Vulnerability Name:

CVE-2007-4381 (CCN-36061)

Assigned:2007-08-15
Published:2007-08-15
Updated:2017-09-29
Summary:Unspecified vulnerability in the font parsing implementation in Sun JDK and JRE 5.0 Update 9 and earlier, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to perform unauthorized actions via an applet that grants certain privileges to itself.
Additional information regarding this CVE can be found at SecurityFocus: http://www.securityfocus.com/bid/25340
CVSS v3 Severity:9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.6 High (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C)
5.6 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: CCN
Type: BugTraq Mailing List, Mon Oct 29 2007 - 16:21:03 CDT
Memory overwrites in JVM via malformed TrueType font

Source: MITRE
Type: CNA
CVE-2007-4381

Source: BEA
Type: UNKNOWN
BEA07-177.00

Source: CCN
Type: Apple Web site
About the security content of Java Release 6 for Mac OS X 10.4

Source: MISC
Type: UNKNOWN
http://docs.info.apple.com/article.html?artnum=307177

Source: APPLE
Type: UNKNOWN
APPLE-SA-2007-12-14

Source: SUSE
Type: UNKNOWN
SUSE-SA:2008:025

Source: CCN
Type: RHSA-2007-0829
Critical: java-1.5.0-ibm security update

Source: CCN
Type: RHSA-2007-0956
Moderate: java-1.5.0-bea security update

Source: CCN
Type: RHSA-2007-1086
Moderate: java-1.4.2-bea security update

Source: CCN
Type: RHSA-2008-0100
Moderate: java-1.4.2-bea security update

Source: CCN
Type: RHSA-2008-0132
Critical: java-1.4.2-ibm security update

Source: CCN
Type: SA26402
Sun JRE Font Parsing Vulnerability

Source: SECUNIA
Type: UNKNOWN
26402

Source: CCN
Type: SA26631
BEA JRockit Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
26631

Source: SECUNIA
Type: UNKNOWN
26933

Source: SECUNIA
Type: UNKNOWN
27203

Source: SECUNIA
Type: UNKNOWN
27716

Source: SECUNIA
Type: UNKNOWN
28056

Source: CCN
Type: SA28115
Mac OS X Java Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
28115

Source: SECUNIA
Type: UNKNOWN
28777

Source: SECUNIA
Type: UNKNOWN
28880

Source: SECUNIA
Type: UNKNOWN
29340

Source: SECUNIA
Type: UNKNOWN
29897

Source: CCN
Type: SECTRACK ID: 1018576
Java Runtime Environment Font Parsing Bug Lets Remote Applets Gain Elevated Privileges

Source: CCN
Type: Sun Alert ID: 103024
Vulnerability in the Java Runtime Environment Font Parsing Code may Allow an Untrusted Applet to Elevate Privileges

Source: SUNALERT
Type: UNKNOWN
103024

Source: CCN
Type: ASA-2007-365
Vulnerability in the Java Runtime Environment Font Parsing Code may Allow an Untrusted Applet to Elevate Privileges (Sun 103024)

Source: CCN
Type: ASA-2007-465
java-1.5.0-bea security update (RHSA-2007-0956)

Source: CCN
Type: ASA-2008-116
java-1.4.2-bea security update (RHSA-2008-0100)

Source: CONFIRM
Type: UNKNOWN
http://support.novell.com/techcenter/psdb/0c36b6416afc3868b8b1b9012955e323.html

Source: CCN
Type: GLSA-200709-15
BEA JRockit: Multiple vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-200709-15

Source: REDHAT
Type: UNKNOWN
RHSA-2007:0956

Source: REDHAT
Type: UNKNOWN
RHSA-2007:1086

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0100

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0132

Source: BID
Type: UNKNOWN
25340

Source: CCN
Type: BID-25340
Sun Java Runtime Environment Font Parsing Remote Privilege Escalation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1018576

Source: VUPEN
Type: UNKNOWN
ADV-2007-2910

Source: VUPEN
Type: UNKNOWN
ADV-2007-3009

Source: VUPEN
Type: UNKNOWN
ADV-2007-4224

Source: XF
Type: UNKNOWN
sun-java-font-privilege-escalation(36061)

Source: XF
Type: UNKNOWN
sun-java-font-privilege-escalation(36061)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10290

Source: CCN
Type: BEA07-177.00
Multiple Security Vulnerabilities in the Java Runtime Environment

Source: SUSE
Type: SUSE-SA:2008:025
IBM Java security update

Vulnerable Configuration:Configuration 1:
  • cpe:/a:sun:jdk:*:update9:*:*:*:*:*:* (Version <= 1.5.0)
  • OR cpe:/a:sun:jre:*:update14:*:*:*:*:*:* (Version <= 1.4.2)
  • OR cpe:/a:sun:sdk:*:*:*:*:*:*:*:* (Version <= 1.4.2_14)

