Vulnerability Details : CVE-2006-0616
Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 4 and earlier allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "fourth issue."
Exploit prediction scoring system (EPSS) score for CVE-2006-0616
Probability of exploitation activity in the next 30 days: 3.16%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 90 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2006-0616
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:H/Au:N/C:P/I:P/A:N |
4.9
|
4.9
|
NIST |
References for CVE-2006-0616
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24561
- http://www.vupen.com/english/advisories/2006/1398
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1
Patch;Vendor Advisory
- http://docs.info.apple.com/article.html?artnum=303658
- http://www.gentoo.org/security/en/glsa/glsa-200602-07.xml
- http://www.vupen.com/english/advisories/2006/0828
- http://www.vupen.com/english/advisories/2006/0467
- http://securitytracker.com/id?1015596
-
http://www.kb.cert.org/vuls/id/759996
US Government Resource
Products affected by CVE-2006-0616
- cpe:2.3:a:sun:jdk:*:update4:*:*:*:*:*:*
- cpe:2.3:a:sun:jre:*:update4:*:*:*:*:*:*