Vulnerability Details : CVE-2008-0657
Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.
Threat overview for CVE-2008-0657
Top countries where our scanners detected CVE-2008-0657
Top open port discovered on systems with this issue
80
IPs affected by CVE-2008-0657 719
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2008-0657!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2008-0657
Probability of exploitation activity in the next 30 days: 1.61%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 87 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2008-0657
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2008-0657
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-0657
-
http://www.vmware.com/security/advisories/VMSA-2008-0010.html
VMSA-2008-0010.3
- http://www.gentoo.org/security/en/glsa/glsa-200806-11.xml
- http://security.gentoo.org/glsa/glsa-200804-28.xml
-
http://www.redhat.com/support/errata/RHSA-2008-0123.html
- http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.html
-
http://www.vupen.com/english/advisories/2008/1856/references
Webmail: access your OVH emails on ovhcloud.com | OVHcloud
- http://dev2dev.bea.com/pub/advisory/277
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11505
- http://www.redhat.com/support/errata/RHSA-2008-0210.html
- http://www.vupen.com/english/advisories/2008/1252
-
http://www.vupen.com/english/advisories/2008/0429
-
http://www.securityfocus.com/bid/27650
-
http://www.securitytracker.com/id?1019308
- http://www.redhat.com/support/errata/RHSA-2008-0156.html
- http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-231261-1
Products affected by CVE-2008-0657
- cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:*
- cpe:2.3:a:sun:jre:*:update13:*:*:*:*:*:*
- cpe:2.3:a:sun:jre:*:update1:*:*:*:*:*:*