Description
Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 3 and earlier, SDK and JRE 1.3.x through 1.3.1_16 and 1.4.x through 1.4.2_08 allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "first issue."
References (11)
Core 11
Core References
Permissions Required, Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0828
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200602-07.xml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015596
Permissions Required, Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0467
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18884
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24561
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18760
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/759996
Permissions Required, Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/1398
Third Party Advisory x_refsource_confirm
http://docs.info.apple.com/article.html?artnum=303658
Broken Link, Patch vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1
Scores
EPSS
0.0702
EPSS Percentile
91.6%
Details
Status
published
Products (4)
sun/jdk
5.0 (4 CPE variants)
sun/jre
5.0 (4 CPE variants)
sun/jre
1.3.0 - 1.3.1_16
sun/sdk
1.3.0 - 1.3.1_16
Published
Feb 09, 2006
Tracked Since
Feb 18, 2026