  • Configuration RedHat 1:
  • cpe:/a:redhat:rhel_extras:4:*:*:*:*:*:*:*

  • Configuration RedHat 2:
  • cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:*

  • Configuration RedHat 3:
  • cpe:/a:redhat:rhel_extras:3:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:sun:sdk:1.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.1:*:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.4.2:-:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:-:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2:*:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update3:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update7:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update8:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update9:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_11:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_12:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_13:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_14:*:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:-:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update1:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update2:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update3:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update4:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update5:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update6:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update7:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update7_b03:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update8:*:*:*:*:*:*
  • OR cpe:/a:sun:jdk:1.5.0:update9:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.4.2:update1:linux:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.4.2:update2:linux:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.4.2:update3:linux:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.4.2:update4:linux:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.4.2:update5:linux:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update1:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update2:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update4:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update5:*:*:*:*:*:*
  • OR cpe:/a:sun:jre:1.5.0:update6:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_03:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_08:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_09:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_10:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_04:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_02:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_05:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_06:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_07:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.2_01:*:*:*:*:*:*:*
  • OR cpe:/a:sun:sdk:1.4.0_01:*:*:*:*:*:*:*
  • AND
  • cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/a:redhat:rhel_extras:3:*:*:*:*:*:*:*
  • OR cpe:/a:redhat:rhel_extras:4:*:*:*:*:*:*:*
  • OR cpe:/o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*
  • OR cpe:/a:oracle:jrockit:r27.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20074381
    V
    CVE-2007-4381
    2022-05-20
    oval:org.opensuse.security:def:31750
    P
    Security update for java-1_7_1-ibm (Moderate) (in QA)
    2022-01-04
    oval:org.opensuse.security:def:31701
    P
    Security update for pcre (Moderate)
    2021-11-10
    oval:org.opensuse.security:def:42127
    P
    Security update for glibc (Moderate)
    2021-10-12
    oval:org.opensuse.security:def:31274
    P
    Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
    2021-09-23
    oval:org.opensuse.security:def:31253
    P
    Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
    2021-08-25
    oval:org.opensuse.security:def:31645
    P
    Security update for ovmf (Important)
    2021-06-22
    oval:org.opensuse.security:def:31642
    P
    Security update for webkit2gtk3 (Important)
    2021-06-17
    oval:org.opensuse.security:def:31200
    P
    Security update for java-1_8_0-openjdk (Moderate)
    2021-06-15
    oval:org.opensuse.security:def:31188
    P
    Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:31189
    P
    Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:26047
    P
    Security update for xen (Important)
    2021-05-12
    oval:org.opensuse.security:def:31345
    P
    Security update for krb5-appl (Important)
    2021-02-19
    oval:org.opensuse.security:def:32008
    P
    Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important)
    2020-12-07
    oval:org.opensuse.security:def:35720
    P
    java-1_4_2-ibm-1.4.2_sr13.10-0.4.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:41974
    P
    java-1_4_2-ibm-1.4.2_sr13.3-1.1.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35567
    P
    java-1_4_2-ibm-1.4.2_sr13.3-1.1.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:31903
    P
    Security update for fontconfig (Low)
    2020-12-01
    oval:org.opensuse.security:def:25119
    P
    Security update for libssh2_org (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25748
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25697
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26720
    P
    java-1_4_2-ibm on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31855
    P
    Security update for crash (Low)
    2020-12-01
    oval:org.opensuse.security:def:31942
    P
    Security update for gnome-session (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25130
    P
    Security update for ntp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25797
    P
    Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:25271
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:25848
    P
    Security update for flex, at, bogofilter, cyrus-imapd, kdelibs4, libQtWebKit4, libbonobo, mdbtools, netpbm, openslp, sgmltool, virtuoso, libqt5-qtwebkit (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31402
    P
    Security update for perl-DBD-mysql (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32493
