CVE-2005-1080
Advisory lineage Upstream: 0 Downstream: 14
Modified
Published: 12 Apr 2005, 04:00
Last modified:07 Aug 2024, 21:35
Vulnerability Summary
Overall Risk (default)
medium
31/100 CVSS Score
5 MEDIUM
v2.0 (nvd)
EPSS Score
4.13% LOW
4% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected
Timeline
12 Apr 2005, 04:00
Published
Vulnerability first disclosed
07 Aug 2024, 21:35
Last Modified
Vulnerability information updated
Description
Directory traversal vulnerability in the Java Archive Tool (Jar) utility in J2SE SDK 1.4.2 and 1.5, and OpenJDK, allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in filenames in a .jar file.
CVSS Metrics
- v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS Trends
Current EPSS score: 4.13%• Percentile: 89%
Affected Systems
- sun•sdk
1.4.2 | 1.5
References (22)
- http://rhn.redhat.com/errata/RHSA-2015-0857.html
- http://rhn.redhat.com/errata/RHSA-2015-1007.html
- https://bugzilla.redhat.com/show_bug.cgi?id=594497
- http://rhn.redhat.com/errata/RHSA-2015-0806.html
- http://rhn.redhat.com/errata/RHSA-2015-1006.html
- http://marc.info/?l=oss-security&m=127602564508766&w=2
- https://bugzilla.redhat.com/show_bug.cgi?id=601823
- http://advisories.mageia.org/MGASA-2015-0158.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2015:212
- http://marc.info/?l=bugtraq&m=111331593310508&w=2
- http://rhn.redhat.com/errata/RHSA-2015-1091.html
- http://marc.info/?l=oss-security&m=127603032617644&w=2
- http://secunia.com/advisories/14902
- http://rhn.redhat.com/errata/RHSA-2015-1020.html
- http://rhn.redhat.com/errata/RHSA-2015-0807.html
- http://rhn.redhat.com/errata/RHSA-2015-0858.html
- http://rhn.redhat.com/errata/RHSA-2015-1021.html
- http://rhn.redhat.com/errata/RHSA-2015-0808.html
- http://rhn.redhat.com/errata/RHSA-2015-0809.html
- http://www.securityfocus.com/bid/13083
- http://rhn.redhat.com/errata/RHSA-2015-0854.html
- http://www.securiteam.com/securitynews/5IP0C0AFGW.html