Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2004-1029

Published: Mar 01, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2004-1029
CWEhttps://cwe.mitre.org/data/definitions/264.html

The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote attackers to load unsafe classes and execute arbitrary code by using the reflection API to access private Java packages.

Affected Software

Name Vendor Start Version End Version
Jre Sun 1.4.0_02 1.4.0_02
Jre Sun 1.3.1_06 1.3.1_06
Enterprise_firewall Symantec 8.0 8.0
Jre Sun 1.3.1_03 1.3.1_03
Jre Sun 1.4.0_04 1.4.0_04
Jdk Sun 1.4.0_4 1.4.0_4
Jdk Sun 1.3.1_06 1.3.1_06
Jdk Sun 1.4.1_03 1.4.1_03
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.4.2_05 1.4.2_05
Jdk Sun 1.4.0_02 1.4.0_02
Jre Sun 1.4.0_01 1.4.0_01
Jdk Sun 1.4.2 1.4.2
Jdk Sun 1.4.2 1.4.2
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.3.1_02 1.3.1_02
Jre Sun 1.4.0_01 1.4.0_01
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.3.1_01 1.3.1_01
Jdk Sun 1.3.1_02 1.3.1_02
Jre Sun 1.4.1 1.4.1
Jdk Sun 1.4.0_03 1.4.0_03
Jre Sun 1.3.1_07 1.3.1_07
Enterprise_firewall Symantec 8.0 8.0
Jdk Sun 1.3.1_03 1.3.1_03
Jre Sun 1.4.2 1.4.2
Jre Sun 1.3.1_06 1.3.1_06
Jdk Sun 1.4.1_02 1.4.1_02
Jdk Sun 1.3.1_07 1.3.1_07
Jdk Sun 1.4 1.4
Jre Sun 1.3.1 1.3.1
Jre Sun 1.4.0_03 1.4.0_03
Jdk Sun 1.3.1_03 1.3.1_03
Jre Sun 1.4.1_02 1.4.1_02
Jre Sun 1.4.1 1.4.1
Jre Sun 1.4.1_02 1.4.1_02
Jre Sun 1.4 1.4
Jre Sun 1.4.1_01 1.4.1_01
Jre Sun 1.4.0_04 1.4.0_04
Jdk Sun 1.4.2_01 1.4.2_01
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.3.1_05 1.3.1_05
Jdk Sun 1.4.2_04 1.4.2_04
Jdk Sun 1.3.1_02 1.3.1_02
Jdk Sun 1.4.1_02 1.4.1_02
Jre Sun 1.3.1 1.3.1
Jre Sun 1.4.2 1.4.2
Jre Sun 1.3.1_05 1.3.1_05
Jre Sun 1.3.1 1.3.1
Jdk Sun 1.4.1 1.4.1
Jre Sun 1.4.1_01 1.4.1_01
Jdk Sun 1.4.2 1.4.2
Jre Sun 1.4 1.4
Jdk Sun 1.3.1_07 1.3.1_07
Jre Sun 1.3.1 1.3.1
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.3.1_03 1.3.1_03
Jre Sun 1.3.0 1.3.0
Jre Sun 1.3.1_03 1.3.1_03
Jdk Sun 1.4.2_03 1.4.2_03
Jdk Sun 1.4.2_03 1.4.2_03
Jre Sun 1.4.0_03 1.4.0_03
Jre Sun 1.4.0_02 1.4.0_02
Jre Sun 1.4.2 1.4.2
Jre Sun 1.3.1 1.3.1
