1
Candidate: CVE-2008-2086
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2086
5
http://sunsolve.sun.com/search/document.do?assetkey=1-26-244988-1
7
Sun Java Web Start and Java Plug-in for JDK and JRE 6 Update 10 and
8
earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18
9
and earlier allow remote attackers to execute arbitrary code via a crafted
10
jnlp file that modifies the (1) java.home, (2) java.ext.dirs, or (3)
11
user.home System Properties, aka "Java Web Start File Inclusion" and CR
21
upstream_sun-java6: released (6-11)
23
gutsy_sun-java6: needs-triage (reached end-of-life)
24
hardy_sun-java6: released (6-17-0ubuntu1.8.04)
25
intrepid_sun-java6: released (6-14-0ubuntu1.8.10)
26
jaunty_sun-java6: not-affected (6-11-0ubuntu1)
27
karmic_sun-java6: not-affected (6-11-0ubuntu1)
28
devel_sun-java6: not-affected (6-11-0ubuntu1)
31
upstream_sun-java5: released (1.5.0-17)
32
dapper_sun-java5: ignored (reached end-of-life)
33
gutsy_sun-java5: needs-triage (reached end-of-life)
34
hardy_sun-java5: not-affected (1.5.0-22-0ubuntu0.8.04)
35
intrepid_sun-java5: not-affected (1.5.0-19-0ubuntu0.8.10)
36
jaunty_sun-java5: not-affected (1.5.0-17-0ubuntu1)
41
upstream_openjdk-6: needs-triage
44
hardy_openjdk-6: not-affected (Web Start only)
45
intrepid_openjdk-6: not-affected (Web Start only)
46
jaunty_openjdk-6: not-affected (Web Start only)
47
karmic_openjdk-6: not-affected (Web Start only)
48
devel_openjdk-6: not-affected (Web Start only)
51
upstream_java: needs-triage