CVE-2003-1123 : Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information w

Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model.

Published 2003-12-31 05:00:00

Updated 2017-07-11 01:29:46

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2003-1123

Probability of exploitation activity in the next 30 days: 1.68%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 87 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2003-1123

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-1123

http://www.kb.cert.org/vuls/id/393292

Patch;Third Party Advisory;US Government Resource
http://www.securityfocus.com/bid/7824

Exploit;Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/12189
http://securitytracker.com/id?1006935
http://sunsolve.sun.com/search/document.do?assetkey=1-26-55100-1

Patch;Vendor Advisory

Products affected by CVE-2003-1123

SUN » JDK » Version: 1.3.0 02 Linux Edition
cpe:2.3:a:sun:jdk:1.3.0_02:*:linux:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.0 02 Solaris Edition
cpe:2.3:a:sun:jdk:1.3.0_02:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.0 02 Windows Edition
cpe:2.3:a:sun:jdk:1.3.0_02:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 10 Windows Edition
cpe:2.3:a:sun:jdk:1.2.2_10:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 11 Linux Edition
cpe:2.3:a:sun:jdk:1.2.2_11:*:linux:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.0 05 Linux Edition
cpe:2.3:a:sun:jdk:1.3.0_05:*:linux:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.0 05 Solaris Edition
cpe:2.3:a:sun:jdk:1.3.0_05:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.1 04 Windows Edition
cpe:2.3:a:sun:jdk:1.3.1_04:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3 Solaris Edition
cpe:2.3:a:sun:jdk:1.3:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 11 Solaris Edition
cpe:2.3:a:sun:jdk:1.2.2_11:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 11 Windows Edition
cpe:2.3:a:sun:jdk:1.2.2_11:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.0 05 Windows Edition
cpe:2.3:a:sun:jdk:1.3.0_05:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.1 01 Linux Edition
cpe:2.3:a:sun:jdk:1.3.1_01:*:linux:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.1 01 Solaris Edition
cpe:2.3:a:sun:jdk:1.3.1_01:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.4.0 01 Windows Edition
cpe:2.3:a:sun:jdk:1.4.0_01:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.4 Linux Edition
cpe:2.3:a:sun:jdk:1.4:*:linux:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 Solaris Edition
cpe:2.3:a:sun:jdk:1.2.2:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 12 Windows Edition
cpe:2.3:a:sun:jdk:1.2.2_12:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.1 01a Windows Edition
cpe:2.3:a:sun:jdk:1.3.1_01a:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.1 03 Linux Edition
cpe:2.3:a:sun:jdk:1.3.1_03:*:linux:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.4 Solaris Edition
cpe:2.3:a:sun:jdk:1.4:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.4 Windows Edition
cpe:2.3:a:sun:jdk:1.4:*:windows:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 10 Linux Edition
cpe:2.3:a:sun:jdk:1.2.2_10:*:linux:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.2.2 10 Solaris Edition
cpe:2.3:a:sun:jdk:1.2.2_10:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.1 03 Solaris Edition
cpe:2.3:a:sun:jdk:1.3.1_03:*:solaris:*:*:*:*:*
Matching versions
SUN » JDK » Version: 1.3.1 03 Windows Edition
cpe:2.3:a:sun:jdk:1.3.1_03:*:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Update Update2 Linux Edition
cpe:2.3:a:sun:jre:1.3.0:update2:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Linux Edition
cpe:2.3:a:sun:jre:1.3.0:*:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Update Update2 Solaris Edition
cpe:2.3:a:sun:jre:1.3.0:update2:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Update Update2 Windows Edition
cpe:2.3:a:sun:jre:1.3.0:update2:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 Linux Edition
cpe:2.3:a:sun:jre:1.3.1:*:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 Update Update10 Linux Edition
cpe:2.3:a:sun:jre:1.2.2:update10:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 Update Update10 Solaris Edition
cpe:2.3:a:sun:jre:1.2.2:update10:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 Update Update10 Windows Edition
cpe:2.3:a:sun:jre:1.2.2:update10:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 003 Linux Edition
cpe:2.3:a:sun:jre:1.2.2_003:*:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Windows Edition
cpe:2.3:a:sun:jre:1.3.0:*:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 Update Update1 Linux Edition
cpe:2.3:a:sun:jre:1.3.1:update1:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 Update Update1 Solaris Edition
cpe:2.3:a:sun:jre:1.3.1:update1:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.4.0 01 Solaris Edition
cpe:2.3:a:sun:jre:1.4.0_01:*:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.4.0 01 Windows Edition
cpe:2.3:a:sun:jre:1.4.0_01:*:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Solaris Edition
cpe:2.3:a:sun:jre:1.3.0:*:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Update Update5 Windows Edition
cpe:2.3:a:sun:jre:1.3.0:update5:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 03 Solaris Edition
cpe:2.3:a:sun:jre:1.3.1_03:*:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 03 Windows Edition
cpe:2.3:a:sun:jre:1.3.1_03:*:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 011 Linux Edition
cpe:2.3:a:sun:jre:1.2.2_011:*:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 011 Solaris Edition
cpe:2.3:a:sun:jre:1.2.2_011:*:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Update Update4 Windows Edition
cpe:2.3:a:sun:jre:1.3.0:update4:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 Update Update1 Windows Edition
cpe:2.3:a:sun:jre:1.3.1:update1:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 Update Update4 Solaris Edition
cpe:2.3:a:sun:jre:1.3.1:update4:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.4 Linux Edition
cpe:2.3:a:sun:jre:1.4:*:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.4 Solaris Edition
cpe:2.3:a:sun:jre:1.4:*:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 Solaris Edition
cpe:2.3:a:sun:jre:1.2.2:*:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 Windows Edition
cpe:2.3:a:sun:jre:1.2.2:*:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 011 Windows Edition
cpe:2.3:a:sun:jre:1.2.2_011:*:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.2.2 012 Solaris Edition
cpe:2.3:a:sun:jre:1.2.2_012:*:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Update Update5 Linux Edition
cpe:2.3:a:sun:jre:1.3.0:update5:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.0 Update Update5 Solaris Edition
cpe:2.3:a:sun:jre:1.3.0:update5:solaris:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 Update Update4 Windows Edition
cpe:2.3:a:sun:jre:1.3.1:update4:windows:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.3.1 03 Linux Edition
cpe:2.3:a:sun:jre:1.3.1_03:*:linux:*:*:*:*:*
Matching versions
SUN » JRE » Version: 1.4 Windows Edition
cpe:2.3:a:sun:jre:1.4:*:windows:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2003-1123

Exploit prediction scoring system (EPSS) score for CVE-2003-1123

CVSS scores for CVE-2003-1123

References for CVE-2003-1123

Products affected by CVE-2003-1123