1. Home
  2. CVE Database
  3. CVE-2008-3108
HIGH · 10.0

CVE-2008-3108

Buffer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE 5.0 before Update 10, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allows context-dependent attackers t...

Vulnerability Description

Buffer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE 5.0 before Update 10, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allows context-dependent attackers to gain privileges via unspecified vectors related to font processing.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
SunJre1.3.1
SunJdk1.5.0
SunSdk1.3.1

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2008-3108?

CVE-2008-3108 is a vulnerability with a CVSS score of 10.0 (HIGH). Buffer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE 5.0 before Update 10, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allows context-dependent attackers t...

How severe is CVE-2008-3108?

CVE-2008-3108 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-3108?

Check the references section above for vendor advisories and patch information. Affected products include: Sun Jre, Sun Jdk, Sun Sdk.