CVE-2004-1029

Current Description

The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote attackers to load unsafe classes and execute arbitrary code by using the reflection API to access private Java packages.

Basic Data

Published	March 01, 2005
Last Modified	October 11, 2017
Assigner	cve@mitre.org
Data Type	CVE
Data Format	MITRE
Data Version	4.0
Problem Type	CWE-264
CVE Data Version	4.0

Base Metric V2

CVSS 2 - Version	2.0
CVSS 2 - Vector String	AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS 2 - Access Vector	NETWORK
CVSS 2 - Access Complexity	MEDIUM
CVSS 2 - Authentication	NONE
CVSS 2 - Confidentiality Impact	COMPLETE
CVSS 2 - Availability Impact	COMPLETE
CVSS 2 - Base Score	9.3
Severity	HIGH
Exploitability Score	8.6
Impact Score	10.0
Obtain All Privilege	true
Obtain User Privilege	false
Obtain Other Privilege	false

Base Metric V3

No data provided.

Configurations

OR - Configuration 1

Cpe Version	Part	Vendor	Product	Version	Update	Edition	Language	SW Edition	Target SW	Target HW	Other
2.3	Application	Hp	Java Sdk-rte	1.3	*	hp-ux_pa-risc	*	*	*	*	*
2.3	Application	Hp	Java Sdk-rte	1.4	*	hp-ux_pa-risc	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_01	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_01	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_01a	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_02	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_02	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_02	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_03	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_03	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_03	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_04	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_05	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_05	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_05	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_06	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_06	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_06	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_07	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_07	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.3.1_07	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_01	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_02	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_02	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_02	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_03	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_03	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_03	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_4	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_4	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.0_4	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_01	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_01	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_01	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_02	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_02	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_02	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_03	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_03	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.1_03	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_01	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_02	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_03	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_03	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_03	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_04	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_04	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_04	*	windows	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_05	*	linux	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_05	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jdk	1.4.2_05	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update1	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update2	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update2	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update2	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update3	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update4	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update4	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update5	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update5	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.0	update5	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update1	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update1	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update1	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update1a	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update4	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update4	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update8	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update8	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1	update8	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_02	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_02	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_02	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_03	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_03	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_03	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_05	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_05	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_05	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_06	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_06	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_06	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_07	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_07	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_07	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_09	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_09	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.3.1_09	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_01	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_01	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_02	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_02	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_02	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_03	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_03	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_03	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_04	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_04	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.0_04	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1	update3	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1	update3	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1	update3	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1_01	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1_01	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1_01	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1_02	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1_02	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1_02	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.1_07	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	*	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	*	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	*	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update1	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update1	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update1	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update2	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update2	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update2	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update3	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update3	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update3	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update4	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update4	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update4	windows	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update5	linux	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update5	solaris	*	*	*	*	*
2.3	Application	Sun	Jre	1.4.2	update5	windows	*	*	*	*	*
2.3	Application	Symantec	Enterprise Firewall	8.0	*	*	*	*	*	*	*
2.3	Application	Symantec	Enterprise Firewall	8.0	*	solaris	*	*	*	*	*
2.3	Application	Symantec	Enterprise Firewall	8.0	*	windows_2000_nt	*	*	*	*	*
2.3	OS	Conectiva	Linux	10.0	*	*	*	*	*	*	*

OR - Configuration 2

Cpe Version	Part	Vendor	Product	Version	Update	Edition	Language	SW Edition	Target SW	Target HW	Other
2.3	OS	Gentoo	Linux	*	*	*	*	*	*	*	*
2.3	OS	Hp	Hp-ux	11.00	*	*	*	*	*	*	*
2.3	OS	Hp	Hp-ux	11.11	*	*	*	*	*	*	*
2.3	OS	Hp	Hp-ux	11.22	*	*	*	*	*	*	*
2.3	OS	Hp	Hp-ux	11.23	*	ia64_64-bit	*	*	*	*	*

OR - Configuration 3

Cpe Version	Part	Vendor	Product	Version	Update	Edition	Language	SW Edition	Target SW	Target HW	Other	Version Start Including	Version End Including	Version Start Excluding	Version End Excluding
2.3	Hardware	Symantec	Gateway Security 5400	2.0	*	*	*	*	*	*	*
2.3	Hardware	Symantec	Gateway Security 5400	2.0.1	*	*	*	*	*	*	*

Vulnerable Software List

Vendor	Product	Versions
Conectiva	Linux	10.0
Hp	Hp-ux	11.00, 11.11, 11.22, 11.23
Hp	Java Sdk-rte	1.3, 1.4
Symantec	Enterprise Firewall	8.0
Symantec	Gateway Security 5400	2.0, 2.0.1
Sun	Jre	1.3.0, 1.3.1, 1.3.1_02, 1.3.1_03, 1.3.1_05, 1.3.1_06, 1.3.1_07, 1.3.1_09, 1.4, 1.4.0_01, 1.4.0_02, 1.4.0_03, 1.4.0_04, 1.4.1, 1.4.1_01, 1.4.1_02, 1.4.1_07, 1.4.2
Sun	Jdk	1.3.1_01, 1.3.1_01a, 1.3.1_02, 1.3.1_03, 1.3.1_04, 1.3.1_05, 1.3.1_06, 1.3.1_07, 1.4, 1.4.0_01, 1.4.0_02, 1.4.0_03, 1.4.0_4, 1.4.1, 1.4.1_01, 1.4.1_02, 1.4.1_03, 1.4.2, 1.4.2_01, 1.4.2_02, 1.4.2_03, 1.4.2_04, 1.4.2_05
Gentoo	Linux	*

References

Name	Source	URL	Tags
http://jouko.iki.fi/adv/javaplugin.html	http://jouko.iki.fi/adv/javaplugin.html	MISC
APPLE-SA-2005-02-22	http://lists.apple.com/archives/security-announce/2005/Feb/msg00000.html	APPLE
http://rpmfind.net/linux/RPM/suse/updates/9.3/i386/rpm/i586/java-1_4_2-sun-src-1.4.2.08-0.1.i586.html	http://rpmfind.net/linux/RPM/suse/updates/9.3/i386/rpm/i586/java-1_4_2-sun-src-1.4.2.08-0.1.i586.htm	CONFIRM
13271	http://secunia.com/advisories/13271	SECUNIA	Vendor Advisory
29035	http://secunia.com/advisories/29035	SECUNIA	Vendor Advisory
61	http://securityreason.com/securityalert/61	SREASON
101523	http://sunsolve.sun.com/search/document.do?assetkey=1-26-101523-1	SUNALERT	PATCH Vendor Advisory
57591	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1	SUNALERT	PATCH Vendor Advisory
20041122 Sun Java Plugin Arbitrary Package Access Vulnerability	http://www.idefense.com/application/poi/display?id=158&type=vulnerabilities	IDEFENSE
VU#760344	http://www.kb.cert.org/vuls/id/760344	CERT-VN	US Government Resource
12317	http://www.securityfocus.com/bid/12317	BID	PATCH
ADV-2008-0599	http://www.vupen.com/english/advisories/2008/0599	VUPEN	Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg21257249	http://www-1.ibm.com/support/docview.wss?uid=swg21257249	CONFIRM
sdk-jre-applet-restriction-bypass(18188)	https://exchange.xforce.ibmcloud.com/vulnerabilities/18188	XF
oval:org.mitre.oval:def:5674	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5674	OVAL