CVE-2005-3583
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
16/11/2005
Last modified:
03/04/2025
Description
(1) Java Runtime Environment (JRE) and (2) Software Development Kit (SDK) 1.4.2_08, 1.4.2_09, and 1.5.0_05 and possibly other versions allow remote attackers to cause a denial of service (JVM unresponsive) via a crafted serialized object, such as a font object as demonstrated on JBoss.
Impact
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:sun:jre:1.4.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sun:sdk:1.4.2_08:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sun:sdk:1.4.2_09:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sun:sdk:1.5.0_05:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://marc.info/?l=bugtraq&m=113113125121878&w=2
- http://secunia.com/advisories/17478/
- http://securityreason.com/securityalert/143
- http://www.securityfocus.com/bid/15312
- http://marc.info/?l=bugtraq&m=113113125121878&w=2
- http://secunia.com/advisories/17478/
- http://securityreason.com/securityalert/143
- http://www.securityfocus.com/bid/15312