Lucene search

[email protected]CVE-2006-0614

HistoryFeb 09, 2006 - 2:02 a.m.

CVE-2006-0614

2006-02-0902:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0614

sun java

jdk

jre

sandbox security

reflection apis

privilege escalation

remote attack

6.9 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.1%

JSON

Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 3 and earlier, SDK and JRE 1.3.x through 1.3.1_16 and 1.4.x through 1.4.2_08 allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the “first issue.”

CPENameOperatorVersion
sun:jdksun jdkeq5.0
sun:jresun jreeq5.0
sun:sdksun sdkle1.3.1_16
sun:sdksun sdkle1.4.2_08
sun:jresun jrele1.3.1_16
sun:jresun jrele1.4.2_8

CPE	Name	Operator	Version
sun:jdk	sun jdk	eq	5.0
sun:jre	sun jre	eq	5.0
sun:sdk	sun sdk	le	1.3.1_16
sun:sdk	sun sdk	le	1.4.2_08
sun:jre	sun jre	le	1.3.1_16
sun:jre	sun jre	le	1.4.2_8

References

docs.info.apple.com/article.html?artnum=303658

secunia.com/advisories/18760

secunia.com/advisories/18884

securitytracker.com/id?1015596

sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1

www.gentoo.org/security/en/glsa/glsa-200602-07.xml

www.kb.cert.org/vuls/id/759996

www.vupen.com/english/advisories/2006/0467

www.vupen.com/english/advisories/2006/0828

www.vupen.com/english/advisories/2006/1398

exchange.xforce.ibmcloud.com/vulnerabilities/24561

6.9 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.1%

JSON

Related for CVE-2006-0614

prion1 nessus1 gentoo1 openvas3