Oval Definition:	oval:org.mitre.oval:def:5924
Revision Date: 2010-01-11 Version: 2 Title: Sun Java Web Start and Java Plug-in JAR File Privilege Escalation Vulnerability Description: Java Web Start (JWS) and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier allows remote attackers to make unauthorized network connections and hijack HTTP sessions via a crafted file that validates as both a GIF and a Java JAR file, aka "GIFAR" and CR 6707535. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2008-5343 Platform(s): VMWare ESX Server 3.5 Product(s): Definition Synopsis AND VMware ESX Server 3.5.0 is installed AND Patch ESX350-200910403-SG is not installed
BACK