    P
    bzip2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31406
    P
    Security update for perl-PlRPC (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31964
    P
    Security update for icu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25194
    P
    Security update for adns (Important)
    2020-12-01
    oval:org.opensuse.security:def:25836
    P
    Security update for LibreOffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25272
    P
    Security update for vino (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25901
    P
    Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:31489
    P
    Security update for python (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32532
    P
    java-1_4_2-ibm on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31498
    P
    Security update for python-numpy (Important)
    2020-12-01
    oval:org.opensuse.security:def:25322
    P
    Security update for tigervnc (Critical)
    2020-12-01
    oval:org.opensuse.security:def:25850
    P
    Security update for libreoffice (Low)
    2020-12-01
    oval:org.opensuse.security:def:25283
    P
    Security update for SUSE Manager Client Tools (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25950
    P
    Security update for evince (Important)
    2020-12-01
    oval:org.opensuse.security:def:31035
    P
    Security update for jpeg (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31555
    P
    Security update for sqlite3 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32646
    P
    curl on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25403
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:25894
    P
    Security update for gstreamer-0_10-plugins-bad (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25347
    P
    Security update for mariadb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25989
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31036
    P
    Security update for kdebase4-workspace
    2020-12-01
    oval:org.opensuse.security:def:32685
    P
    java-1_4_2-ibm on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25460
    P
    Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26532
    P
    cron on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25475
    P
    Security update for libssh (Important)
    2020-12-01
    oval:org.opensuse.security:def:26003
    P
    Security update for yaml-cpp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31047
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31798
    P
    Security update for OpenEXR (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25544
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26567
    P
    java-1_4_2-ibm on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25556
    P
    Security update for ntp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31121
    P
    Security update for krb5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31789
    P
    Security update for MozillaFirefox (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31854
    P
    Security update for cracklib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25118
    P
    Security update for lftp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25695
    P
    Security update for gcc9 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25613
    P
    Security update for libsolv (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26685
    P
    dhcp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31811
    P
    Security update for apache2 (Important)
    2020-12-01
    oval:org.mitre.oval:def:22301
    P
    ELSA-2008:0100: java-1.4.2-bea security update (Moderate)
    2014-05-26
    oval:org.mitre.oval:def:22641
    P
    ELSA-2007:0956: java-1.5.0-bea security update (Moderate)
    2014-05-26
    oval:org.mitre.oval:def:21747
    P
    ELSA-2008:0132: java-1.4.2-ibm security update (Critical)
    2014-05-26
    oval:org.mitre.oval:def:21855
    P
    ELSA-2007:0829: java-1.5.0-ibm security update (Critical)
    2014-05-26
    oval:org.mitre.oval:def:10290
    V
    Unspecified vulnerability in the font parsing implementation in Sun JDK and JRE 5.0 Update 9 and earlier, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to perform unauthorized actions via an applet that grants certain privileges to itself.
    2010-09-06
    oval:com.redhat.rhsa:def:20080132
    P
    RHSA-2008:0132: java-1.4.2-ibm security update (Critical)
    2008-03-20
    oval:com.redhat.rhsa:def:20080100
    P
    RHSA-2008:0100: java-1.4.2-bea security update (Moderate)
    2008-03-11
    oval:com.redhat.rhsa:def:20070956
    P
    RHSA-2007:0956: java-1.5.0-bea security update (Moderate)
    2007-11-29
    oval:com.redhat.rhsa:def:20070829
    P
    RHSA-2007:0829: java-1.5.0-ibm security update (Critical)
    2007-08-07
    BACK
    sun jdk * update9
    sun jre * update14
    sun sdk *
    sun sdk 1.4.0
    sun sdk 1.4.1
    sun jre 1.4.2
    sun jre 1.5.0
    sun sdk 1.4.2
    sun jre 1.5.0 update3
    sun jre 1.5.0 update7
    sun jre 1.5.0 update8
    sun jre 1.5.0 update9
    sun sdk 1.4.2_11
    sun sdk 1.4.2_12
    sun sdk 1.4.2_13
    sun sdk 1.4.2_14
    sun jdk 1.5.0
    sun jdk 1.5.0 update1
    sun jdk 1.5.0 update2
    sun jdk 1.5.0 update3
    sun jdk 1.5.0 update4
    sun jdk 1.5.0 update5
    sun jdk 1.5.0 update6
    sun jdk 1.5.0 update7
    sun jdk 1.5.0 update7_b03
    sun jdk 1.5.0 update8
    sun jdk 1.5.0 update9
    sun jre 1.4.2 update1
    sun jre 1.4.2 update2
    sun jre 1.4.2 update3
    sun jre 1.4.2 update4
    sun jre 1.4.2 update5
    sun jre 1.5.0 update1
    sun jre 1.5.0 update2
    sun jre 1.5.0 update4
    sun jre 1.5.0 update5
    sun jre 1.5.0 update6
    sun sdk 1.4.2_03
    sun sdk 1.4.2_08
    sun sdk 1.4.2_09
    sun sdk 1.4.2_10
    sun sdk 1.4.2_04
    sun sdk 1.4.2_02
    sun sdk 1.4.2_05
    sun sdk 1.4.2_06
    sun sdk 1.4.2_07
    sun sdk 1.4.2_01
    sun sdk 1.4.0_01
    gentoo linux *
    redhat rhel extras 3
    redhat rhel extras 4
    novell suse linux enterprise server 10 sp2
    oracle jrockit r27.3.1
    novell open enterprise server *