Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2010-4465

Published: 17/02/2011 Updated: 30/10/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Sun

Vulnerability Summary

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and previous versions, 5.0 Update 27 and previous versions, and 1.4.2_29 and previous versions allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the lack of framework support by AWT event dispatch, and/or "clipboard access in Applets."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

sun jre 1.6.0

sun jre

sun jdk 1.6.0

sun jdk

sun jdk 1.5.0

sun sdk 1.4.2_02

sun sdk 1.4.2_1

sun sdk 1.4.2_16

sun sdk 1.4.2_17

sun sdk 1.4.2_7

sun sdk 1.4.2_8

sun sdk 1.4.2_9

sun sdk 1.4.2_26

sun sdk 1.4.2_27

sun sdk 1.4.2

sun sdk 1.4.2_14

sun sdk 1.4.2_15

sun sdk 1.4.2_5

sun sdk 1.4.2_6

sun sdk 1.4.2_24

sun sdk 1.4.2_25

sun sdk 1.4.2_12

sun sdk 1.4.2_13

sun sdk 1.4.2_3

sun sdk 1.4.2_4

sun sdk 1.4.2_22

sun sdk 1.4.2_23

sun sdk 1.4.2_10

sun sdk 1.4.2_11

sun sdk 1.4.2_18

sun sdk 1.4.2_19

sun sdk 1.4.2_20

sun sdk 1.4.2_21

sun sdk 1.4.2_28

sun sdk

sun jre 1.5.0

sun jre 1.4.2_5

sun jre 1.4.2_6

sun jre 1.4.2_7

sun jre 1.4.2_13

sun jre 1.4.2_14

sun jre 1.4.2_21

sun jre 1.4.2_22

sun jre 1.4.2_3

sun jre 1.4.2_4

sun jre 1.4.2_11

sun jre 1.4.2_12

sun jre 1.4.2_19

sun jre 1.4.2_20

sun jre 1.4.2_27

sun jre 1.4.2_28

sun jre 1.4.2

sun jre 1.4.2_8

sun jre 1.4.2_9

sun jre 1.4.2_15

sun jre 1.4.2_16

sun jre 1.4.2_23

sun jre 1.4.2_24

sun jre 1.4.2_1

sun jre 1.4.2_2

sun jre 1.4.2_10

sun jre 1.4.2_17

sun jre 1.4.2_18

sun jre 1.4.2_25

sun jre 1.4.2_26

Vendor Advisories

Debian Security Advisories: DSA-2224-1 openjdk-6 -- several vulnerabilities
Several security vulnerabilities were discovered in OpenJDK, an implementation of the Java platform CVE-2010-4351 The JNLP SecurityManager returns from the checkPermission method instead of throwing an exception in certain circumstances, which might allow context-dependent attackers to bypass the intended security policy by creati ...
Ubuntu Security Notice: openjdk-6b18 vulnerabilities
OpenJDK 6 Vulnerabilities (armel packages only) ...
Ubuntu Security Notice: openjdk-6b18 vulnerabilities
OpenJDK 6 vulnerabilities in Ubuntu 1010 for armel (ARM) architecture ...
Ubuntu Security Notice: openjdk-6 vulnerabilities
It was discovered that untrusted Java applets could create domain name resolution cache entries, allowing an attacker to manipulate name resolution within the JVM (CVE-2010-4448) ...

References

NVD-CWE-noinfohttp://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-February/054134.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.htmlhttp://secunia.com/advisories/43350http://www.redhat.com/support/errata/RHSA-2011-0281.htmlhttp://www.redhat.com/support/errata/RHSA-2011-0282.htmlhttp://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.htmlhttp://www.redhat.com/support/errata/RHSA-2011-0880.htmlhttp://www.debian.org/security/2011/dsa-2224http://www.mandriva.com/security/advisories?name=MDVSA-2011:054http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-07/msg00010.htmlhttp://secunia.com/advisories/44954http://secunia.com/advisories/49198http://security.gentoo.org/glsa/glsa-201406-32.xmlhttp://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-003/index.htmlhttp://marc.info/?l=bugtraq&m=134254957702612&w=2http://marc.info/?l=bugtraq&m=133728004526190&w=2https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14034https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12925http://marc.info/?l=bugtraq&m=134254866602253&w=2https://nvd.nist.govhttps://www.debian.org/security/./dsa-2224https://usn.ubuntu.com/1079-2/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook