Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2010-0846
HistoryApr 01, 2010 - 12:00 a.m.

CVE-2010-0846

2010-04-0100:00:00
ubuntu.com
ubuntu.com
10

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.14 Low

EPSS

Percentile

95.6%

JSON

Unspecified vulnerability in the ImageIO component in Oracle Java SE and
Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows
remote attackers to affect confidentiality, integrity, and availability via
unknown vectors. NOTE: the previous information was obtained from the
March 2010 CPU. Oracle has not commented on claims from a reliable
researcher that this is a heap-based buffer overflow that allows remote
attackers to execute arbitrary code, related to an “invalid assignment” and
inconsistent length values in a JPEG image encoder (JPEGImageEncoderImpl).

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchsun-java6< 6.20dlj-0ubuntu1.8.04UNKNOWN
ubuntu9.04noarchsun-java6< 6.20dlj-0ubuntu1.9.04UNKNOWN
ubuntu9.10noarchsun-java6< 6.20dlj-0ubuntu1.9.10UNKNOWN

Related

prion 1
cve 1
securityvulns 3
veracode 1
zdi 1
nessus 25
redhat 7
suse 2
openvas 13
gentoo 1
oracle 1
prion
prion
Heap overflow
2010-04-01 16:30:00
cve
cve
CVE-2010-0846
2010-04-01 16:30:00
securityvulns
securityvulns
ZDI-10-059: Sun Java Runtime Environment JPEGImageEncoderImpl Remote Code Execution Vulnerability
2010-04-06 00:00:00
[security bulletin] HPSBMA02547 SSRT100179 rev.1 - HP Systems Insight Manager &#40;SIM&#41; for HP-UX, Linux, and Windows, Remote Execution of Arbitrary Code and Other Vulnerabilities
2010-07-18 00:00:00
Oracle Critical Patch Update Advisory - July 2010
2010-07-15 00:00:00
veracode
veracode
Denial Of Services (DoS)
2020-04-10 00:45:53
zdi
zdi
Sun Java Runtime Environment JPEGImageEncoderImpl Remote Code Execution Vulnerability
2010-04-05 00:00:00
nessus
nessus
RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2010:0489)
2010-06-18 00:00:00
SuSE 11 / 11.1 Security Update : IBM Java / Java (SAT Patch Numbers 2812 / 2813)
2010-12-02 00:00:00
RHEL 3 / 4 / 5 : java-1.4.2-ibm (RHSA-2010:0574)
2010-07-30 00:00:00
redhat
redhat
(RHSA-2010:0489) Critical: java-1.5.0-ibm security update
2010-06-17 00:00:00
(RHSA-2010:0574) Critical: java-1.4.2-ibm security update
2010-07-29 00:00:00
(RHSA-2010:0586) Moderate: java-1.4.2-ibm-sap security update
2010-08-02 00:00:00
suse
suse
remote code execution in java-1_5_0-ibm
2010-07-06 17:26:45
remote code execution in java-1_6_0-ibm
2010-07-01 17:43:53
openvas
openvas
HP-UX Update for Java HPSBUX02524
2010-06-07 00:00:00
HP-UX Update for Java HPSBUX02524
2010-06-07 00:00:00
Oracle Java SE Multiple Vulnerabilities (Windows)
2010-04-07 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2010-06-04 00:00:00
oracle
oracle
Security | Oracle Critical Patch Update - July 2010
2010-07-13 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.14 Low

EPSS

Percentile

95.6%

JSON
Related for UB:CVE-2010-0846
prion1cve1securityvulns3veracode1zdi1nessus25redhat7suse2openvas13gentoo1oracle1