Vulnerability Description
Unspecified vulnerability in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 6 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allows attackers to use untrusted applets to "access data in other applets," aka "The second issue."
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Jdk | 1.5.0 |
| Sun | Jre | 1.3.1 |
| Sun | Sdk | 1.3.1 |
References
- http://docs.info.apple.com/article.html?artnum=307177Third Party Advisory
- http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.htmlMailing ListThird Party Advisory
- http://lists.suse.com/archive/suse-security-announce/2007-Jan/0003.htmlMailing ListThird Party Advisory
- http://secunia.com/advisories/23398Third Party Advisory
- http://secunia.com/advisories/23650Third Party Advisory
- http://secunia.com/advisories/23835Third Party Advisory
- http://secunia.com/advisories/24099Third Party Advisory
- http://secunia.com/advisories/24189Third Party Advisory
- http://secunia.com/advisories/25404Third Party Advisory
- http://secunia.com/advisories/26049Third Party Advisory
- http://secunia.com/advisories/26119Third Party Advisory
- http://secunia.com/advisories/28115Third Party Advisory
- http://security.gentoo.org/glsa/glsa-200701-15.xmlThird Party Advisory
- http://security.gentoo.org/glsa/glsa-200702-08.xmlThird Party Advisory
- http://securitytracker.com/id?1017427Third Party AdvisoryVDB Entry
FAQ
What is CVE-2006-6736?
CVE-2006-6736 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Unspecified vulnerability in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 6 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, ...
How severe is CVE-2006-6736?
CVE-2006-6736 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6736?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Jdk, Sun Jre, Sun Sdk.