CVE-2005-4845

CWE-163 documents3 sources
Severity
5.0MEDIUM
EPSS
0.6%
top 29.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Java Plug-in
Timeline
PublishedDec 31
Latest updateMay 1

Description

The Java Plug-in 1.4.2_03 and 1.4.2_04 controls, and the 1.4.2_03 and 1.4.2_04 redirector controls, allow remote attackers to cause a denial of service (Internet Explorer crash) by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet Explorer.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDsun/java_plug-in1.4.2_03, 1.4.2_04+1

🔴Vulnerability Details

2
GHSA
GHSA-f68w-6m4r-r3r6: The Java Plug-in 12022-05-01
CVEList
CVE-2005-4845: The Java Plug-in 12007-06-11
CVE-2005-4845 (MEDIUM CVSS 5) | The Java Plug-in 1.4.2_03 and 1.4.2 | cvebase.io