Unrated severityNVD Advisory· Published Aug 17, 2007· Updated Jun 16, 2026
CVE-2007-4381
CVE-2007-4381
Description
Unspecified vulnerability in the font parsing implementation in Sun JDK and JRE 5.0 Update 9 and earlier, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to perform unauthorized actions via an applet that grants certain privileges to itself.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:sun:jdk:*:update9:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sun:jdk:*:update9:*:*:*:*:*:*range: <=1.5.0
- (no CPE)range: <=5.0 Update 9
cpe:2.3:a:sun:jre:*:update14:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sun:jre:*:update14:*:*:*:*:*:*range: <=1.4.2
- (no CPE)range: <=5.0 Update 9
cpe:2.3:a:sun:sdk:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sun:sdk:*:*:*:*:*:*:*:*range: <=1.4.2_14
- (no CPE)range: <=1.4.2_14
Patches
Vulnerability mechanics
References
29- dev2dev.bea.com/pub/advisory/248nvd
- docs.info.apple.com/article.htmlnvd
- lists.apple.com/archives/Security-announce/2007/Dec/msg00001.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2008-04/msg00010.htmlnvd
- secunia.com/advisories/26402nvd
- secunia.com/advisories/26631nvd
- secunia.com/advisories/26933nvd
- secunia.com/advisories/27203nvd
- secunia.com/advisories/27716nvd
- secunia.com/advisories/28056nvd
- secunia.com/advisories/28115nvd
- secunia.com/advisories/28777nvd
- secunia.com/advisories/28880nvd
- secunia.com/advisories/29340nvd
- secunia.com/advisories/29897nvd
- sunsolve.sun.com/search/document.donvd
- support.novell.com/techcenter/psdb/0c36b6416afc3868b8b1b9012955e323.htmlnvd
- www.gentoo.org/security/en/glsa/glsa-200709-15.xmlnvd
- www.redhat.com/support/errata/RHSA-2007-0956.htmlnvd
- www.redhat.com/support/errata/RHSA-2007-1086.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0100.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0132.htmlnvd
- www.securityfocus.com/bid/25340nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2910nvd
- www.vupen.com/english/advisories/2007/3009nvd
- www.vupen.com/english/advisories/2007/4224nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36061nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10290nvd
News mentions
0No linked articles in our index yet.