Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS14aDIyLWZ3NTgtNTZwcM2s8Q
Robocode Arbitrary Code Execution
The Event Dispatch Thread in Robocode before 1.5.1 allows remote attackers to execute arbitrary Java code by using a robot to invoke the SwingUtilities.invokeLater
method.
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS14aDIyLWZ3NTgtNTZwcM2s8Q
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: about 2 years ago
Updated: 8 months ago
Identifiers: GHSA-xh22-fw58-56pp, CVE-2007-6382
References:
- https://nvd.nist.gov/vuln/detail/CVE-2007-6382
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39019
- https://github.com/robo-code/robocode/commit/2f2867d24fb28a2478983be57556f2355a774a81
- https://github.com/robo-code/robocode/commit/8c6f5d77e7723583ba069ea611c33f22c1e9603a
- https://github.com/robo-code/robocode/blob/1abe65b65c34a8eb3d23de8f037dafae3c548fa5/versions.md?plain=1#L1880-L1887
- https://github.com/advisories/GHSA-xh22-fw58-56pp
Blast Radius: 0.0
Affected Packages
maven:net.sf.robocode:robocode.core
Dependent packages: 6Dependent repositories: 12
Downloads:
Affected Version Ranges: < 1.5.1
Fixed in: 1.5.1
All affected versions:
All unaffected versions: