CVE-2008-0657

Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Affected Software

Name	Vendor	Start Version	End Version
Jre	Sun	*	1.5.0 (including)
Jre	Sun	*	1.6.0 (including)
Extras for RHEL 4	RedHat	java-1.5.0-sun-0:1.5.0.14-1jpp.2.el4	*
Extras for RHEL 4	RedHat	java-1.5.0-ibm-1:1.5.0.7-1jpp.2.el4	*
Red Hat Network Satellite Server v 5.1	RedHat	java-1.5.0-ibm-1:1.5.0.8-1jpp.1.el4	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.5.0-sun-0:1.5.0.14-1jpp.2.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.5.0-bea-0:1.5.0.14-1jpp.1.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.5.0-ibm-1:1.5.0.7-1jpp.2.el5	*
Sun-java5	Ubuntu	dapper	*
Sun-java5	Ubuntu	edgy	*
Sun-java5	Ubuntu	feisty	*
Sun-java5	Ubuntu	gutsy	*
Sun-java5	Ubuntu	hardy	*
Sun-java5	Ubuntu	intrepid	*
Sun-java5	Ubuntu	jaunty	*
Sun-java5	Ubuntu	upstream	*
Sun-java6	Ubuntu	devel	*
Sun-java6	Ubuntu	feisty	*
Sun-java6	Ubuntu	gutsy	*
Sun-java6	Ubuntu	hardy	*
Sun-java6	Ubuntu	intrepid	*
Sun-java6	Ubuntu	jaunty	*
Sun-java6	Ubuntu	karmic	*
Sun-java6	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-0657
CWE	https://cwe.mitre.org/data/definitions/264.html

Affected Software

References