CVE-2008-3109
Published Jul 9, 2008
Last updated 6 years ago
Overview
- Description
- Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sun:jdk:*:update_6:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "94A87B01-2F20-4E1C-8572-395A96C35D79",
"versionEndIncluding": "6"
},
{
"criteria": "cpe:2.3:a:sun:jdk:6:update_1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C9F6EA8-6A88-4485-89A3-0FDF84AB51DA"
},
{
"criteria": "cpe:2.3:a:sun:jdk:6:update_2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "67E0818A-3675-4293-89FE-5001E36C0F38"
},
{
"criteria": "cpe:2.3:a:sun:jdk:6:update_3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95112B98-B6B2-43FA-BF76-F518649CF3BE"
},
{
"criteria": "cpe:2.3:a:sun:jdk:6:update_4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A18341A-3688-48E7-95AD-283EC9C95B4A"
},
{
"criteria": "cpe:2.3:a:sun:jdk:6:update_5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E301C59A-47F5-4861-9091-D0002CBA5B7A"
},
{
"criteria": "cpe:2.3:a:sun:jre:*:update_6:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2A1D1D91-B29F-4335-A7DA-FF988F626907",
"versionEndIncluding": "6"
},
{
"criteria": "cpe:2.3:a:sun:jre:6:update_1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0F98D2BD-2AC1-4C4C-8A10-71093DCBC4E5"
},
{
"criteria": "cpe:2.3:a:sun:jre:6:update_2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CDC09958-5286-4C16-AB6F-63B4BDD902B3"
},
{
"criteria": "cpe:2.3:a:sun:jre:6:update_3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BDE1E9E9-85EF-4ACA-902B-00225EB4324F"
},
{
"criteria": "cpe:2.3:a:sun:jre:6:update_4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0CDBFCB-42EA-4F19-A98D-7696B0D526CB"
},
{
"criteria": "cpe:2.3:a:sun:jre:6:update_5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53DCFF2A-77A7-41DB-A712-9B6D1FD2574A"
}
],
"operator": "OR"
}
]
}
]