5.1

CVE-2010-3573

EPSS 7.19%
Veröffentlicht 19.10.2010 22:00:03
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert_us@oracle.com
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.  NOTE: the previous information was obtained from the October 2010 CPU.  Oracle has not commented on claims from a reliable downstream vendor that this is related to missing validation of request headers in the HttpURLConnection class when they are set by applets, which allows remote attackers to bypass the intended security policy.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 32

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sun ≫ Jre Updateupdate_21 Version <= 1.6.0

Sun ≫ Jre Version1.6.0

Sun ≫ Jre Version1.6.0 Updateupdate_1

Sun ≫ Jre Version1.6.0 Updateupdate_10

Sun ≫ Jre Version1.6.0 Updateupdate_11

Sun ≫ Jre Version1.6.0 Updateupdate_12

Sun ≫ Jre Version1.6.0 Updateupdate_13

Sun ≫ Jre Version1.6.0 Updateupdate_14

Sun ≫ Jre Version1.6.0 Updateupdate_15

Sun ≫ Jre Version1.6.0 Updateupdate_16

Sun ≫ Jre Version1.6.0 Updateupdate_17

Sun ≫ Jre Version1.6.0 Updateupdate_18

Sun ≫ Jre Version1.6.0 Updateupdate_19

Sun ≫ Jre Version1.6.0 Updateupdate_2

Sun ≫ Jre Version1.6.0 Updateupdate_20

Sun ≫ Jre Version1.6.0 Updateupdate_3

Sun ≫ Jre Version1.6.0 Updateupdate_4

Sun ≫ Jre Version1.6.0 Updateupdate_5

Sun ≫ Jre Version1.6.0 Updateupdate_6

Sun ≫ Jre Version1.6.0 Updateupdate_7

Sun ≫ Jdk Updateupdate_21 Version <= 1.6.0

Sun ≫ Jdk Version1.6.0

Sun ≫ Jdk Version1.6.0 Updateupdate_10

Sun ≫ Jdk Version1.6.0 Updateupdate_11

Sun ≫ Jdk Version1.6.0 Updateupdate_12

Sun ≫ Jdk Version1.6.0 Updateupdate_13

Sun ≫ Jdk Version1.6.0 Updateupdate_14

Sun ≫ Jdk Version1.6.0 Updateupdate_15

Sun ≫ Jdk Version1.6.0 Updateupdate_16

Sun ≫ Jdk Version1.6.0 Updateupdate_17

Sun ≫ Jdk Version1.6.0 Updateupdate_18

Sun ≫ Jdk Version1.6.0 Updateupdate_19

Sun ≫ Jdk Version1.6.0 Updateupdate_20

Sun ≫ Jdk Version1.6.0 Updateupdate_3

Sun ≫ Jdk Version1.6.0 Updateupdate_4

Sun ≫ Jdk Version1.6.0 Updateupdate_5

Sun ≫ Jdk Version1.6.0 Updateupdate_6

Sun ≫ Jdk Version1.6.0 Updateupdate_7

Sun ≫ Jdk Version1.6.0 Updateupdate1

Sun ≫ Jdk Version1.6.0 Updateupdate1_b06

Sun ≫ Jdk Version1.6.0 Updateupdate2

Sun ≫ Jdk Updateupdate25 Version <= 1.5.0

Sun ≫ Jdk Version1.5.0

Sun ≫ Jdk Version1.5.0 Updateupdate1

Sun ≫ Jdk Version1.5.0 Updateupdate10

Sun ≫ Jdk Version1.5.0 Updateupdate11

Sun ≫ Jdk Version1.5.0 Updateupdate12

Sun ≫ Jdk Version1.5.0 Updateupdate13

Sun ≫ Jdk Version1.5.0 Updateupdate14

Sun ≫ Jdk Version1.5.0 Updateupdate15

Sun ≫ Jdk Version1.5.0 Updateupdate16

Sun ≫ Jdk Version1.5.0 Updateupdate17

Sun ≫ Jdk Version1.5.0 Updateupdate18

Sun ≫ Jdk Version1.5.0 Updateupdate19

Sun ≫ Jdk Version1.5.0 Updateupdate2

Sun ≫ Jdk Version1.5.0 Updateupdate20

Sun ≫ Jdk Version1.5.0 Updateupdate21

Sun ≫ Jdk Version1.5.0 Updateupdate22

Sun ≫ Jdk Version1.5.0 Updateupdate23

Sun ≫ Jdk Version1.5.0 Updateupdate24

Sun ≫ Jdk Version1.5.0 Updateupdate3

