Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2010-0840
Description:Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is related to improper checks when executing privileged methods in the Java Runtime Environment (JRE), which allows attackers to execute arbitrary code via (1) an untrusted object that extends the trusted class but has not modified a certain method, or (2) "a similar trust issue with interfaces," aka "Trusted Methods Chaining Remote Code Execution Vulnerability."
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-0840
http://lists.apple.com/archives/security-announce/2010//May/msg00001.html
http://lists.apple.com/archives/security-announce/2010//May/msg00002.html
BugTraq ID: 39065
http://www.securityfocus.com/bid/39065
Bugtraq: 20100405 ZDI-10-056: Sun Java Runtime Environment Trusted Methods Chaining Remote Code Execution Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/510528/100/0/threaded
Bugtraq: 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX (Google Search)
http://www.securityfocus.com/archive/1/516397/100/0/threaded
HPdes Security Advisory: HPSBMA02547
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751
HPdes Security Advisory: HPSBMU02799
http://marc.info/?l=bugtraq&m=134254866602253&w=2
HPdes Security Advisory: HPSBUX02524
http://marc.info/?l=bugtraq&m=127557596201693&w=2
HPdes Security Advisory: SSRT100089
http://marc.info/?l=bugtraq&m=127557596201693&w=2
HPdes Security Advisory: SSRT100179
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751
http://www.mandriva.com/security/advisories?name=MDVSA-2010:084
http://www.zerodayinitiative.com/advisories/ZDI-10-056
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13971
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9974
RedHat Security Advisories: RHSA-2010:0337
http://www.redhat.com/support/errata/RHSA-2010-0337.html
RedHat Security Advisories: RHSA-2010:0338
http://www.redhat.com/support/errata/RHSA-2010-0338.html
RedHat Security Advisories: RHSA-2010:0339
http://www.redhat.com/support/errata/RHSA-2010-0339.html
RedHat Security Advisories: RHSA-2010:0383
http://www.redhat.com/support/errata/RHSA-2010-0383.html
RedHat Security Advisories: RHSA-2010:0471
http://www.redhat.com/support/errata/RHSA-2010-0471.html
RedHat Security Advisories: RHSA-2010:0489
http://www.redhat.com/support/errata/RHSA-2010-0489.html
http://secunia.com/advisories/39292
http://secunia.com/advisories/39317
http://secunia.com/advisories/39659
http://secunia.com/advisories/39819
http://secunia.com/advisories/40211
http://secunia.com/advisories/40545
http://secunia.com/advisories/43308
SuSE Security Announcement: SUSE-SR:2010:008 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html
SuSE Security Announcement: SUSE-SR:2010:011 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html
SuSE Security Announcement: SUSE-SR:2010:017 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
http://ubuntu.com/usn/usn-923-1
http://www.vupen.com/english/advisories/2010/1107
http://www.vupen.com/english/advisories/2010/1191
http://www.vupen.com/english/advisories/2010/1454
http://www.vupen.com/english/advisories/2010/1523
http://www.vupen.com/english/advisories/2010/1793




© 1998-2024 E-Soft Inc. All rights reserved.