Description
Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 4 and earlier, SDK and JRE 1.4.x through 1.4.2_09 allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "second and third issues."
References (11)
Core 11
Core References
Permissions Required vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0828
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200602-07.xml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015596
Permissions Required vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0467
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18884
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24561
Patch, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18760
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/759996
Permissions Required vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/1398
Broken Link x_refsource_confirm
http://docs.info.apple.com/article.html?artnum=303658
Broken Link, Patch vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1
Scores
EPSS
0.0723
EPSS Percentile
91.7%
Details
Status
published
Products (22)
sun/jdk
1.5.0 (5 CPE variants)
sun/jre
1.4.2
sun/jre
1.4.2_1
sun/jre
1.4.2_2
sun/jre
1.4.2_3
sun/jre
1.4.2_4
sun/jre
1.4.2_5
sun/jre
1.4.2_6
sun/jre
1.4.2_7
sun/jre
1.4.2_8
... and 12 more
Published
Feb 09, 2006
Tracked Since
Feb 18, 2026