ibm-jdbc is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.6.0-ibm-src is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.6.0-ibm-javacomm is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.5.0-ibm-plugin is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.6.0-ibm is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.6.0-ibm-plugin is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.6.0-ibm-devel is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.5.0-ibm-src is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.6.0-ibm-demo is earlier than 0:1.6.0.1-1jpp.2.el5 AND java-1.5.0-ibm-demo is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.5.0-ibm-accessibility is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.5.0-ibm is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.5.0-sun-demo is earlier than 0:1.5.0.15-1jpp.2.el5 AND java-1.5.0-sun-jdbc is earlier than 0:1.5.0.15-1jpp.2.el5 AND java-1.5.0-ibm-jdbc is earlier than 0:1.5.0.7-1jpp.2.el5 AND java-1.5.0-sun-src is earlier than 0:1.5.0.15-1jpp.2.el5 AND java-1.5.0-sun-devel is earlier than 0:1.5.0.15-1jpp.2.el5

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0326s

Facebook rss twitter linkedin mail