Home > Vulnerability Database > CVE-2007-3922

Mend.io Vulnerability Database

CVE-2007-3922

Date: July 20, 2007

Unspecified vulnerability in the Java Runtime Environment (JRE) Applet Class Loader in Sun JDK and JRE 5.0 Update 11 and earlier, 6 through 6 Update 1, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to violate the security model for an applet's outbound connections by connecting to certain localhost services running on the machine that loaded the applet.

Severity Score

5.6

Related Resources (31)

Url: http://www.redhat.com/support/errata/RHSA-2007-0829.html

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10387

Url: http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

Url: http://www.vupen.com/english/advisories/2007/2573

Url: http://support.avaya.com/elmodocs2/security/ASA-2007-322.htm

Url: http://www.securitytracker.com/id?1018428

Url: http://www.vupen.com/english/advisories/2007/3861

Url: http://www.redhat.com/support/errata/RHSA-2008-0133.html

Url: http://dev2dev.bea.com/pub/advisory/248

Url: http://secunia.com/advisories/26645

Url: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01269450

Url: http://www.gentoo.org/security/en/glsa/glsa-200709-15.xml

Url: http://secunia.com/advisories/27635

Url: http://secunia.com/advisories/26369

Url: http://www.redhat.com/support/errata/RHSA-2007-0818.html

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/35491

Url: http://docs.info.apple.com/article.html?artnum=307177

Url: https://nvd.nist.gov/vuln/detail/CVE-2007-3922

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1

Url: http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.486841

Url: http://www.novell.com/linux/security/advisories/2007_56_ibmjava.html

Url: http://www.vupen.com/english/advisories/2007/4224

Url: http://www.vupen.com/english/advisories/2007/3009

Url: http://secunia.com/advisories/26933

Url: http://secunia.com/advisories/30805

Url: http://secunia.com/advisories/27266

Url: http://www.securityfocus.com/bid/25054

Url: http://secunia.com/advisories/26314

Url: http://secunia.com/advisories/28115

Url: http://secunia.com/advisories/26631

Url: https://www.mend.io/vulnerability-database/CVE-2007-3922

Severity Score

5.6

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

CVSS v3.1

Base Score:	5.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	6.8
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2007-3922

Date: July 20, 2007

Severity Score

Related Resources (31)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?