CVE-2006-6745

Sun JDK/JRE <5.0 Update 7 - Privilege Escalation

Title source: llm
STIX 2.1

Description

Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.

References (35)

Core 35
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21673
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24468
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26049
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0062.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1814
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25283
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9621
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24099
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25404
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24189
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_45_java.html
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html
Various Sources vendor-advisory x_refsource_suse
http://lists.suse.com/archive/suse-security-announce/2007-Jan/0003.html
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_10_ibmjava.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26119
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/23445
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/4224
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/23650
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/23835
Patch, Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1017426
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0073.html
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/102289
Third Party Advisory vendor-advisory x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200705-20.xml
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28115
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102731-1
Vendor Advisory vendor-advisory x_refsource_bea
http://dev2dev.bea.com/pub/advisory/240
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/5074
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0936
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200702-08.xml
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-022A.html
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200701-15.xml

Scores

EPSS 0.1477
EPSS Percentile 94.6%

Details

Status published
Products (39)
sun/j2se 1.4
sun/j2se 1.4.1
sun/j2se 1.4.2
sun/j2se 1.4.2_01
sun/j2se 1.4.2_02
sun/j2se 1.4.2_03
sun/j2se 1.4.2_04
sun/j2se 1.4.2_05
sun/j2se 1.4.2_06
sun/j2se 1.4.2_07
... and 29 more
Published Dec 26, 2006
Tracked Since Feb 18, 2026