Vulnerability in Sun Java_enterprise_system

CVE-2007-2435

Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.2_13 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "I…

EPSS: 0.050 (91.1th percentile) — read the EPSS interpretation.

Affected products

Sun Java_enterprise_system
Sun Jre
Sun Sdk
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

cve@mitre.org (x_refsource_MISC)
cve@mitre.org (vendor-advisory, x_refsource_BEA)
cve@mitre.org (Patch, vdb-entry, x_refsource_BID)
cve@mitre.org (vdb-entry, x_refsource_VUPEN)
cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
cve@mitre.org (x_refsource_OSVDB, vdb-entry)
cve@mitre.org (vendor-advisory, x_refsource_GENTOO)
cve@mitre.org (vdb-entry, x_refsource_VUPEN)