Vulnerability Description
Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 5 and earlier allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "fifth, sixth, and seventh issues."
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Jdk | <= 1.5.0 |
| Sun | Jre | <= 1.5.0 |
References
- http://docs.info.apple.com/article.html?artnum=303658
- http://secunia.com/advisories/18760PatchVendor Advisory
- http://secunia.com/advisories/18884
- http://securitytracker.com/id?1015596
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1PatchVendor Advisory
- http://www.gentoo.org/security/en/glsa/glsa-200602-07.xml
- http://www.kb.cert.org/vuls/id/759996US Government Resource
- http://www.vupen.com/english/advisories/2006/0467
- http://www.vupen.com/english/advisories/2006/0828
- http://www.vupen.com/english/advisories/2006/1398
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24561
- http://docs.info.apple.com/article.html?artnum=303658
- http://secunia.com/advisories/18760PatchVendor Advisory
- http://secunia.com/advisories/18884
- http://securitytracker.com/id?1015596
FAQ
What is CVE-2006-0617?
CVE-2006-0617 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 5 and earlier allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the...
How severe is CVE-2006-0617?
CVE-2006-0617 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0617?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Jdk, Sun Jre.