|
|
Sun Java Runtime Environment Network Access Restriction Security Bypass Vulnerability
|
Bugtraq ID:
|
25054
|
|
Class:
|
Access Validation Error
|
|
CVE:
|
CVE-2007-3922
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jul 25 2007 12:00AM
|
|
Updated:
|
Feb 25 2009 05:47PM
|
|
Credit:
|
The vendor credits John Heasman of NGSSoftware with the discovery of this vulnerability.
|
|
Vulnerable:
|
Sun JRE (Windows Production Release) 1.4.2 _06
Sun JRE (Windows Production Release) 1.4.2 _05
Sun JRE (Windows Production Release) 1.4.2 _05
Sun JRE (Windows Production Release) 1.4.2 _04
Sun JRE (Windows Production Release) 1.4.2 _03
Sun JRE (Windows Production Release) 1.4.2 _02
Sun JRE (Windows Production Release) 1.4.2 _01
Sun JRE (Windows Production Release) 1.4.2
Sun JRE (Windows Production Release) 1.4.2
Sun JRE (Windows Production Release) 1.4.2
Sun JRE (Windows Production Release) 1.4.2
Sun JRE (Windows Production Release) 1.4.2
Sun JRE (Windows Production Release) 1.4.2_14
Sun JRE (Windows Production Release) 1.4.2_13
Sun JRE (Windows Production Release) 1.4.2_12
Sun JRE (Windows Production Release) 1.4.2_11
Sun JRE (Solaris Production Release) 1.4.2 _06
Sun JRE (Solaris Production Release) 1.4.2 _05
Sun JRE (Solaris Production Release) 1.4.2 _04
Sun JRE (Solaris Production Release) 1.4.2 _03
Sun JRE (Solaris Production Release) 1.4.2 _02
Sun JRE (Solaris Production Release) 1.4.2 _01
Sun JRE (Solaris Production Release) 1.4.2
Sun JRE (Solaris Production Release) 1.4.2
Sun JRE (Solaris Production Release) 1.4.2
Sun JRE (Solaris Production Release) 1.4.2
Sun JRE (Solaris Production Release) 1.4.2
Sun JRE (Solaris Production Release) 1.4.2_14
Sun JRE (Solaris Production Release) 1.4.2_13
Sun JRE (Solaris Production Release) 1.4.2_12
Sun JRE (Solaris Production Release) 1.4.2_11
Sun JRE (Linux Production Release) 1.4.2 _06
Sun JRE (Linux Production Release) 1.4.2 _05
Sun JRE (Linux Production Release) 1.4.2 _04
+
Opera Software Opera Web Browser 7.54
Sun JRE (Linux Production Release) 1.4.2 _03
Sun JRE (Linux Production Release) 1.4.2 _02
Sun JRE (Linux Production Release) 1.4.2 _01
Sun JRE (Linux Production Release) 1.4.2
Sun JRE (Linux Production Release) 1.4.2
Sun JRE (Linux Production Release) 1.4.2
Sun JRE (Linux Production Release) 1.4.2
Sun JRE (Linux Production Release) 1.4.2
Sun JRE (Linux Production Release) 1.4.2_14
Sun JRE (Linux Production Release) 1.4.2_13
Sun JRE (Linux Production Release) 1.4.2_12
Sun JRE (Linux Production Release) 1.4.2_11
Sun JRE 6.0 Update 1
Sun JDK (Windows Production Release) 1.5 .0_05
Sun JDK (Windows Production Release) 1.5 .0_04
Sun JDK (Windows Production Release) 1.5 .0_03
Sun JDK (Windows Production Release) 1.5
Sun JDK (Windows Production Release) 1.5.0_11-b03
Sun JDK (Windows Production Release) 1.5.0_07-b03
Sun JDK (Windows Production Release) 1.5.0.0_11
Sun JDK (Windows Production Release) 1.5.0.0_09
Sun JDK (Windows Production Release) 1.5.0.0_08
Sun JDK (Solaris Production Release) 1.6.0_01
Sun JDK (Linux Production Release) 1.5 _07
Sun JDK (Linux Production Release) 1.5 .0_05
Sun JDK (Linux Production Release) 1.5 .0_04
Sun JDK (Linux Production Release) 1.5 .0_03
Sun JDK (Linux Production Release) 1.5
Sun JDK (Linux Production Release) 1.5
Sun JDK (Linux Production Release) 1.5.0.0_11
Sun JDK (Linux Production Release) 1.5.0.0_09
Sun JDK (Linux Production Release) 1.5.0.0_08
Sun JDK 1.4.2 _11
Sun JDK 1.4.2 _10
Sun JDK 1.4.2 _09
Sun JDK 1.4.2 _08
Sun JDK 1.4.2 _06
Sun JDK 1.4.2
Sun JDK 5.0 Update 9
Sun JDK 5.0 Update 8
Sun JDK 5.0 Update 7
Sun JDK 5.0 Update 6
Sun JDK 5.0 Update 5
Sun JDK 5.0 Update 4
Sun JDK 5.0 Update 3
Sun JDK 5.0 Update 2
Sun JDK 5.0 Update 11
Sun JDK 5.0 Update 10
Sun JDK 5.0 Update 1
Sun JDK 1.4.2.14
Sun Java 2 Standard Edition SDK 6.0 Update 1
Sun Java 2 Runtime Environment 6.0 Update 1
Stalker CGPMcAfee 8.0
Stalker CGPMcAfee 7.1
S.u.S.E. UnitedLinux 1.0
S.u.S.E. SuSE Linux Standard Server 8.0
S.u.S.E. SuSE Linux School Server for i386
S.u.S.E. SUSE LINUX Retail Solution 8.0
S.u.S.E. SuSE Linux Openexchange Server 4.0
S.u.S.E. SUSE Linux Enterprise Server 10 SP1
S.u.S.E. SUSE Linux Enterprise Desktop 10 SP1
S.u.S.E. SLE SDK 10.SP1
S.u.S.E. Open-Enterprise-Server 0
S.u.S.E. Novell Linux POS 9
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 8
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux Supplementary 5 server
RedHat Enterprise Linux Extras 4
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux Desktop Workstation 5 client
RedHat Enterprise Linux AS 2.1
HP OpenView Network Node Manager 7.53
HP OpenView Network Node Manager 7.51
HP OpenView Network Node Manager 7.01
Gentoo Linux
BEA Systems JRockit 1.4.2
BEA Systems JRockit R27.3.1
BEA Systems JRockit 7.0
BEA Systems JRockit 6
BEA Systems JRockit 5.0
Avaya Interactive Response 3.0
Avaya Interactive Response 2.0
Apple Mac OS X Server 10.4.11
Apple Mac OS X Server 10.4.10
Apple Mac OS X 10.4.11
Apple Mac OS X 10.4.10
|
|
|
|
Not Vulnerable:
|
Sun SDK (Linux Production Release) 1.4.2_15
Sun JRE (Windows Production Release) 1.4.2_15
Sun JRE (Solaris Production Release) 1.4.2_15
Sun JRE (Linux Production Release) 1.4.2_15
Sun JRE 6.0 Update 2
Sun JDK (Windows Producation Release) 1.5.0.0_12
Sun JDK (Solaris Production Release) 1.6.0_02
Sun JDK (Linux Production Release) 1.5.0.0_12
Sun JDK 6.0 Update 2
Sun JDK 5.0 Update 12
Sun Java 2 Standard Edition SDK 6.0 Update 2
Sun Java 2 Runtime Environment 6.0 Update 2
|
|
|
