Back to search
CVE-2007-3922
Published: Jul 21, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Unspecified vulnerability in the Java Runtime Environment (JRE) Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to certain localhost services running on the machine that loaded the applet.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2007:0818
vendor-advisory
x_refsource_REDHAT
26933
third-party-advisory
x_refsource_SECUNIA
http://docs.info.apple.com/article.html?artnum=307177
x_refsource_MISC
102995
vendor-advisory
x_refsource_SUNALERT
26314
third-party-advisory
x_refsource_SECUNIA
BEA07-177.00
vendor-advisory
x_refsource_BEA
SSA:2007-243-01
vendor-advisory
x_refsource_SLACKWARE
30805
third-party-advisory
x_refsource_SECUNIA
1018428
vdb-entry
x_refsource_SECTRACK
http://support.avaya.com/elmodocs2/security/ASA-2007-322.htm
x_refsource_CONFIRM
26369
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2007-12-14
vendor-advisory
x_refsource_APPLE
ADV-2007-2573
vdb-entry
x_refsource_VUPEN
26645
third-party-advisory
x_refsource_SECUNIA
sun-java-class-unauthorized-access(35491)
vdb-entry
x_refsource_XF
SSRT071465
vendor-advisory
x_refsource_HP
HPSBMA02288
vendor-advisory
x_refsource_HP
ADV-2007-4224
vdb-entry
x_refsource_VUPEN
ADV-2007-3861
vdb-entry
x_refsource_VUPEN
ADV-2007-3009
vdb-entry
x_refsource_VUPEN
27266
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2007:056
vendor-advisory
x_refsource_SUSE
GLSA-200709-15
vendor-advisory
x_refsource_GENTOO
25054
vdb-entry
x_refsource_BID
28115
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10387
vdb-entry
signature
x_refsource_OVAL
RHSA-2007:0829
vendor-advisory
x_refsource_REDHAT
26631
third-party-advisory
x_refsource_SECUNIA
27635
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0133
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now