CVE-2007-3655
CVE-2007-3655
Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE 5.0 Update 11 and earlier, and 6.0 Update 1 and earlier, allows remote attackers to execute arbitrary code via a long codebase attribute in a JNLP file.
Productos afectados
n/a · n/aPoCs públicas encontradas — 3
cve_referencewww.exploit-db.com/exploits/30284no verificadoexploitdbwww.exploit-db.com/exploits/30284no verificadoexploitdbwww.exploit-db.com/exploits/4168no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://docs.info.apple.com/article.html?artnum=307177http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2007-July/064552.htmlhttp://osvdb.org/37756http://research.eeye.com/html/advisories/published/AD20070705.htmlhttp://secunia.com/advisories/25981http://secunia.com/advisories/26314http://secunia.com/advisories/26369http://secunia.com/advisories/27266http://secunia.com/advisories/28115http://secunia.com/advisories/29858http://secunia.com/advisories/30780