CVE Vulnerabilities

CVE-2003-1301

Published: Dec 31, 2003 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Sun Java Runtime Environment (JRE) 1.x before 1.4.2_11 and 1.5.x before 1.5.0_06, and as used in multiple web browsers, allows remote attackers to cause a denial of service (application crash) via deeply nested object arrays, which are not properly handled by the garbage collector and trigger invalid memory accesses.

Affected Software

Name Vendor Start Version End Version
Jre Sun 1.4.2_7 1.4.2_7
Jre Sun 1.5.0 1.5.0
Jre Sun 1.4.2_4 1.4.2_4
Jre Sun 1.4.2_2 1.4.2_2
Jre Sun 1.5.0 1.5.0
Jre Sun 1.4.2_1 1.4.2_1
Jre Sun 1.4.2_8 1.4.2_8
Jre Sun 1.5.0 1.5.0
Jre Sun 1.4.2_10 1.4.2_10
Jre Sun 1.4.2_6 1.4.2_6
Jre Sun 1.5.0 1.5.0
Jre Sun 1.5.0 1.5.0
Jre Sun 1.4.2_3 1.4.2_3
Jre Sun 1.5.0 1.5.0
Jre Sun 1.4.2 1.4.2
Jre Sun 1.4.2_9 1.4.2_9
Jre Sun 1.4.2_5 1.4.2_5

References