CVE-2006-6737

critical

Description

Unspecified vulnerability in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 5 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_10 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allows attackers to use untrusted applets to "access data in other applets," aka "The first issue."

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11087

http://www.vupen.com/english/advisories/2006/5075

http://www.securityfocus.com/bid/21674

http://www.redhat.com/support/errata/RHSA-2007-0073.html

http://www.redhat.com/support/errata/RHSA-2007-0072.html

http://www.redhat.com/support/errata/RHSA-2007-0062.html

http://www.novell.com/linux/security/advisories/2007_45_java.html

http://www.novell.com/linux/security/advisories/2007_10_ibmjava.html

http://www.gentoo.org/security/en/glsa/glsa-200705-20.xml

http://support.novell.com/techcenter/psdb/d2f549cc040cd81ae4a268bb5edfe918.html

http://support.novell.com/techcenter/psdb/4f850d1e2b871db609de64ec70f0089c.html

http://securitytracker.com/id?1017427

http://security.gentoo.org/glsa/glsa-200702-08.xml

http://security.gentoo.org/glsa/glsa-200701-15.xml

http://secunia.com/advisories/26119

http://secunia.com/advisories/26049

http://secunia.com/advisories/25404

http://secunia.com/advisories/24189

http://secunia.com/advisories/24099

http://secunia.com/advisories/23835

http://secunia.com/advisories/23650

http://secunia.com/advisories/23398

http://lists.suse.com/archive/suse-security-announce/2007-Jan/0003.html

Details

Source: Mitre, NVD

Published: 2006-12-26

Updated: 2019-08-01

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical