Vulnerabilities > CVE-2003-1123 - Unspecified vulnerability in SUN JDK and JRE

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

sun

exploit available

NVD

Published: 2003-12-31

Updated: 2017-07-11

Summary

Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN JDK 1.2.2 SUN JDK 1.2.2_10 SUN JDK 1.2.2_11 SUN JDK 1.2.2_12 SUN JDK 1.3 SUN JDK 1.3.0_02 SUN JDK 1.3.0_05 SUN JDK 1.3.1_01 SUN JDK 1.3.1_01A SUN JDK 1.3.1_03 SUN JDK 1.3.1_04 SUN JDK 1.4 SUN JDK 1.4.0_01 SUN JRE 1.2.2 SUN JRE 1.2.2_003 SUN JRE 1.2.2_011 SUN JRE 1.2.2_012 SUN JRE 1.3.0 SUN JRE 1.3.1 SUN JRE 1.3.1_03 SUN JRE 1.4 SUN JRE 1.4.0_01	60

Exploit-Db

description	Sun JRE/SDK 1.x Untrusted Applet Java Security Model Violation Vulnerability. CVE-2003-1123. Local exploits for multiple platform
id	EDB-ID:22732
last seen	2016-02-02
modified	2003-06-05
published	2003-06-05
reporter	Marc Schoenefeld
source	https://www.exploit-db.com/download/22732/
title	Sun JRE/SDK 1.x Untrusted Applet Java Security Model Violation Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References