CVE-2001-1008

3 documents3 sources
Severity
7.5HIGH
EPSS
0.6%
top 29.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN Java Plug-inSUN JRE
Timeline
PublishedAug 31
Latest updateApr 30

Description

Java Plugin 1.4 for JRE 1.3 executes signed applets even if the certificate is expired, which could allow remote attackers to conduct unauthorized activities via an applet that has been signed by an expired certificate.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDsun/jre1.3.0

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-hjg8-q4cj-f6qp: Java Plugin 12022-04-30
CVEList
CVE-2001-1008: Java Plugin 12003-04-02
CVE-2001-1008 (HIGH CVSS 7.5) | Java Plugin 1.4 for JRE 1.3 execute | cvebase.io