Vulnerabilities > CVE-2007-2906 - Denial-Of-Service vulnerability in SUN Java Embedding Plugin 0.9.6.1

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

sun

NVD

Published: 2007-05-30

Updated: 2008-11-13

Summary

Java Embedding Plugin 0.9.6.1 allows remote attackers to cause a denial of service (browser crash) via a Thread subclass that calls super.run from its run method.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Java Embedding Plugin 0.9.6.1	1

References

http://osvdb.org/40925
http://sourceforge.net/project/shownotes.php?group_id=107955&release_id=501861