Vulnerabilities > SUN > JRE > 1.4.2.08

DATE CVE VULNERABILITY TITLE RISK
2009-11-05 CVE-2009-3869 Buffer Errors vulnerability in SUN Jdk, JRE and SDK
Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a crafted argument, aka Bug Id 6872357.
network
sun microsoft CWE-119
critical
 9.3
9.3
2009-11-05 CVE-2009-3868 Buffer Errors vulnerability in SUN Jdk, JRE and SDK
Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 does not properly parse color profiles, which allows remote attackers to gain privileges via a crafted image file, aka Bug Id 6862970.
network
sun microsoft CWE-119
critical
 9.3
9.3
2009-11-05 CVE-2009-3867 Buffer Errors vulnerability in SUN Jdk, JRE and SDK
Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a long file: URL in an argument, aka Bug Id 6854303.
network
sun microsoft CWE-119
critical
 9.3
9.3