Overview
The Sun Java Runtime Environment (JRE) contains a vulnerability that may lead to sensitive information being leaked.
Description
Sun Microsystems describes the Sun JRE as follows: The Java RE provides the libraries, Java virtual machine, and other components necessary for you to run applets and applications written in the Java programming language. It does not contain tools and utilities such as compilers or debuggers for developing applets and applications. |
Impact
An attacker may be able to gain access to sensitive information. |
Solution
Upgrade to the latest versions of Sun SDK and JRE, which are available from http://java.sun.com/j2se/. |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F55100&zone_32=category%3Asecurity
- http://java.sun.com/j2se/1.4.1/docs/guide/platform/sdk-jre.html
- http://securitytracker.com/alerts/2003/Jun/1006935.html
- http://www.iss.net/security_center/static/12189.php
- http://www.secunia.com/advisories/8958/
- http://java.sun.com/security/
- http://java.sun.com/j2se/
Acknowledgements
This vulnerability was discovered by RecipeXperience.
This document was written by Ian A Finlay.
Other Information
| CVE IDs: | None |
| Severity Metric: | 5.63 |
| Date Public: | 2003-06-04 |
| Date First Published: | 2003-06-10 |
| Date Last Updated: | 2003-06-10 18:46 UTC |
| Document Revision: | 14 |