Back to search
CVE-2005-3905
Published: Nov 30, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Unspecified vulnerability in reflection APIs in Java SDK and JRE 1.3.1_15 and earlier, 1.4.2_08 and earlier, and JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors, a different vulnerability than CVE-2005-3906. NOTE: this is associated with the "first issue" identified in SUNALERT:102003.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
17847
third-party-advisory
x_refsource_SECUNIA
18503
third-party-advisory
x_refsource_SECUNIA
18435
third-party-advisory
x_refsource_SECUNIA
15615
vdb-entry
x_refsource_BID
102003
vendor-advisory
x_refsource_SUNALERT
ADV-2005-2946
vdb-entry
x_refsource_VUPEN
ADV-2005-2675
vdb-entry
x_refsource_VUPEN
http://www-1.ibm.com/support/docview.wss?uid=swg21225628
x_refsource_CONFIRM
ADV-2005-2636
vdb-entry
x_refsource_VUPEN
GLSA-200601-10
vendor-advisory
x_refsource_GENTOO
VU#974188
third-party-advisory
x_refsource_CERT-VN
1015280
vdb-entry
x_refsource_SECTRACK
APPLE-SA-2005-11-30
vendor-advisory
x_refsource_APPLE
sun-reflection-api-elevate-privileges(23251)
vdb-entry
x_refsource_XF
17748
third-party-advisory
x_refsource_SECUNIA
18092
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now