漏洞信息详情
Sun JDK JRE SDK 安全特征问题漏洞
- CNNVD编号:CNNVD-200803-084
- 危害等级: 中危
- CVE编号: CVE-2008-1195
- 漏洞类型: 安全特征问题
- 发布时间: 2008-03-06
- 威胁类型: 远程
- 更新时间: 2019-08-08
- 厂 商: sun
- 漏洞来源: The vendor disclos...
漏洞简介
Sun JDK和JRE 6 Update 4以及之前的版本,5.0 Update 14以及之前的版本,SDK和JRE 1.4.2_16以及之前的版本中的安全特征问题漏洞,远程攻击者借助未明向量,访问本地主机上的任意网络服务。该未明向量与Javascript和Java APIs有关。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Sun JDK 5.0 Update 8
Sun 118666-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118666-16-1
Sun 118667-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118667-16-1
Sun 118668-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118668-16-1
Sun 118669-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118669-16-1
Sun JDK and JRE 5.0 Update 15
http://java.sun.com/javase/downloads/index_jdk5.jsp
Sun JRE (Windows Production Release) 1.4.2_16
Sun SDK and JRE 1.4.2_17
http://java.sun.com/j2se/1.4.2/download.HTML
Sun JDK 5.0 Update 7
Sun 118666-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118666-16-1
Sun 118667-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118667-16-1
Sun 118668-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118668-16-1
Sun 118669-16
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118669-16-1
Sun JDK and JRE 5.0 Update 15
http://java.sun.com/javase/downloads/index_jdk5.jsp
Sun JDK 6.0 Update 4
Sun 125136-07
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -125136-07-1
Sun 125137-07
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -125137-07-1
Sun 125138-07
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -125138-07-1
Sun 125139-07
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -125139-07-1
Sun JDK and JRE 6 Update 5
http://java.sun.com/javase/downloads/index.jsp
Sun JRE 6.0 Update 2
Sun JDK and JRE 6 Update 5
http://java.sun.com/javase/downloads/index.jsp
参考网址
来源:CONFIRM
链接:http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0128
来源:MANDRIVA
链接:http://www.mandriva.com/security/advisories?name=MDVSA-2008:080
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2008/0998/references
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2008/1793/references
来源:SECUNIA
链接:http://secunia.com/advisories/29526
来源:CONFIRM
链接:http://www.mozilla.org/security/announce/2008/mfsa2008-18.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/29547
来源:GENTOO
链接:http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.HTML
来源:SUNALERT
链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-233326-1
来源:GENTOO
链接:http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml
来源:SECUNIA
链接:http://secunia.com/advisories/29273
来源:CERT
链接:http://www.us-cert.gov/cas/techalerts/TA08-066A.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/32018
来源:SECTRACK
链接:http://www.securitytracker.com/id?1019553
来源:SECUNIA
链接:http://secunia.com/advisories/30676
来源:SUNALERT
链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1
来源:SECUNIA
链接:http://secunia.com/advisories/29897
来源:SECUNIA
链接:http://secunia.com/advisories/29498
来源:OVAL
链接:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9486
来源:REDHAT
链接:http://www.redhat.com/support/errata/RHSA-2008-0267.HTML
来源:XF
链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/41030
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00000.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/29858
来源:SECUNIA
链接:http://secunia.com/advisories/29239
来源:CONFIRM
链接:https://www.vmware.com/security/advisories/VMSA-2008-0010.HTML
来源:UBUNTU
链接:http://www.ubuntu.com/usn/usn-592-1
来源:GENTOO
链接:http://security.gentoo.org/glsa/glsa-200804-28.xml
来源:REDHAT
链接:http://www.redhat.com/support/errata/RHSA-2008-0186.HTML
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00002.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/29560
来源:SECUNIA
链接:http://secunia.com/advisories/29582
来源:SECUNIA
链接:http://secunia.com/advisories/30780
来源:BUGTRAQ
链接:http://www.securityfocus.com/archive/1/490196/100/0/threaded
来源:SECUNIA
链接:http://secunia.com/advisories/31497
来源:CONFIRM
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT3179
来源:REDHAT
链接:http://www.redhat.com/support/errata/RHSA-2008-0210.HTML
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2008/1856/references
来源:SECUNIA
链接:http://secunia.com/advisories/30620
来源:SECUNIA
链接:http://secunia.com/advisories/29645
来源:CONFIRM
链接:http://www.vmware.com/security/advisories/VMSA-2008-0010.HTML
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2008/0770/references
来源:SECUNIA
链接:http://secunia.com/advisories/29541
来源:CONFIRM
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT3178
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce//2008/Sep/msg00008.HTML
来源:CERT
链接:http://www.us-cert.gov/cas/techalerts/TA08-087A.HTML
受影响实体
- Sun Jdk:1.4.2_16
- Sun Jdk:5.0_update_14
- Sun Jdk:6_update_4
- Sun Jre:1.4.2_16
- Sun Jre:5.0_update_14
补丁
暂无
评论