CVE-2007-2435

Impact:
Critical
Public Date:
2007-04-30
Bugzilla:
239660: CVE-2007-2435 javaws vulnerabilities

The MITRE CVE dictionary describes this issue as:

Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.2_13 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect Use of System Classes" and probably related to support for JNLP files.

Find out more about CVE-2007-2435 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux AS version 3 Extras (java-1.4.2-ibm) RHSA-2007:0817 2007-08-06
Red Hat Enterprise Linux Supplementary 5 (java-1.5.0-ibm) RHSA-2007:0829 2007-08-07
Red Hat Satellite 5.0 (RHEL v.4 AS) RHSA-2008:0261 2008-05-20
Red Hat Satellite v 4.2 (RHEL v.4 AS) RHSA-2008:0524 2008-06-30
Red Hat Satellite v 4.2 (RHEL v.3 AS) RHSA-2008:0524 2008-06-30
Red Hat Enterprise Linux AS version 4 Extras (java-1.4.2-ibm) RHSA-2007:0817 2007-08-06
Red Hat Enterprise Linux Supplementary 5 (java-1.4.2-ibm) RHSA-2007:0817 2007-08-06
Red Hat Enterprise Linux AS version 4 Extras (java-1.5.0-ibm) RHSA-2007:0829 2007-08-07

Mitigation

Last Modified

CVE description copyright © 2017, The MITRE Corporation