CVE-2005-3907
Java JDK and JRE 5.0 Update 3 and earlier - Remote Sandbox Escape via Untrusted Applet
Title source: manualDescription
Unspecified vulnerability in Java Runtime Environment in Java JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary applications via unknown attack vectors involving untrusted Java applets.
References (11)
Core 11
Core References
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/355284
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17847
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15615
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015282
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2675
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2636
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23250
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102050-1
Mailing List vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2005/Nov/msg00004.html
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17748
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18092
Scores
EPSS
0.0535
EPSS Percentile
90.2%
Details
Status
published
Products (14)
sun/jdk
1.5.0_03 (3 CPE variants)
sun/jre
1.3.0 (6 CPE variants)
sun/jre
1.3.1 (6 CPE variants)
sun/jre
1.4.1
sun/jre
1.4.2
sun/jre
1.4.2_1
sun/jre
1.4.2_2
sun/jre
1.4.2_3
sun/jre
1.4.2_4
sun/jre
1.4.2_5
... and 4 more
Published
Nov 30, 2005
Tracked Since
Feb 18, 2026