Unspecified vulnerability in Java Management Extensions (JMX) in Java JDK and JRE 5.0 Update 3, 1.4.2 and later, 1.3.1 and later allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Jdk | Sun | 1.5.0_03 (including) | 1.5.0_03 (including) |
| Jre | Sun | 1.3.0 (including) | 1.3.0 (including) |
| Jre | Sun | 1.3.0-update1 (including) | 1.3.0-update1 (including) |
| Jre | Sun | 1.3.0-update2 (including) | 1.3.0-update2 (including) |
| Jre | Sun | 1.3.0-update3 (including) | 1.3.0-update3 (including) |
| Jre | Sun | 1.3.0-update4 (including) | 1.3.0-update4 (including) |
| Jre | Sun | 1.3.0-update5 (including) | 1.3.0-update5 (including) |
| Jre | Sun | 1.3.1 (including) | 1.3.1 (including) |
| Jre | Sun | 1.3.1-update1 (including) | 1.3.1-update1 (including) |
| Jre | Sun | 1.3.1-update15 (including) | 1.3.1-update15 (including) |
| Jre | Sun | 1.3.1-update1a (including) | 1.3.1-update1a (including) |
| Jre | Sun | 1.3.1-update4 (including) | 1.3.1-update4 (including) |
| Jre | Sun | 1.3.1-update8 (including) | 1.3.1-update8 (including) |
| Jre | Sun | 1.4.1 (including) | 1.4.1 (including) |
| Jre | Sun | 1.4.2 (including) | 1.4.2 (including) |
| Jre | Sun | 1.4.2_1 (including) | 1.4.2_1 (including) |
| Jre | Sun | 1.4.2_2 (including) | 1.4.2_2 (including) |
| Jre | Sun | 1.4.2_3 (including) | 1.4.2_3 (including) |
| Jre | Sun | 1.4.2_4 (including) | 1.4.2_4 (including) |
| Jre | Sun | 1.4.2_5 (including) | 1.4.2_5 (including) |
| Jre | Sun | 1.4.2_6 (including) | 1.4.2_6 (including) |
| Jre | Sun | 1.4.2_7 (including) | 1.4.2_7 (including) |
| Jre | Sun | 1.4.2_8 (including) | 1.4.2_8 (including) |
| Jre | Sun | 1.5.0 (including) | 1.5.0 (including) |
| Jre | Sun | 1.5.0-update1 (including) | 1.5.0-update1 (including) |
| Jre | Sun | 1.5.0-update2 (including) | 1.5.0-update2 (including) |
| Jre | Sun | 1.5.0-update3 (including) | 1.5.0-update3 (including) |
References
- http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html
- http://secunia.com/advisories/17748
- http://secunia.com/advisories/17847
- http://secunia.com/advisories/18092
- http://secunia.com/advisories/18503
- http://securitytracker.com/id?1015281
- http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102017-1
- http://www-1.ibm.com/support/docview.wss?uid=swg21225628
- http://www.kb.cert.org/vuls/id/931684
- http://www.securityfocus.com/bid/15615
- http://www.vupen.com/english/advisories/2005/2636
- http://www.vupen.com/english/advisories/2005/2675
- http://www.vupen.com/english/advisories/2005/2946
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23252
- http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html
- http://secunia.com/advisories/17748
- http://secunia.com/advisories/17847
- http://secunia.com/advisories/18092
- http://secunia.com/advisories/18503
- http://securitytracker.com/id?1015281
- http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102017-1
- http://www-1.ibm.com/support/docview.wss?uid=swg21225628
- http://www.kb.cert.org/vuls/id/931684
- http://www.securityfocus.com/bid/15615
- http://www.vupen.com/english/advisories/2005/2636
- http://www.vupen.com/english/advisories/2005/2675
- http://www.vupen.com/english/advisories/2005/2946
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23252