CVE-2005-3904

Unspecified vulnerability in Java Management Extensions (JMX) in Java JDK and JRE 5.0 Update 3, 1.4.2 and later, 1.3.1 and later allows remote attackers to escape the Java sandbox and access arbitrary files or execute arbitrary application via unknown attack vectors.

Published: Nov 30, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-3904
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sun / jre	1.4.2_7	1.4.2_7.x
sun / jre	1.3.1	1.3.1.x
sun / jre	1.3.1-update1a	1.3.1-update1a.x
sun / jre	1.5.0	1.5.0.x
sun / jre	1.4.2_4	1.4.2_4.x
sun / jre	1.3.0-update1	1.3.0-update1.x
sun / jre	1.4.2_2	1.4.2_2.x
sun / jre	1.5.0-update2	1.5.0-update2.x
sun / jre	1.3.0-update4	1.3.0-update4.x
sun / jre	1.3.1-update8	1.3.1-update8.x
sun / jre	1.4.2_1	1.4.2_1.x
sun / jre	1.4.2_8	1.4.2_8.x
sun / jre	1.3.1-update1	1.3.1-update1.x
sun / jre	1.3.0-update5	1.3.0-update5.x
sun / jre	1.3.1-update4	1.3.1-update4.x
sun / jdk	1.5.0_03	1.5.0_03.x
sun / jre	1.5.0-update3	1.5.0-update3.x
sun / jre	1.3.0	1.3.0.x
sun / jre	1.3.0-update2	1.3.0-update2.x
sun / jre	1.3.0-update3	1.3.0-update3.x
sun / jre	1.4.2	1.4.2.x
sun / jre	1.3.1-update15	1.3.1-update15.x
sun / jre	1.5.0-update1	1.5.0-update1.x
sun / jre	1.4.1	1.4.1.x
sun / jre	1.4.2_3	1.4.2_3.x
sun / jre	1.4.2_5	1.4.2_5.x
sun / jre	1.4.2_6	1.4.2_6.x

Vulnerability Database

289,689

CVE-2005-3904