Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS14aDIyLWZ3NTgtNTZwcM2s8Q
Robocode Arbitrary Code Execution
The Event Dispatch Thread in Robocode before 1.5.1 allows remote attackers to execute arbitrary Java code by using a robot to invoke the SwingUtilities.invokeLater method.
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS14aDIyLWZ3NTgtNTZwcM2s8Q
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: over 1 year ago
Updated: 2 months ago
Identifiers: GHSA-xh22-fw58-56pp, CVE-2007-6382
References:
- https://nvd.nist.gov/vuln/detail/CVE-2007-6382
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39019
- https://github.com/robo-code/robocode/commit/2f2867d24fb28a2478983be57556f2355a774a81
- https://github.com/robo-code/robocode/commit/8c6f5d77e7723583ba069ea611c33f22c1e9603a
- https://github.com/robo-code/robocode/blob/1abe65b65c34a8eb3d23de8f037dafae3c548fa5/versions.md?plain=1#L1880-L1887
- https://github.com/advisories/GHSA-xh22-fw58-56pp
Affected Packages
maven:net.sf.robocode:robocode.core
Versions: < 1.5.1Fixed in: 1.5.1