CVE-2010-4469

10 documents7 sources
Severity
10.0CRITICAL
EPSS
3.6%
top 12.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
SUN JDKSUN JRESUN SDK
Timeline
PublishedFeb 17
Latest updateMay 14

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this iss

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

NVDsun/jdk1.6.0+3
NVDsun/jre1.6.0+33
NVDsun/sdk1.4.2_29+29

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-34fq-m8qx-w3x4: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 52022-05-14
CVEList
CVE-2010-4469: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 52011-02-17

💥Exploits & PoCs

1
Exploit-DB
Samba 2.2.8 (OSX/PPC) - 'trans2open' Remote Overflow (Metasploit)2010-06-21

📋Vendor Advisories

4
Ubuntu
OpenJDK 6 vulnerabilities2011-03-17
Ubuntu
OpenJDK 6 vulnerabilities2011-03-15
Ubuntu
OpenJDK 6 vulnerabilities2011-03-01
Red Hat
OpenJDK Hotspot verifier heap corruption (6878713)2011-02-15

💬Community

2
Bugzilla
OpenJDK Incomplete Fix for CVE-2010-44692011-02-18
Bugzilla
CVE-2010-4469 OpenJDK Hotspot verifier heap corruption (6878713)2011-02-08
CVE-2010-4469 (CRITICAL CVSS 10) | Unspecified vulnerability in the Ja | cvebase.io