OpenCVE

Interpretation conflict in the Sun Java Virtual Machine (JVM) allows user-assisted remote attackers to conduct a multi-pin DNS rebinding attack and execute arbitrary JavaScript in an intranet context, when an intranet web server has an HTML document that references a "mayscript=true" Java applet through a local relative URI, which may be associated with different IP addresses by the browser and the JVM.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:H/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Sun	Java Virtual Machine

Configuration 1 [-]

cpe:2.3:a:sun:java_virtual_machine:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://crypto.stanford.edu/dns/dns-rebinding.pdf
http://osvdb.org/40930
https://nvd.nist.gov/vuln/detail/CVE-2007-5375
https://www.cve.org/CVERecord?id=CVE-2007-5375

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-10-11T10:00:00

Updated: 2024-08-07T15:31:57.169Z

Reserved: 2007-10-10T00:00:00

Link: CVE-2007-5375

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-10-11T10:17:00.000

Modified: 2024-11-21T00:37:45.363

Link: CVE-2007-5375

Redhat

Severity : Low

Publid Date: 2007-10-10T00:00:00Z

Links: CVE-2007-5375 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-07-24T00:00:00", "descriptions": [{"lang": "en", "value": "Interpretation conflict in the Sun Java Virtual Machine (JVM) allows user-assisted remote attackers to conduct a multi-pin DNS rebinding attack and execute arbitrary JavaScript in an intranet context, when an intranet web server has an HTML document that references a \"mayscript=true\" Java applet through a local relative URI, which may be associated with different IP addresses by the browser and the JVM."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2008-11-15T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://crypto.stanford.edu/dns/dns-rebinding.pdf"}, {"name": "40930", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/40930"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-5375", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Interpretation conflict in the Sun Java Virtual Machine (JVM) allows user-assisted remote attackers to conduct a multi-pin DNS rebinding attack and execute arbitrary JavaScript in an intranet context, when an intranet web server has an HTML document that references a \"mayscript=true\" Java applet through a local relative URI, which may be associated with different IP addresses by the browser and the JVM."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://crypto.stanford.edu/dns/dns-rebinding.pdf", "refsource": "MISC", "url": "http://crypto.stanford.edu/dns/dns-rebinding.pdf"}, {"name": "40930", "refsource": "OSVDB", "url": "http://osvdb.org/40930"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:31:57.169Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://crypto.stanford.edu/dns/dns-rebinding.pdf"}, {"name": "40930", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/40930"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-5375", "datePublished": "2007-10-11T10:00:00", "dateReserved": "2007-10-10T00:00:00", "dateUpdated": "2024-08-07T15:31:57.169Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sun:java_virtual_machine:*:*:*:*:*:*:*:*", "matchCriteriaId": "7F682941-C157-4F6A-A41E-B878E5ECC780", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Interpretation conflict in the Sun Java Virtual Machine (JVM) allows user-assisted remote attackers to conduct a multi-pin DNS rebinding attack and execute arbitrary JavaScript in an intranet context, when an intranet web server has an HTML document that references a \"mayscript=true\" Java applet through a local relative URI, which may be associated with different IP addresses by the browser and the JVM."}, {"lang": "es", "value": "Conflicto de interpretaci\u00f3n en la M\u00e1quina Virtual de Java (JVM, Java Virtual Machine) permite a atacantes remotos con la complicidad del usuario llevar a cabo un ataque de revinculaci\u00f3n DNS con fijaci\u00f3n m\u00faltiple y ejecutar c\u00f3digo Javascript de su elecci\u00f3n en un contexto de intranet, cuando el servidor web de la intranet tiene un documento HTML que hace referencia a un applet Java \"mayscript=true\" a trav\u00e9s de un URI relativo, lo cual podr\u00eda estar asociado con diferentes direcciones IP entre el navegador y la JVM."}], "id": "CVE-2007-5375", "lastModified": "2024-11-21T00:37:45.363", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2007-10-11T10:17:00.000", "references": [{"source": "cve@mitre.org", "url": "http://crypto.stanford.edu/dns/dns-rebinding.pdf"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/40930"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://crypto.stanford.edu/dns/dns-rebinding.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/40930"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-16"}, {"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}