CVE-2008-3106

Sun Java Runtime Environment <6 - Info Disclosure

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier allows remote attackers to access URLs via unknown vectors involving processing of XML data by an untrusted (1) application or (2) applet, a different vulnerability than CVE-2008-3105.

References (40)

Core 40
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-1044.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=122331139823057&w=2
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10866
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32436
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1020457
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31600
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32018
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200911-02.xml
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32179
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2740
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31320
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce//2008/Sep/msg00007.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33237
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2056/references
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32180
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31736
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/30143
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0594.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31497
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238628-1
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-1045.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33238
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/497041/100/0/threaded
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0790.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0906.html
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-193A.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37386
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT3179
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/43658
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31010

Scores

EPSS 0.1578
EPSS Percentile 94.8%

Details

CWE
CWE-264
Status published
Products (8)
sun/jdk 5.0 update_1 (14 CPE variants)
sun/jdk 6 update_1 (5 CPE variants)
sun/jdk < 5.0
sun/jdk < 6
sun/jre 5.0 update_1 (14 CPE variants)
sun/jre 6 update_1 (5 CPE variants)
sun/jre < 5.0
sun/jre < 6
Published Jul 09, 2008
Tracked Since Feb 18, 2026