exploitDog

CVE-2001-1008

Опубликовано: 31 авг. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Java Plugin 1.4 for JRE 1.3 executes signed applets even if the certificate is expired, which could allow remote attackers to conduct unauthorized activities via an applet that has been signed by an expired certificate.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-08/0359.html
Vendor Advisory
http://www.iss.net/security_center/static/7048.php
http://www.securityfocus.com/bid/3245
Exploit
Patch
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2001-08/0359.html
Vendor Advisory
http://www.iss.net/security_center/static/7048.php
http://www.securityfocus.com/bid/3245
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sun:java_plug-in:1.4:*:*:*:*:*:*:*

cpe:2.3:a:sun:jre:1.3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00632

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-hjg8-q4cj-f6qp

github

больше 3 лет назад

Java Plugin 1.4 for JRE 1.3 executes signed applets even if the certificate is expired, which could allow remote attackers to conduct unauthorized activities via an applet that has been signed by an expired certificate.

EPSS

Процентиль: 69%

0.00632

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other