Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2005-0418

Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06, on Mac OS X, allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file. NOTE: it is highly likely that this item will be MERGED with CVE-2005-0836.

  • Published: May 2, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-0418
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
sun / j2se 1.4.2_02 1.4.2_02.x
sun / j2se 1.4.2_05 1.4.2_05.x
sun / j2se 1.4.2_03 1.4.2_03.x
sun / j2se 1.4.2_04 1.4.2_04.x
sun / j2se 1.4.2_06 1.4.2_06.x
sun / j2se 1.4.2_01 1.4.2_01.x
sun / j2se 1.4.2 1.4.2.x