Sun Java Web Start Arbitrary File Overwrite Privilege Escalation Vulnerability

Bugtraq ID: 24695
Class: Access Validation Error
CVE: CVE-2007-3504
Remote: Yes
Local: No
Published: Jun 28 2007 12:00AM
Updated: May 07 2015 05:37PM
Credit: John Heasman of NGSSoftware Limited reported this issue.
Vulnerable: Sun SDK (Linux Production Release) 1.5 _11
Sun SDK (Linux Production Release) 1.5 _10
Sun SDK (Linux Production Release) 1.5 _09
Sun SDK (Linux Production Release) 1.5 _07
Sun SDK (Linux Production Release) 1.5 _06
Sun SDK (Linux Production Release) 1.5 _05
Sun SDK (Linux Production Release) 1.5 _04
Sun SDK (Linux Production Release) 1.5 _03
Sun SDK (Linux Production Release) 1.5 _02
Sun SDK (Linux Production Release) 1.5 _01
Sun SDK (Linux Production Release) 1.5
Sun SDK (Linux Production Release) 1.4.2 _10
Sun SDK (Linux Production Release) 1.4.2 _09
Sun SDK (Linux Production Release) 1.4.2 _08
Sun SDK (Linux Production Release) 1.4.2 _07
Sun SDK (Linux Production Release) 1.4.2 _06
Sun SDK (Linux Production Release) 1.4.2 _05
Sun SDK (Linux Production Release) 1.4.2 _04
Sun SDK (Linux Production Release) 1.4.2 _03
Sun SDK (Linux Production Release) 1.4.2 _02
Sun SDK (Linux Production Release) 1.4.2 _01
Sun SDK (Linux Production Release) 1.4.2
Sun SDK (Linux Production Release) 1.4.1
Sun SDK (Linux Production Release) 1.4
Sun SDK (Linux Production Release) 1.3.1 _19
Sun SDK (Linux Production Release) 1.3
Sun SDK (Linux Production Release) 1.5.0_08
Sun SDK (Linux Production Release) 1.4.2_13
Sun SDK (Linux Production Release) 1.4.2_11
Sun JRE (Solaris Production Release) 1.3.1
Sun JRE (Solaris Production Release) 1.3 _04
Sun JRE (Solaris Production Release) 1.3 _03
Sun JRE (Solaris Production Release) 1.3 _01
Sun JRE (Linux Production Release) 1.5 _07
Sun JRE (Linux Production Release) 1.5 _06
Sun JRE (Linux Production Release) 1.5 _05
Sun JRE (Linux Production Release) 1.5 _04
Sun JRE (Linux Production Release) 1.5 _03
Sun JRE (Linux Production Release) 1.5 _02
Sun JRE (Linux Production Release) 1.5 _01
Sun JRE (Linux Production Release) 1.4.2 _10-b03
Sun JRE (Linux Production Release) 1.4.2 _09
Sun JRE (Linux Production Release) 1.4.2 _08
Sun JRE (Linux Production Release) 1.4.2 _07
Sun JRE (Linux Production Release) 1.4.2 _06
Sun JRE (Linux Production Release) 1.4.2 _05
Sun JRE (Linux Production Release) 1.4.2 _04
+ Opera Software Opera Web Browser 7.54
Sun JRE (Linux Production Release) 1.4.2 _03
Sun JRE (Linux Production Release) 1.4.2 _02
Sun JRE (Linux Production Release) 1.4.2 _01
Sun JRE (Linux Production Release) 1.4.2
Sun JRE (Linux Production Release) 1.4.1
Sun JRE (Linux Production Release) 1.3.1 _19
Sun JRE (Linux Production Release) 1.3.1 _18
Sun JRE (Linux Production Release) 1.3.1 _17
Sun JRE (Linux Production Release) 1.3.1 _16
Sun JRE (Linux Production Release) 1.3.1 _15
Sun JRE (Linux Production Release) 1.3.1 _08
Sun JRE (Linux Production Release) 1.3.1 _04
Sun JRE (Linux Production Release) 1.3.1 _01a
Sun JRE (Linux Production Release) 1.3.1 _01
Sun JRE (Linux Production Release) 1.3 .0_05
Sun JRE (Linux Production Release) 1.3 .0_02
Sun JRE (Linux Production Release) 1.3 .0
Sun JRE (Linux Production Release) 1.5.0_11
Sun JRE (Linux Production Release) 1.5.0_10
Sun JRE (Linux Production Release) 1.5.0_09
Sun JRE (Linux Production Release) 1.5.0_08
Sun JRE (Linux Production Release) 1.4.2_13
Sun JRE (Linux Production Release) 1.4.2_12
Sun JRE (Linux Production Release) 1.4.2_11
Sun JRE (Linux Production Release) 1.3.1_20
Sun JDK (Linux Production Release) 1.5 0_10
Sun JDK (Linux Production Release) 1.5 _07
Sun JDK (Linux Production Release) 1.5 _06
Sun JDK (Linux Production Release) 1.5 _02
Sun JDK (Linux Production Release) 1.5 _01
Sun JDK (Linux Production Release) 1.5 .0_05
Sun JDK (Linux Production Release) 1.5.0.0_11
Sun JDK (Linux Production Release) 1.5.0.0_09
Sun JDK (Linux Production Release) 1.5.0.0_08
Sun JDK (Linux Production Release) 1.5.0.0_04
Sun JDK (Linux Production Release) 1.5.0.0_03
Sun Java Web Start 0
+ Sun SDK (Linux Production Release) 1.3
Sun Java 2 Standard Edition SDK 1.3.1 .x
Apple Mac OS X Server 10.4.11
Apple Mac OS X Server 10.4.10
Apple Mac OS X 10.4.11
Apple Mac OS X 10.4.10
Not Vulnerable: Sun SDK (Linux Production Release) 1.4.2
Sun JRE (Linux Production Release) 1.5.0_12
Sun JRE (Linux Production Release) 1.4.2_14
Sun JDK (Linux Production Release) 1.5.0.0_12
Sun Java 2 Standard Edition SDK 5.0 Update 12


 

Privacy Statement
Copyright 2010, SecurityFocus