CVE-2003-1301JRE vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
1.2%
top 21.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN JRE
Timeline
PublishedDec 31
Latest updateApr 29

Description

Sun Java Runtime Environment (JRE) 1.x before 1.4.2_11 and 1.5.x before 1.5.0_06, and as used in multiple web browsers, allows remote attackers to cause a denial of service (application crash) via deeply nested object arrays, which are not properly handled by the garbage collector and trigger invalid memory accesses.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDsun/jre12 versions+11

🔴Vulnerability Details

2
GHSA
GHSA-898p-fmh8-7xpx: Sun Java Runtime Environment (JRE) 12022-04-29
CVEList
CVE-2003-1301: Sun Java Runtime Environment (JRE) 12006-05-26
CVE-2003-1301 — SUN JRE vulnerability | cvebase