Sun J2Se vulnerabilities

7 known vulnerabilities affecting sun/j2se.

Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2006-6745CRITICALCVSS 9.3v1.4v1.4.1+21 more2006-12-26
CVE-2006-6745 [CRITICAL] CVE-2006-6745: Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.
nvd
CVE-2006-4302MEDIUMCVSS 5.0v1.3.0_02v1.4.2+3 more2006-08-23
CVE-2006-4302 [MEDIUM] CWE-264 CVE-2006-4302: The Java Plug-in J2SE 1.3.0_02 through 5.0 Update 5, and Java Web Start 1.0 through 1.2 and J2SE 1.4 The Java Plug-in J2SE 1.3.0_02 through 5.0 Update 5, and Java Web Start 1.0 through 1.2 and J2SE 1.4.2 through 5.0 Update 5, allows remote attackers to exploit vulnerabilities by specifying a JRE version that contain vulnerabilities.
nvd
CVE-2006-0613MEDIUMCVSS 4.0≤ 5.0_update52006-02-09
CVE-2006-0613 [MEDIUM] CVE-2006-0613: Unspecified vulnerability in Java Web Start after 1.0.1_02, as used in J2SE 5.0 Update 5 and earlier Unspecified vulnerability in Java Web Start after 1.0.1_02, as used in J2SE 5.0 Update 5 and earlier, allows remote attackers to obtain privileges via unspecified vectors involving untrusted applications.
nvd
CVE-2005-1974MEDIUMCVSS 5.1v1.4.2v1.4.2_01+8 more2005-06-16
CVE-2005-1974 [MEDIUM] CVE-2005-1974: Unspecified vulnerability in Java 2 Platform, Standard Edition (J2SE) 5.0 and 5.0 Update 1 and J2SE Unspecified vulnerability in Java 2 Platform, Standard Edition (J2SE) 5.0 and 5.0 Update 1 and J2SE 1.4.2 up to 1.4.2_07, as used in multiple products and platforms including (1) HP-UX and (2) APC PowerChute, allows applications to assign permissions to themselves and gain privileges.
nvd
CVE-2005-1973MEDIUMCVSS 5.1v5.0v5.0_update12005-06-16
CVE-2005-1973 [MEDIUM] CVE-2005-1973: Java Web Start in Java 2 Platform Standard Edition (J2SE) 5.0 and 5.0 Update 1 allows applications t Java Web Start in Java 2 Platform Standard Edition (J2SE) 5.0 and 5.0 Update 1 allows applications to assign permissions to themselves and gain privileges.
nvd
CVE-2005-0836CRITICALCVSS 10.0v1.4.2v1.4.2_01+5 more2005-05-02
CVE-2005-0836 [CRITICAL] CVE-2005-0836: Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06 allows untrusted ap Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06 allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file.
nvd
CVE-2005-0418HIGHCVSS 7.5v1.4.2v1.4.2_01+5 more2005-05-02
CVE-2005-0418 [HIGH] CVE-2005-0418: Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06, on Mac OS X, allow Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06, on Mac OS X, allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file. NOTE: it is highly likely that this item will be MERGED with CVE-2005-0836.
nvd