Back to search
CVE-2007-0243
Published: Jan 17, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in Sun JDK and Java Runtime Environment (JRE) 5.0 Update 9 and earlier, SDK and JRE 1.4.2_12 and earlier, and SDK and JRE 1.3.1_18 and earlier allows applets to gain privileges via a GIF image with a block with a 0 width field, which triggers memory corruption.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20070117 ZDI-07-005: Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability
mailing-list
x_refsource_BUGTRAQ
102760
vendor-advisory
x_refsource_SUNALERT
http://docs.info.apple.com/article.html?artnum=307177
x_refsource_MISC
24468
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0166
vendor-advisory
x_refsource_REDHAT
VU#388289
third-party-advisory
x_refsource_CERT-VN
HPSBUX02196
vendor-advisory
x_refsource_HP
26049
third-party-advisory
x_refsource_SECUNIA
ADV-2007-1814
vdb-entry
x_refsource_VUPEN
24202
third-party-advisory
x_refsource_SECUNIA
20070121 Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability Prove Of Concept Exploit
mailing-list
x_refsource_BUGTRAQ
25283
third-party-advisory
x_refsource_SECUNIA
32834
vdb-entry
x_refsource_OSVDB
24189
third-party-advisory
x_refsource_SECUNIA
SSRT071318
vendor-advisory
x_refsource_HP
SUSE-SA:2007:045
vendor-advisory
x_refsource_SUSE
APPLE-SA-2007-12-14
vendor-advisory
x_refsource_APPLE
2158
third-party-advisory
x_refsource_SREASON
1017520
vdb-entry
x_refsource_SECTRACK
RHSA-2007:0956
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:11073
vdb-entry
signature
x_refsource_OVAL
26645
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0167
vendor-advisory
x_refsource_REDHAT
26119
third-party-advisory
x_refsource_SECUNIA
23757
third-party-advisory
x_refsource_SECUNIA
22085
vdb-entry
x_refsource_BID
ADV-2007-4224
vdb-entry
x_refsource_VUPEN
24993
third-party-advisory
x_refsource_SECUNIA
28115
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0261
vendor-advisory
x_refsource_REDHAT
http://www.zerodayinitiative.com/advisories/ZDI-07-005.html
x_refsource_MISC
ADV-2007-0211
vdb-entry
x_refsource_VUPEN
27203
third-party-advisory
x_refsource_SECUNIA
jre-gif-bo(31537)
vdb-entry
x_refsource_XF
ADV-2007-0936
vdb-entry
x_refsource_VUPEN
GLSA-200702-08
vendor-advisory
x_refsource_GENTOO
GLSA-200702-07
vendor-advisory
x_refsource_GENTOO
TA07-022A
third-party-advisory
x_refsource_CERT
BEA07-172.00
vendor-advisory
x_refsource_BEA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now