Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2008-1187

Unspecified vulnerability in Sun Java Runtime Environment (JRE) and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.2_16 and earlier allows remote attackers to cause a denial of service (JRE crash) and possibly execute arbitrary code via unknown vectors related to XSLT transforms.

Published

2008-03-06T21:44:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: PARTIAL
Exploitability Score

8.6

Impact Score

6.4

Weaknesses
  • Type: Primary
    CWE-264
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application sun jdk ≤ 5.0 Yes
Application sun jdk ≤ 6 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 5.0 Yes
Application sun jdk 6 Yes
Application sun jdk 6 Yes
Application sun jdk 6 Yes
Application sun jdk 6 Yes
Application sun jre ≤ 1.4.2_14 Yes
Application sun jre ≤ 5.0 Yes
Application sun jre ≤ 6 Yes
Application sun jre 1.4.2_01 Yes
Application sun jre 1.4.2_1 Yes
Application sun jre 1.4.2_02 Yes
Application sun jre 1.4.2_03 Yes
Application sun jre 1.4.2_04 Yes
Application sun jre 1.4.2_05 Yes
Application sun jre 1.4.2_06 Yes
Application sun jre 1.4.2_07 Yes
Application sun jre 1.4.2_10 Yes
Application sun jre 1.4.2_11 Yes
Application sun jre 1.4.2_12 Yes
Application sun jre 1.4.2_13 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 5.0 Yes
Application sun jre 6 Yes
Application sun jre 6 Yes
Application sun jre 6 Yes
Application sun jre 6 Yes
Application sun sdk ≤ 1.4.2_16 Yes
Application sun sdk 1.4.2 Yes
Application sun sdk 1.4.2_01 Yes
Application sun sdk 1.4.2_1 Yes
Application sun sdk 1.4.2_02 Yes
Application sun sdk 1.4.2_03 Yes
Application sun sdk 1.4.2_04 Yes
Application sun sdk 1.4.2_05 Yes
Application sun sdk 1.4.2_06 Yes
Application sun sdk 1.4.2_07 Yes
Application sun sdk 1.4.2_08 Yes
Application sun sdk 1.4.2_09 Yes
Application sun sdk 1.4.2_10 Yes
Application sun sdk 1.4.2_11 Yes
Application sun sdk 1.4.2_12 Yes
Application sun sdk 1.4.2_13 Yes
Application sun sdk 1.4.2_14 Yes
Application sun sdk 1.4.2_15 Yes
References