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.3.1_06 1.3.1_06
Jdk Sun 1.4.0_01 1.4.0_01
Jre Sun 1.4.1 1.4.1
Jre Sun 1.3.0 1.3.0
Jdk Sun 1.4.1_01 1.4.1_01
Jdk Sun 1.4 1.4
Jdk Sun 1.4.0_03 1.4.0_03
Jdk Sun 1.3.1_05 1.3.1_05
Enterprise_firewall Symantec 8.0 8.0
Jdk Sun 1.4.0_02 1.4.0_02
Jdk Sun 1.4.1_01 1.4.1_01
Jdk Sun 1.3.1_07 1.3.1_07
Jre Sun 1.3.0 1.3.0
Jre Sun 1.3.1_02 1.3.1_02
Jre Sun 1.4.2 1.4.2
Jre Sun 1.4.1 1.4.1
Jdk Sun 1.4.1_03 1.4.1_03
Jre Sun 1.3.1 1.3.1
Jdk Sun 1.3.1_01a 1.3.1_01a
Jre Sun 1.3.0 1.3.0
Jre Sun 1.3.1 1.3.1
Jre Sun 1.3.1 1.3.1
Jdk Sun 1.4.0_03 1.4.0_03
Jre Sun 1.3.1_09 1.3.1_09
Jre Sun 1.3.1 1.3.1
Jre Sun 1.3.1_07 1.3.1_07
Jre Sun 1.4.1_01 1.4.1_01
Jdk Sun 1.4.2_04 1.4.2_04
Jdk Sun 1.4.2_05 1.4.2_05
Jre Sun 1.4.2 1.4.2
Jre Sun 1.4.2 1.4.2
Jre Sun 1.4.2 1.4.2
Jre Sun 1.3.1_07 1.3.1_07
Jre Sun 1.3.1_09 1.3.1_09
Jdk Sun 1.4.2_04 1.4.2_04
Jdk Sun 1.4.0_4 1.4.0_4
Jre Sun 1.4.2 1.4.2
Jre Sun 1.3.0 1.3.0
Jre Sun 1.3.0 1.3.0
Java_sdk-rte Hp 1.4 1.4
Jre Sun 1.4.2 1.4.2
Jre Sun 1.3.1_06 1.3.1_06
Jdk Sun 1.4.1_03 1.4.1_03
Jdk Sun 1.3.1_04 1.3.1_04
Jdk Sun 1.3.1_05 1.3.1_05
Jdk Sun 1.4.1 1.4.1
Jdk Sun 1.4.0_4 1.4.0_4
Jre Sun 1.3.1_02 1.3.1_02
Jre Sun 1.4.2 1.4.2
Jre Sun 1.3.1_02 1.3.1_02
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.4.1 1.4.1
Jdk Sun 1.4.2_02 1.4.2_02
Jre Sun 1.3.0 1.3.0
Jre Sun 1.3.0 1.3.0
Jre Sun 1.4.0_04 1.4.0_04
Jre Sun 1.3.0 1.3.0
Jre Sun 1.3.1_05 1.3.1_05
Jre Sun 1.4 1.4
Jdk Sun 1.3.1_06 1.3.1_06
Jre Sun 1.4.0_03 1.4.0_03
Jre Sun 1.3.0 1.3.0
Jdk Sun 1.4.2_03 1.4.2_03
Jdk Sun 1.4.1_02 1.4.1_02
Linux Conectiva 10.0 10.0
Jre Sun 1.4.1_02 1.4.1_02
Jre Sun 1.3.0 1.3.0
Jre Sun 1.3.1 1.3.1
Java_sdk-rte Hp 1.3 1.3
Jre Sun 1.3.0 1.3.0
Jdk Sun 1.3.1_01 1.3.1_01
Jre Sun 1.4.1 1.4.1
Jdk Sun 1.4.1_01 1.4.1_01
Jre Sun 1.4.1_07 1.4.1_07
Jdk Sun 1.4 1.4
Jre Sun 1.3.1_03 1.3.1_03
Jdk Sun 1.4.0_02 1.4.0_02
Jre Sun 1.3.1_09 1.3.1_09
Jre Sun 1.3.1_05 1.3.1_05
Jre Sun 1.4.2 1.4.2
Jdk Sun 1.4.2_05 1.4.2_05
Jre Sun 1.4.0_02 1.4.0_02
Jre Sun 1.4.1 1.4.1
Jre Sun 1.3.0 1.3.0

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2023 Aqua Security Software Ltd.   Privacy Policy | Terms of Use