CVE-2008-3105

Sun Java Runtime Environment <6 - Info Disclosure

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to access URLs or cause a denial of service via unknown vectors involving "processing of XML data" by a trusted application.

References (35)

Core 35
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-1044.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=122331139823057&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32436
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1020457
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31600
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11274
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32018
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200911-02.xml
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32179
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2740
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce//2008/Sep/msg00007.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/43654
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33237
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2056/references
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32180
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/30143
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0594.html
Patch vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238628-1
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-1045.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33238
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/497041/100/0/threaded
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0906.html
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-193A.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37386
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT3179
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/43657
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31010

Scores

EPSS 0.2246
EPSS Percentile 95.9%

Details

CWE
CWE-264
Status published
Products (4)
sun/jdk 6 update_1 (5 CPE variants)
sun/jdk < 6
sun/jre 6 update_1 (5 CPE variants)
sun/jre < 6
Published Jul 09, 2008
Tracked Since Feb 18, 2026