Vulnerabilities > SUN > Java WEB Start
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-11-04 | CVE-2008-4910 | Improper Input Validation vulnerability in SUN Java web Start The BasicService in Sun Java Web Start allows remote attackers to execute arbitrary programs on a client machine via a file:// URL argument to the showDocument method. | 10.0 |
| 2007-09-20 | CVE-2007-5019 | Buffer Errors vulnerability in SUN Java web Start, JRE and SDK Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment (JRE) 1.6.0_X allows remote attackers to have an unknown impact via a long argument to the dnsResolve (isInstalled.dnsResolve) method. | 10.0 |
| 2006-08-23 | CVE-2006-4302 | Permissions, Privileges, and Access Controls vulnerability in SUN J2Se and Java web Start The Java Plug-in J2SE 1.3.0_02 through 5.0 Update 5, and Java Web Start 1.0 through 1.2 and J2SE 1.4.2 through 5.0 Update 5, allows remote attackers to exploit vulnerabilities by specifying a JRE version that contain vulnerabilities. | 5.0 |
| 2002-12-31 | CVE-2002-2005 | Unspecified vulnerability in SUN Java web Start 1.0/1.0.1/1.0.101 Unknown vulnerability in Java web start 1.0.1_01, 1.0.1, 1.0 and 1.0.1.01 (HP-UX 11.x only) allows attackers to gain access to restricted resources via unknown attack vectors. | 7.5 |