CVE-2006-6745

Severity Score

9.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.

Múltiples vulnerabilidades no especificadas en Sun Java Development Kit (JDK) y Java Runtime Environment (JRE) 5.0 Update 7 y anteriores, y Java System Development Kit (SDK) y JRE1.4.2_12 y anteriores versiones 1.4.x, permiten a atacantes remotos desarrollar applets o aplicaciones Java que son capaces de obtener privilegios, relacionados con la serialización en JRE.

*Credits: N/A

CVSS Scores

NISTv2 9.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2006-12-26 CVE Reserved
2006-12-26 CVE Published
2024-03-31 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (37)

URL	Tag	Source
http://docs.info.apple.com/article.html?artnum=307177	X_refsource_misc
http://secunia.com/advisories/23445	Third Party Advisory
http://secunia.com/advisories/23650	Third Party Advisory
http://secunia.com/advisories/23835	Third Party Advisory
http://secunia.com/advisories/24099	Third Party Advisory
http://secunia.com/advisories/24189	Third Party Advisory
http://secunia.com/advisories/24468	Third Party Advisory
http://secunia.com/advisories/25283	Third Party Advisory
http://secunia.com/advisories/25404	Third Party Advisory
http://secunia.com/advisories/26049	Third Party Advisory
http://secunia.com/advisories/26119	Third Party Advisory
http://secunia.com/advisories/28115	Third Party Advisory
http://support.novell.com/techcenter/psdb/4f850d1e2b871db609de64ec70f0089c.html	X_refsource_confirm
http://support.novell.com/techcenter/psdb/d2f549cc040cd81ae4a268bb5edfe918.html	X_refsource_confirm
http://www.kb.cert.org/vuls/id/102289	Third Party Advisory
http://www.securityfocus.com/bid/21673	Vdb Entry
http://www.us-cert.gov/cas/techalerts/TA07-022A.html	Third Party Advisory
http://www.vupen.com/english/advisories/2006/5074	Vdb Entry
http://www.vupen.com/english/advisories/2007/0936	Vdb Entry
http://www.vupen.com/english/advisories/2007/1814	Vdb Entry
http://www.vupen.com/english/advisories/2007/4224	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9621	Signature

URL	Date	SRC

URL	Date	SRC
http://securitytracker.com/id?1017426	2018-10-30

URL	Date	SRC
http://dev2dev.bea.com/pub/advisory/240	2018-10-30
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00876579	2018-10-30
http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html	2018-10-30
http://lists.suse.com/archive/suse-security-announce/2007-Jan/0003.html	2018-10-30
http://security.gentoo.org/glsa/glsa-200701-15.xml	2018-10-30
http://security.gentoo.org/glsa/glsa-200702-08.xml	2018-10-30
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102731-1	2018-10-30
http://www.gentoo.org/security/en/glsa/glsa-200705-20.xml	2018-10-30
http://www.novell.com/linux/security/advisories/2007_10_ibmjava.html	2018-10-30
http://www.novell.com/linux/security/advisories/2007_45_java.html	2018-10-30
http://www.redhat.com/support/errata/RHSA-2007-0062.html	2018-10-30
http://www.redhat.com/support/errata/RHSA-2007-0073.html	2018-10-30
https://access.redhat.com/security/cve/CVE-2006-6745	2007-02-09
https://bugzilla.redhat.com/show_bug.cgi?id=1618253	2007-02-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4 Search vendor "Sun" for product "J2se" and version "1.4"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.1 Search vendor "Sun" for product "J2se" and version "1.4.1"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2 Search vendor "Sun" for product "J2se" and version "1.4.2"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_01 Search vendor "Sun" for product "J2se" and version "1.4.2_01"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_02 Search vendor "Sun" for product "J2se" and version "1.4.2_02"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_03 Search vendor "Sun" for product "J2se" and version "1.4.2_03"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_04 Search vendor "Sun" for product "J2se" and version "1.4.2_04"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_05 Search vendor "Sun" for product "J2se" and version "1.4.2_05"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_06 Search vendor "Sun" for product "J2se" and version "1.4.2_06"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_07 Search vendor "Sun" for product "J2se" and version "1.4.2_07"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_08 Search vendor "Sun" for product "J2se" and version "1.4.2_08"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_09 Search vendor "Sun" for product "J2se" and version "1.4.2_09"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_10 Search vendor "Sun" for product "J2se" and version "1.4.2_10"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_11 Search vendor "Sun" for product "J2se" and version "1.4.2_11"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				1.4.2_12 Search vendor "Sun" for product "J2se" and version "1.4.2_12"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0 Search vendor "Sun" for product "J2se" and version "5.0"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0_update1 Search vendor "Sun" for product "J2se" and version "5.0_update1"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0_update2 Search vendor "Sun" for product "J2se" and version "5.0_update2"		sdk		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0_update3 Search vendor "Sun" for product "J2se" and version "5.0_update3"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0_update4 Search vendor "Sun" for product "J2se" and version "5.0_update4"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0_update5 Search vendor "Sun" for product "J2se" and version "5.0_update5"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0_update6 Search vendor "Sun" for product "J2se" and version "5.0_update6"		-		Affected
Sun Search vendor "Sun"		J2se Search vendor "Sun" for product "J2se"				5.0_update7 Search vendor "Sun" for product "J2se" and version "5.0_update7"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.1 Search vendor "Sun" for product "Jre" and version "1.4.1"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2 Search vendor "Sun" for product "Jre" and version "1.4.2"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_1 Search vendor "Sun" for product "Jre" and version "1.4.2_1"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_2 Search vendor "Sun" for product "Jre" and version "1.4.2_2"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_3 Search vendor "Sun" for product "Jre" and version "1.4.2_3"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_4 Search vendor "Sun" for product "Jre" and version "1.4.2_4"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_5 Search vendor "Sun" for product "Jre" and version "1.4.2_5"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_6 Search vendor "Sun" for product "Jre" and version "1.4.2_6"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_7 Search vendor "Sun" for product "Jre" and version "1.4.2_7"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_8 Search vendor "Sun" for product "Jre" and version "1.4.2_8"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_9 Search vendor "Sun" for product "Jre" and version "1.4.2_9"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_10 Search vendor "Sun" for product "Jre" and version "1.4.2_10"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_11 Search vendor "Sun" for product "Jre" and version "1.4.2_11"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_12 Search vendor "Sun" for product "Jre" and version "1.4.2_12"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.4.2_13 Search vendor "Sun" for product "Jre" and version "1.4.2_13"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		-		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		update1		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		update2		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		update3		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		update4		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		update5		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		update6		Affected
Sun Search vendor "Sun"		Jre Search vendor "Sun" for product "Jre"				1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0"		update7		Affected