OVAL Reference oval:org.mitre.oval:def:11592

Oval Definition:

oval:org.mitre.oval:def:11592

Revision Date:	2010-09-06	Version:	5
Title:	Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, and SDK and JRE 1.4.2_15 and earlier does not properly enforce access restrictions for untrusted applications, which allows user-assisted remote attackers to obtain sensitive information (the Java Web Start cache location) via an untrusted application, aka "three vulnerabilities."
Description:	Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, and SDK and JRE 1.4.2_15 and earlier does not properly enforce access restrictions for untrusted applications, which allows user-assisted remote attackers to obtain sensitive information (the Java Web Start cache location) via an untrusted application, aka "three vulnerabilities."
Family:	unix	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2007-5238
Platform(s):	Red Hat Enterprise Linux Extras 3 Red Hat Enterprise Linux Extras 4 Red Hat Enterprise Linux Extras 5	Product(s):
Definition Synopsis
AND redhat-release is version 3 java-1.4.2-ibm-plugin is earlier than 0:1.4.2.10-1jpp.2.el3 OR java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.10-1jpp.2.el3 OR java-1.4.2-ibm-devel is earlier than 0:1.4.2.10-1jpp.2.el3 OR java-1.4.2-ibm is earlier than 0:1.4.2.10-1jpp.2.el3 OR java-1.4.2-ibm-src is earlier than 0:1.4.2.10-1jpp.2.el3 OR java-1.4.2-ibm-demo is earlier than 0:1.4.2.10-1jpp.2.el3 OR redhat-release is version 4 java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.6-1jpp.2.el4 OR java-1.5.0-ibm-devel is earlier than 1:1.5.0.6-1jpp.2.el4 OR java-1.5.0-sun-plugin is earlier than 0:1.5.0.13-1jpp.1.el4 OR java-1.4.2-ibm-devel is earlier than 0:1.4.2.10-1jpp.2.el4 OR java-1.5.0-sun is earlier than 0:1.5.0.13-1jpp.1.el4 OR java-1.4.2-ibm-src is earlier than 0:1.4.2.10-1jpp.2.el4 OR java-1.4.2-ibm-plugin is earlier than 0:1.4.2.10-1jpp.2.el4 OR java-1.5.0-ibm-plugin is earlier than 1:1.5.0.6-1jpp.2.el4 OR java-1.4.2-ibm-demo is earlier than 0:1.4.2.10-1jpp.2.el4 OR java-1.5.0-ibm-src is earlier than 1:1.5.0.6-1jpp.2.el4 OR java-1.5.0-ibm-demo is earlier than 1:1.5.0.6-1jpp.2.el4 OR java-1.4.2-ibm is earlier than 0:1.4.2.10-1jpp.2.el4 OR java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.10-1jpp.2.el4 OR java-1.5.0-ibm is earlier than 1:1.5.0.6-1jpp.2.el4 OR java-1.5.0-sun-demo is earlier than 0:1.5.0.13-1jpp.1.el4 OR java-1.5.0-sun-jdbc is earlier than 0:1.5.0.13-1jpp.1.el4 OR java-1.5.0-sun-src is earlier than 0:1.5.0.13-1jpp.1.el4 OR java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.10-1jpp.2.el4 OR java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.6-1jpp.2.el4 OR java-1.5.0-sun-devel is earlier than 0:1.5.0.13-1jpp.1.el4 OR redhat-release is version 5 java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.5.0-ibm-devel is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.5.0-sun-plugin is earlier than 0:1.5.0.13-1jpp.1.el5 OR java-1.4.2-ibm-devel is earlier than 0:1.4.2.10-1jpp.2.el5 OR java-1.5.0-sun is earlier than 0:1.5.0.13-1jpp.1.el5 OR java-1.4.2-ibm-src is earlier than 0:1.4.2.10-1jpp.2.el5 OR java-1.4.2-ibm-plugin is earlier than 0:1.4.2.10-1jpp.2.el5 OR java-1.5.0-ibm-plugin is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.4.2-ibm-demo is earlier than 0:1.4.2.10-1jpp.2.el5 OR java-1.5.0-ibm-src is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.5.0-ibm-demo is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.4.2-ibm is earlier than 0:1.4.2.10-1jpp.2.el5 OR java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.10-1jpp.2.el5 OR java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.5.0-ibm is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.5.0-sun-demo is earlier than 0:1.5.0.13-1jpp.1.el5 OR java-1.5.0-sun-jdbc is earlier than 0:1.5.0.13-1jpp.1.el5 OR java-1.5.0-sun-src is earlier than 0:1.5.0.13-1jpp.1.el5 OR java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.10-1jpp.2.el5 OR java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.6-1jpp.1.el5 OR java-1.5.0-sun-devel is earlier than 0:1.5.0.13-1jpp.1.el5

BACK