CVE-2008-3110

Published Jul 9, 2008

Last updated 6 years ago

Overview

Description: Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to obtain sensitive information by using an applet to read information from another applet.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-264

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:sun:jdk:*:update_6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94A87B01-2F20-4E1C-8572-395A96C35D79",
            "versionEndIncluding": "6"
          },
          {
            "criteria": "cpe:2.3:a:sun:jdk:6:update_1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C9F6EA8-6A88-4485-89A3-0FDF84AB51DA"
          },
          {
            "criteria": "cpe:2.3:a:sun:jdk:6:update_2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67E0818A-3675-4293-89FE-5001E36C0F38"
          },
          {
            "criteria": "cpe:2.3:a:sun:jdk:6:update_3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95112B98-B6B2-43FA-BF76-F518649CF3BE"
          },
          {
            "criteria": "cpe:2.3:a:sun:jdk:6:update_4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A18341A-3688-48E7-95AD-283EC9C95B4A"
          },
          {
            "criteria": "cpe:2.3:a:sun:jdk:6:update_5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E301C59A-47F5-4861-9091-D0002CBA5B7A"
          },
          {
            "criteria": "cpe:2.3:a:sun:jre:*:update_6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A1D1D91-B29F-4335-A7DA-FF988F626907",
            "versionEndIncluding": "6"
          },
          {
            "criteria": "cpe:2.3:a:sun:jre:6:update_1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F98D2BD-2AC1-4C4C-8A10-71093DCBC4E5"
          },
          {
            "criteria": "cpe:2.3:a:sun:jre:6:update_2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDC09958-5286-4C16-AB6F-63B4BDD902B3"
          },
          {
            "criteria": "cpe:2.3:a:sun:jre:6:update_3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDE1E9E9-85EF-4ACA-902B-00225EB4324F"
          },
          {
            "criteria": "cpe:2.3:a:sun:jre:6:update_4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0CDBFCB-42EA-4F19-A98D-7696B0D526CB"
          },
          {
            "criteria": "cpe:2.3:a:sun:jre:6:update_5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53DCFF2A-77A7-41DB-A712-9B6D1FD2574A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References