Vulnerability Details : CVE-2006-0617
Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 5 and earlier allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "fifth, sixth, and seventh issues."
Exploit prediction scoring system (EPSS) score for CVE-2006-0617
Probability of exploitation activity in the next 30 days: 3.16%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 90 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2006-0617
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:H/Au:N/C:P/I:P/A:N |
4.9
|
4.9
|
NIST |
References for CVE-2006-0617
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24561
- http://www.vupen.com/english/advisories/2006/1398
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1
Patch;Vendor Advisory
- http://docs.info.apple.com/article.html?artnum=303658
- http://www.gentoo.org/security/en/glsa/glsa-200602-07.xml
- http://www.vupen.com/english/advisories/2006/0828
- http://www.vupen.com/english/advisories/2006/0467
- http://securitytracker.com/id?1015596
-
http://www.kb.cert.org/vuls/id/759996
US Government Resource
Products affected by CVE-2006-0617
- cpe:2.3:a:sun:jdk:*:update5:*:*:*:*:*:*
- cpe:2.3:a:sun:jre:*:update5:*:*:*:*:*:*