Sun ≫ Jdk Version1.5.0 Updateupdate4

Sun ≫ Jdk Version1.5.0 Updateupdate5

Sun ≫ Jdk Version1.5.0 Updateupdate6

Sun ≫ Jdk Version1.5.0 Updateupdate7

Sun ≫ Jdk Version1.5.0 Updateupdate8

Sun ≫ Jdk Version1.5.0 Updateupdate9

Sun ≫ Jre Updateupdate25 Version <= 1.5.0

Sun ≫ Jre Version1.5.0

Sun ≫ Jre Version1.5.0 Updateupdate1

Sun ≫ Jre Version1.5.0 Updateupdate10

Sun ≫ Jre Version1.5.0 Updateupdate11

Sun ≫ Jre Version1.5.0 Updateupdate12

Sun ≫ Jre Version1.5.0 Updateupdate13

Sun ≫ Jre Version1.5.0 Updateupdate14

Sun ≫ Jre Version1.5.0 Updateupdate15

Sun ≫ Jre Version1.5.0 Updateupdate16

Sun ≫ Jre Version1.5.0 Updateupdate17

Sun ≫ Jre Version1.5.0 Updateupdate18

Sun ≫ Jre Version1.5.0 Updateupdate19

Sun ≫ Jre Version1.5.0 Updateupdate2

Sun ≫ Jre Version1.5.0 Updateupdate20

Sun ≫ Jre Version1.5.0 Updateupdate21

Sun ≫ Jre Version1.5.0 Updateupdate22

Sun ≫ Jre Version1.5.0 Updateupdate23

Sun ≫ Jre Version1.5.0 Updateupdate24

Sun ≫ Jre Version1.5.0 Updateupdate3

Sun ≫ Jre Version1.5.0 Updateupdate4

Sun ≫ Jre Version1.5.0 Updateupdate5

Sun ≫ Jre Version1.5.0 Updateupdate6

Sun ≫ Jre Version1.5.0 Updateupdate7

Sun ≫ Jre Version1.5.0 Updateupdate8

Sun ≫ Jre Version1.5.0 Updateupdate9

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	7.19%	0.912

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

http://www.securityfocus.com/archive/1/516397/100/0/threaded

http://www.vmware.com/security/advisories/VMSA-2011-0003.html

http://marc.info/?l=bugtraq&m=134254866602253&w=2

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

http://secunia.com/advisories/41967

Vendor Advisory

http://secunia.com/advisories/41972

Vendor Advisory

http://secunia.com/advisories/44954

Vendor Advisory

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://support.avaya.com/css/P8/documents/100114315

http://support.avaya.com/css/P8/documents/100114327

http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html

Patch

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0768.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0770.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0807.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0865.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0987.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2011-0880.html

Vendor Advisory

http://www.ubuntu.com/usn/USN-1010-1

http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

Patch

Vendor Advisory

http://secunia.com/advisories/42974

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0873.html

Vendor Advisory

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c02616748

http://support.avaya.com/css/P8/documents/100123193

https://bugzilla.redhat.com/show_bug.cgi?id=642202

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11990

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12220

https://nvd.nist.gov/vuln/detail/CVE-2010-3573

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-3573

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-3573

EUVD