What is CVE-2007-2788?

CVE-2007-2788 is a vulnerability in N/a. Published 2007-05-22.

Is CVE-2007-2788 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2007-2788

Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit (JDK) before 1.5.0_11-b03 and 1.6.x before 1.6.0_01-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK an…

EPSS: 0.511 (97.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

26933 (x_refsource_SECUNIA, third-party-advisory)
docs.info.apple.com/article.html (x_refsource_MISC)
[Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1 (mailing-list, x_refsource_MLIST)
26049 (x_refsource_SECUNIA, third-party-advisory)
BEA07-177.00 (vendor-advisory, x_refsource_BEA)
26311 (x_refsource_SECUNIA, third-party-advisory)
20070703 Sun JDK Confusion (mailing-list, x_refsource_VIM)
sun-java-image-bo(34652) (vdb-entry, x_refsource_XF)
200856 (vendor-advisory, x_refsource_SUNALERT)
scary.beasts.org/security/CESA-2006-004.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2007-2788?: CVE-2007-2788 is a vulnerability in N/a. Published 2007-05-22.
Is CVE-2007-2788 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.