Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2007-5232

Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier, when applet caching is enabled, allows remote attackers to violate the security model for an applet's outbound connections via a DNS rebinding attack.

Published

2007-10-05T23:17:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.0 (MEDIUM)

CVSSv2 Vector

AV:N/AC:H/Au:N/C:P/I:P/A:N

  • Access Vector: NETWORK
  • Access Complexity: HIGH
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: NONE
Exploitability Score

4.9

Impact Score

4.9

Weaknesses
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.5.0 Yes
Application sun jdk 1.6.0 Yes
Application sun jdk 1.6.0 Yes
Application sun jre 1.3.0 Yes
Application sun jre 1.3.0 Yes
Application sun jre 1.3.1 Yes
Application sun jre 1.3.1 Yes
Application sun jre 1.3.1 Yes
Application sun jre 1.3.1 Yes
Application sun jre 1.3.1 Yes
Application sun jre 1.3.1 Yes
Application sun jre 1.4 Yes
Application sun jre 1.4.1 Yes
Application sun jre 1.4.2 Yes
Application sun jre 1.4.2_1 Yes
Application sun jre 1.4.2_3 Yes
Application sun jre 1.4.2_8 Yes
Application sun jre 1.4.2_9 Yes
Application sun jre 1.4.2_10 Yes
Application sun jre 1.4.2_11 Yes
Application sun jre 1.4.2_12 Yes
Application sun jre 1.4.2_13 Yes
Application sun jre 1.4.2_14 Yes
Application sun jre 1.4.2_15 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.5.0 Yes
Application sun jre 1.6.0 Yes
Application sun jre 1.6.0 Yes
Application sun sdk 1.3.1_01 Yes
Application sun sdk 1.3.1_01a Yes
Application sun sdk 1.3.1_16 Yes
Application sun sdk 1.3.1_18 Yes
Application sun sdk 1.3.1_19 Yes
Application sun sdk 1.3.1_20 Yes
Application sun sdk 1.4.2 Yes
Application sun sdk 1.4.2_03 Yes
Application sun sdk 1.4.2_08 Yes
Application sun sdk 1.4.2_09 Yes
Application sun sdk 1.4.2_10 Yes
Application sun sdk 1.4.2_11 Yes
Application sun sdk 1.4.2_12 Yes
Application sun sdk 1.4.2_13 Yes
Application sun sdk 1.4.2_14 Yes
Application sun sdk 1.4.2_15 Yes
References