Lucene search

[email protected]NVD:CVE-2006-6745

HistoryDec 26, 2006 - 11:28 p.m.

CVE-2006-6745

2006-12-2623:28:00

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.

Affected configurations

NVD

Node

sunj2seMatch1.4sdk

sunj2seMatch1.4.1sdk

sunj2seMatch1.4.2sdk

sunj2seMatch1.4.2_01sdk

sunj2seMatch1.4.2_02sdk

sunj2seMatch1.4.2_03sdk

sunj2seMatch1.4.2_04sdk

sunj2seMatch1.4.2_05sdk

sunj2seMatch1.4.2_06sdk

sunj2seMatch1.4.2_07sdk

sunj2seMatch1.4.2_08

sunj2seMatch1.4.2_09

sunj2seMatch1.4.2_10

sunj2seMatch1.4.2_11

sunj2seMatch1.4.2_12

sunj2seMatch5.0sdk

sunj2seMatch5.0_update1sdk

sunj2seMatch5.0_update2sdk

sunj2seMatch5.0_update3

sunj2seMatch5.0_update4

sunj2seMatch5.0_update5

sunj2seMatch5.0_update6

sunj2seMatch5.0_update7

sunjreMatch1.4.1

sunjreMatch1.4.2

sunjreMatch1.4.2_1

sunjreMatch1.4.2_2

sunjreMatch1.4.2_3

sunjreMatch1.4.2_4

sunjreMatch1.4.2_5

sunjreMatch1.4.2_6

sunjreMatch1.4.2_7

sunjreMatch1.4.2_8

sunjreMatch1.4.2_9

sunjreMatch1.4.2_10

sunjreMatch1.4.2_11

sunjreMatch1.4.2_12

sunjreMatch1.4.2_13

sunjreMatch1.5.0

sunjreMatch1.5.0update1

sunjreMatch1.5.0update2

sunjreMatch1.5.0update3

sunjreMatch1.5.0update4

sunjreMatch1.5.0update5

sunjreMatch1.5.0update6

sunjreMatch1.5.0update7

References

dev2dev.bea.com/pub/advisory/240

docs.info.apple.com/article.html?artnum=307177

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00876579

lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html

lists.suse.com/archive/suse-security-announce/2007-Jan/0003.html

secunia.com/advisories/23445

secunia.com/advisories/23650

secunia.com/advisories/23835

secunia.com/advisories/24099

secunia.com/advisories/24189

secunia.com/advisories/24468

secunia.com/advisories/25283

secunia.com/advisories/25404

secunia.com/advisories/26049

secunia.com/advisories/26119

secunia.com/advisories/28115

security.gentoo.org/glsa/glsa-200701-15.xml

security.gentoo.org/glsa/glsa-200702-08.xml

securitytracker.com/id?1017426

sunsolve.sun.com/search/document.do?assetkey=1-26-102731-1

support.novell.com/techcenter/psdb/4f850d1e2b871db609de64ec70f0089c.html

support.novell.com/techcenter/psdb/d2f549cc040cd81ae4a268bb5edfe918.html

www.gentoo.org/security/en/glsa/glsa-200705-20.xml

www.kb.cert.org/vuls/id/102289

www.novell.com/linux/security/advisories/2007_10_ibmjava.html

www.novell.com/linux/security/advisories/2007_45_java.html

www.redhat.com/support/errata/RHSA-2007-0062.html

www.redhat.com/support/errata/RHSA-2007-0073.html

www.securityfocus.com/bid/21673

www.us-cert.gov/cas/techalerts/TA07-022A.html

www.vupen.com/english/advisories/2006/5074

www.vupen.com/english/advisories/2007/0936

www.vupen.com/english/advisories/2007/1814

www.vupen.com/english/advisories/2007/4224

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9621

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Related for NVD:CVE-2006-6745

cert1 cve1 cvelist1 openvas13 securityvulns1 suse3 gentoo3 nessus11 redhat2