CVE-2005-1080

Sun SDK 1.4.2 and 1.5 - Directory Traversal via Jar Filename

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in the Java Archive Tool (Jar) utility in J2SE SDK 1.4.2 and 1.5, and OpenJDK, allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in filenames in a .jar file.

References (22)

Core 22
Core References
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=594497
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=601823
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0857.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1007.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0806.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1006.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1091.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1020.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0807.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0858.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1021.html
Mailing List mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127603032617644&w=2
Mailing List mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127602564508766&w=2
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2015-0158.html
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:212
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111331593310508&w=2
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/14902
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0808.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0809.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13083
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0854.html
Exploit, Vendor Advisory x_refsource_misc
http://www.securiteam.com/securitynews/5IP0C0AFGW.html

Scores

EPSS 0.0413
EPSS Percentile 88.8%

Details

Status published
Products (2)
sun/sdk 1.4.2
sun/sdk 1.5
Published May 02, 2005
Tracked Since Feb 18, 2026