Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2007-3698

The Java Secure Socket Extension (JSSE) in Sun JDK and JRE 6 Update 1 and earlier, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.2_11 through 1.4.2_14, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service (CPU consumption) via certain SSL/TLS handshake requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.168
EPSS Ranking 94.7%
CVSS Severity
CVSS v2 Score 7.8
References
Products affected by CVE-2007-3698
  • Sun » Jdk » Version: 1.5.0
    cpe:2.3:a:sun:jdk:1.5.0
  • Sun » Jdk » Version: 1.6.0
    cpe:2.3:a:sun:jdk:1.6.0
  • Sun » Jre » Version: 1.4.2_11
    cpe:2.3:a:sun:jre:1.4.2_11
  • Sun » Jre » Version: 1.4.2_12
    cpe:2.3:a:sun:jre:1.4.2_12
  • Sun » Jre » Version: 1.4.2_13
    cpe:2.3:a:sun:jre:1.4.2_13
  • Sun » Jre » Version: 1.4.2_14
    cpe:2.3:a:sun:jre:1.4.2_14
  • Sun » Jre » Version: 1.5.0
    cpe:2.3:a:sun:jre:1.5.0
  • Sun » Jre » Version: 1.6.0
    cpe:2.3:a:sun:jre:1.6.0
  • Sun » Sdk » Version: 1.4.2_11
    cpe:2.3:a:sun:sdk:1.4.2_11
  • Sun » Sdk » Version: 1.4.2_12
    cpe:2.3:a:sun:sdk:1.4.2_12
  • Sun » Sdk » Version: 1.4.2_13
    cpe:2.3:a:sun:sdk:1.4.2_13
  • Sun » Sdk » Version: 1.4.2_14
    cpe:2.3:a:sun:sdk:1.4.2_14


Contact Us

Shodan ® - All rights reserved