Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-1134

4 documents4 sources

Severity

2.1LOW

EPSS

0.3%

top 43.47%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

SUN Java

Timeline

PublishedDec 31

Latest updateApr 29

Description

Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local users to cause a denial of service (JVM crash), possibly by calling the ClassDepth function with a null parameter, which causes a crash instead of generating a null pointer exception.

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDsun/java1.3.1, 1.4.1, 1.4.2+2

🔴Vulnerability Details

GHSA

GHSA-5qr3-r482-pgmx: Sun Java 1↗2022-04-29

▶

CVEList

CVE-2003-1134: Sun Java 1↗2005-05-10

▶

💥Exploits & PoCs

Exploit-DB

Sun Microsystems Java Virtual Machine 1.x - Security Manager Denial of Service↗2003-10-26

▶