9.3

CVE-2006-6745

Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SunJ2se Version1.4 Editionsdk
SunJ2se Version1.4.1 Editionsdk
SunJ2se Version1.4.2 Editionsdk
SunJ2se Version1.4.2_01 Editionsdk
SunJ2se Version1.4.2_02 Editionsdk
SunJ2se Version1.4.2_03 Editionsdk
SunJ2se Version1.4.2_04 Editionsdk
SunJ2se Version1.4.2_05 Editionsdk
SunJ2se Version1.4.2_06 Editionsdk
SunJ2se Version1.4.2_07 Editionsdk
SunJ2se Version1.4.2_08
SunJ2se Version1.4.2_09
SunJ2se Version1.4.2_10
SunJ2se Version1.4.2_11
SunJ2se Version1.4.2_12
SunJ2se Version5.0 Editionsdk
SunJ2se Version5.0_update1 Editionsdk
SunJ2se Version5.0_update2 Editionsdk
SunJ2se Version5.0_update3
SunJ2se Version5.0_update4
SunJ2se Version5.0_update5
SunJ2se Version5.0_update6
SunJ2se Version5.0_update7
SunJre Version1.4.1
SunJre Version1.4.2
SunJre Version1.4.2_1
SunJre Version1.4.2_2
SunJre Version1.4.2_3
SunJre Version1.4.2_4
SunJre Version1.4.2_5
SunJre Version1.4.2_6
SunJre Version1.4.2_7
SunJre Version1.4.2_8
SunJre Version1.4.2_9
SunJre Version1.4.2_10
SunJre Version1.4.2_11
SunJre Version1.4.2_12
SunJre Version1.4.2_13
SunJre Version1.5.0
SunJre Version1.5.0 Updateupdate1
SunJre Version1.5.0 Updateupdate2
SunJre Version1.5.0 Updateupdate3
SunJre Version1.5.0 Updateupdate4
SunJre Version1.5.0 Updateupdate5
SunJre Version1.5.0 Updateupdate6
SunJre Version1.5.0 Updateupdate7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.06% 0.859
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://docs.info.apple.com/article.html?artnum=307177
http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html
http://secunia.com/advisories/24099
http://secunia.com/advisories/28115
http://www.novell.com/linux/security/advisories/2007_10_ibmjava.html
http://www.redhat.com/support/errata/RHSA-2007-0062.html
http://www.redhat.com/support/errata/RHSA-2007-0073.html
http://www.vupen.com/english/advisories/2007/4224
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00876579
http://lists.suse.com/archive/suse-security-announce/2007-Jan/0003.html
http://secunia.com/advisories/23445
http://secunia.com/advisories/23650
http://secunia.com/advisories/23835
http://secunia.com/advisories/24189
http://secunia.com/advisories/24468
http://secunia.com/advisories/25283
http://secunia.com/advisories/25404
http://security.gentoo.org/glsa/glsa-200701-15.xml
http://security.gentoo.org/glsa/glsa-200702-08.xml
http://www.gentoo.org/security/en/glsa/glsa-200705-20.xml
http://www.us-cert.gov/cas/techalerts/TA07-022A.html
US Government Resource
http://www.vupen.com/english/advisories/2007/0936
http://www.vupen.com/english/advisories/2007/1814
http://secunia.com/advisories/26049
http://secunia.com/advisories/26119
http://support.novell.com/techcenter/psdb/4f850d1e2b871db609de64ec70f0089c.html
http://support.novell.com/techcenter/psdb/d2f549cc040cd81ae4a268bb5edfe918.html
http://www.novell.com/linux/security/advisories/2007_45_java.html
http://dev2dev.bea.com/pub/advisory/240
http://securitytracker.com/id?1017426
Patch
Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102731-1
Vendor Advisory
http://www.kb.cert.org/vuls/id/102289
US Government Resource
http://www.securityfocus.com/bid/21673
http://www.vupen.com/english/advisories/2006/5074
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9621