CVE-2008-1196

Published: Mar 6, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Stack-based buffer overflow in Java Web Start (javaws.exe) in Sun JDK and JRE 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.2_16 and earlier; allows remote attackers to execute arbitrary code via a crafted JNLP file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

APPLE-SA-2008-09-24

vendor-advisory

x_refsource_APPLE

30676

third-party-advisory

x_refsource_SECUNIA

RHSA-2008:0267

vendor-advisory

x_refsource_REDHAT

SUSE-SA:2008:018

vendor-advisory

x_refsource_SUSE

VU#223028

third-party-advisory

x_refsource_CERT-VN

32018

third-party-advisory

x_refsource_SECUNIA

31586

third-party-advisory

x_refsource_SECUNIA

http://download.novell.com/Download?buildid=q5exhSqeBjA~

x_refsource_CONFIRM

29897

third-party-advisory

x_refsource_SECUNIA

29498

third-party-advisory

x_refsource_SECUNIA

GLSA-200804-28

vendor-advisory

x_refsource_GENTOO

29239

third-party-advisory

x_refsource_SECUNIA

29858

third-party-advisory

x_refsource_SECUNIA

TA08-066A

third-party-advisory

x_refsource_CERT

SUSE-SA:2008:025

vendor-advisory

x_refsource_SUSE

http://support.apple.com/kb/HT3178

x_refsource_CONFIRM

29582

third-party-advisory

x_refsource_SECUNIA

sun-java-webstart-javaws-bo(41026)

vdb-entry

x_refsource_XF

ADV-2008-0770

vdb-entry

x_refsource_VUPEN

oval:org.mitre.oval:def:10412

vdb-entry

signature

x_refsource_OVAL

31497

third-party-advisory

x_refsource_SECUNIA

233327

vendor-advisory

x_refsource_SUNALERT

RHSA-2008:0210

vendor-advisory

x_refsource_REDHAT

31067

third-party-advisory

x_refsource_SECUNIA

http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5033642.html

x_refsource_CONFIRM

30780

third-party-advisory

x_refsource_SECUNIA

ADV-2008-1856

vdb-entry

x_refsource_VUPEN

http://www.vmware.com/security/advisories/VMSA-2008-0010.html

x_refsource_CONFIRM

GLSA-200804-20

vendor-advisory

x_refsource_GENTOO

GLSA-200806-11

vendor-advisory

x_refsource_GENTOO

1019552

vdb-entry

x_refsource_SECTRACK

RHSA-2008:0186

vendor-advisory

x_refsource_REDHAT

http://support.apple.com/kb/HT3179

x_refsource_CONFIRM

RHSA-2008:0555

vendor-advisory

x_refsource_REDHAT

31580

third-party-advisory

x_refsource_SECUNIA

29273

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-1196

Description

Affected Products

References