5

CVE-2006-4302

The Java Plug-in J2SE 1.3.0_02 through 5.0 Update 5, and Java Web Start 1.0 through 1.2 and J2SE 1.4.2 through 5.0 Update 5, allows remote attackers to exploit vulnerabilities by specifying a JRE version that contain vulnerabilities.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SunJ2se Version1.3.0_02 Editionsdk
SunJ2se Version1.4.2 Editionsdk
SunJ2se Version5.0 Editionsdk
SunJ2se Version5.0_update1 Editionsdk
SunJ2se Version5.0_update5
SunJava Web Start Version1.0
SunJava Web Start Version1.0.1
SunJava Web Start Version1.0.1_01
SunJava Web Start Version1.0.1_02
SunJava Web Start Version1.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.95% 0.891
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.securityfocus.com/bid/8879
http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm
http://secunia.com/advisories/21570
Patch
Vendor Advisory
http://securitytracker.com/id?1016732
http://securitytracker.com/id?1016733
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102557-1
Patch
http://www.osvdb.org/28109
http://www.securityfocus.com/archive/1/382413
http://www.securityfocus.com/bid/11757
http://www.vupen.com/english/advisories/2006/3354
Vendor Advisory