CVE-2010-0079 — HIGH (10.0)

Vulnerability Description

Multiple vulnerabilities in the JRockit component in BEA Product Suite R27.6.5 using JRE/JDK 1.4.2, 5, and 6 allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this CVE identifier overlaps CVE-2009-3867, CVE-2009-3868, CVE-2009-3869, CVE-2009-3871, CVE-2009-3872, CVE-2009-3873, CVE-2009-3874, CVE-2009-3875, CVE-2009-3876, and CVE-2009-3877.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Oracle	Bea Product Suite	r27.6.5
Sun	Jdk	1.4.2
Sun	Jre	1.4.2

References

http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html
http://www.us-cert.gov/cas/techalerts/TA10-012A.htmlUS Government Resource
http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html
http://www.us-cert.gov/cas/techalerts/TA10-012A.htmlUS Government Resource

FAQ

What is CVE-2010-0079?

CVE-2010-0079 is a vulnerability with a CVSS score of 10.0 (HIGH). Multiple vulnerabilities in the JRockit component in BEA Product Suite R27.6.5 using JRE/JDK 1.4.2, 5, and 6 allow remote attackers to affect confidentiality, integrity, and availability via unknown v...

How severe is CVE-2010-0079?

CVE-2010-0079 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-0079?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Bea Product Suite, Sun Jdk, Sun Jre.