Vulnerability Description
Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment (JRE) 1.6.0_X allows remote attackers to have an unknown impact via a long argument to the dnsResolve (isInstalled.dnsResolve) method.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Java Web Start | All versions |
| Sun | Jre | 1.6.0_0 |
| Sun | Sdk | 1.3.0 |
Related Weaknesses (CWE)
References
- http://osvdb.org/38297
- http://www.securityfocus.com/bid/25734Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36682
- https://www.exploit-db.com/exploits/4432
- http://osvdb.org/38297
- http://www.securityfocus.com/bid/25734Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36682
- https://www.exploit-db.com/exploits/4432
FAQ
What is CVE-2007-5019?
CVE-2007-5019 is a vulnerability with a CVSS score of 10.0 (HIGH). Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment (JRE) 1.6.0_X allows remote attackers to have an unknown impact via a long argument to the dnsResolve (isInstalled...
How severe is CVE-2007-5019?
CVE-2007-5019 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5019?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Java Web Start, Sun Jre, Sun Sdk.