CVE-2008-3105

Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to access URLs or cause a denial of service via unknown vectors involving processing of XML data by a trusted application.

Affected Software

Name	Vendor	Start Version	End Version
Jdk	Sun	*	6 (including)
Jdk	Sun	6-update_1 (including)	6-update_1 (including)
Jdk	Sun	6-update_2 (including)	6-update_2 (including)
Jdk	Sun	6-update_3 (including)	6-update_3 (including)
Jdk	Sun	6-update_4 (including)	6-update_4 (including)
Jdk	Sun	6-update_5 (including)	6-update_5 (including)
Jre	Sun	*	6 (including)
Jre	Sun	6-update_1 (including)	6-update_1 (including)
Jre	Sun	6-update_2 (including)	6-update_2 (including)
Jre	Sun	6-update_3 (including)	6-update_3 (including)
Jre	Sun	6-update_4 (including)	6-update_4 (including)
Jre	Sun	6-update_5 (including)	6-update_5 (including)
Extras for RHEL 4	RedHat	java-1.6.0-sun-1:1.6.0.7-1jpp.2.el4	*
Extras for RHEL 4	RedHat	java-1.6.0-ibm-1:1.6.0.2-1jpp.2.el4	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-sun-1:1.6.0.7-1jpp.1.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-ibm-1:1.6.0.2-1jpp.2.el5	*
Openjdk-6	Ubuntu	devel	*
Openjdk-6	Ubuntu	hardy	*
Openjdk-6	Ubuntu	intrepid	*
Openjdk-6	Ubuntu	jaunty	*
Openjdk-6	Ubuntu	karmic	*
Openjdk-6	Ubuntu	upstream	*
Sun-java6	Ubuntu	feisty	*
Sun-java6	Ubuntu	gutsy	*
Sun-java6	Ubuntu	hardy	*
Sun-java6	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-3105
CWE	https://cwe.mitre.org/data/definitions/264.html

Affected Software

References