CVE-2008-3440 (Java) |
|
| BugsAlert Home > CVE-2008-3440 (Java) | |
|
Sun Java before 1.6.0_03 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3440 Learn more about CVE-2008-3440 (Java) |
|
| Tags: cve-2008-3440 java | |
Related Items |
|
|
CVE-2008-4909 (compact_cms)
|
|
|
CVE-2007-0074 (serverprotect)
|
|
|
CVE-2008-5209 (admidio)
|
|
|
Major fix to DNS Vulnerability Impacts Debian
|
|
|
Sava's Link Manager Two Vulnerabilities
|
|
|
CVE-2008-2850 (trailscout_module)
|
|
|
CVE-2008-3225 (Joomla)
|
|
