CVE-2005-3905

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/11/2005
Last modified:
03/04/2025

Description

Unspecified vulnerability in reflection APIs in Java SDK and JRE 1.3.1_15 and earlier, 1.4.2_08 and earlier, and JDK and JRE 5.0 Update 3 and earlier allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors, a different vulnerability than CVE-2005-3906. NOTE: this is associated with the "first issue" identified in SUNALERT:102003.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:sun:jdk:1.3:*:solaris:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.0_02:*:linux:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.0_02:*:solaris:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.0_02:*:windows:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.0_05:*:linux:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.0_05:*:windows:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_01:*:linux:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_01:*:solaris:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_01a:*:windows:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_02:*:linux:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_02:*:solaris:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_02:*:windows:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_03:*:linux:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_03:*:solaris:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.3.1_03:*:windows:*:*:*:*:*


References to Advisories, Solutions, and Tools