This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:sun:jre:1.6.0:update_9
Detail
VendorSunFirst view 2007-07-11
ProductJreLast view2013-10-16
Version1.6.0TypeApplication
Edition 
Language 
Updateupdate_9 
 
CPE Productcpe:/a:sun:jre

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
7.62013-10-16CVE-2013-5852NetworkHighNone Requ...
9.32013-10-16CVE-2013-5850NetworkMediumNone Requ...
4.32013-10-16CVE-2013-5849NetworkMediumNone Requ...
102013-10-16CVE-2013-5843NetworkLowNone Requ...
102013-10-16CVE-2013-5842NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52013-10-16CVE-2013-5840NetworkLowNone Requ...
9.32013-10-16CVE-2013-5832NetworkMediumNone Requ...
52013-10-16CVE-2013-5831NetworkLowNone Requ...
102013-10-16CVE-2013-5830NetworkLowNone Requ...
102013-10-16CVE-2013-5829NetworkLowNone Requ...
52013-10-16CVE-2013-5825NetworkLowNone Requ...
102013-10-16CVE-2013-5824NetworkLowNone Requ...
52013-10-16CVE-2013-5823NetworkLowNone Requ...
52013-10-16CVE-2013-5820NetworkLowNone Requ...
52013-10-16CVE-2013-5819NetworkLowNone Requ...
52013-10-16CVE-2013-5818NetworkLowNone Requ...
102013-10-16CVE-2013-5817NetworkLowNone Requ...
102013-10-16CVE-2013-5814NetworkLowNone Requ...
6.42013-10-16CVE-2013-5812NetworkLowNone Requ...
102013-10-16CVE-2013-5809NetworkLowNone Requ...
6.42013-10-16CVE-2013-5804NetworkLowNone Requ...
2.62013-10-16CVE-2013-5803NetworkHighNone Requ...
7.52013-10-16CVE-2013-5802NetworkLowNone Requ...
52013-10-16CVE-2013-5801NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
48% (19)CWE-264Permissions, Privileges, and Access Controls
23% (9)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
12% (5)CWE-200Information Exposure
5% (2)CWE-189Numeric Errors
2% (1)CWE-287Improper Authentication
Hide | Show 3 More...
%idName
2% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
2% (1)CWE-20Improper Input Validation
2% (1)CWE-16Configuration

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:19584HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:16444Vulnerability in the Java Runtime Environment (JRE) component in Oracle Java ...
oval:org.mitre.oval:def:19484HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:19471HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:19261HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:15888Unspecified vulnerability in the Java Runtime Environment (JRE) component in ...
oval:org.mitre.oval:def:6249Sun Java Web Start and Java Plug-in applet class security bypass
oval:org.mitre.oval:def:19605HP-UX Running Java6, Remote Unauthorized Access, Disclosure of Information, a...
oval:org.mitre.oval:def:19478HP-UX Running Java7, Remote Unauthorized Access, Disclosure of Information, a...
oval:org.mitre.oval:def:17206Unspecified vulnerability in the Java Runtime Environment (JRE) component in ...
oval:org.mitre.oval:def:19704HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), R...
oval:org.mitre.oval:def:19354HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:16597Vulnerability in the Java Runtime Environment (JRE) component in Oracle Java ...
oval:org.mitre.oval:def:11274Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtim...
oval:org.mitre.oval:def:7316OpenJDK UI Logging Information Leakage
oval:org.mitre.oval:def:10761The Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Ja...
oval:org.mitre.oval:def:19549HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), R...
oval:org.mitre.oval:def:19341HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:16549Vulnerability in the Java Runtime Environment (JRE) component in Oracle Java ...
oval:org.mitre.oval:def:19718HP-UX Running Java6, Remote Unauthorized Access, Disclosure of Information, a...
oval:org.mitre.oval:def:19667HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK), R...
oval:org.mitre.oval:def:19518HP-UX Running Java7, Remote Unauthorized Access, Disclosure of Information, a...
oval:org.mitre.oval:def:17215Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update...
oval:org.mitre.oval:def:18645Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 an...
oval:org.mitre.oval:def:22567HP-UX Running Java7, Remote Unauthorized Access, Disclosure of Information, a...

SAINT Exploits

DescriptionLink
Oracle Java java.awt.image.ByteComponentRaster OverflowMore info here
Oracle Java Runtime Environment AWT storeImageArray VulnerabilityMore info here
Java Runtime Environment java.awt.image.IntegerComponentRaster buffer overflowMore info here
Java Runtime Environment HsbParser.getSoundBank Stack Buffer OverflowMore info here
Java Runtime Environment AWT setDiffICM buffer overflowMore info here
Hide | Show 2 More...
DescriptionLink
Java Runtime Environment JAR manifest Main Class buffer overflowMore info here
Java Runtime Environment Color Management memory overwriteMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
59924Sun Java SE TrueType Font Parsing Unspecified Remote DoS
59923Sun Java SE Java Web Start Implementation Signed JAR File JNLP Application / ...
59922Sun Java SE X11 / Win32GraphicsDevice Subsystems getConfigurations Function C...
59921Sun Java SE JRE Abstract Window Toolkit (AWT) Logger Object Restriction Infor...
59920Sun Java SE TimeZone.getTimeZone Method tz File Handling Local File Enumeration
Hide | Show 20 More...
idDescription
59919Sun Java SE BMP File ICC Profile UNC Pathname Handling DoS
59917Sun Java SE Resurrected ClassLoader Children Handling Unspecified Remote Priv...
59716Sun Java JDK / JRE Web Start Crafted Installer Extension JNLP Handling Truste...
59714Sun Java JDK / JRE JPEG Image Writer Unspecified Overflow (6862968)
59713Sun Java JDK / JRE JPEG JFIF Decoder Unspecified Overflow (6862969)
59712Sun Java JDK / JRE Color Profile Handling Unspecified Overflow (6862970)
59711Sun Java JDK / JRE HsbParser.getSoundBank Function file:// URI Parsing Overflow
59710Sun Java JDK / JRE AWT setDifflCM Library Function Overflow
59709Sun Java JDK / JRE AWT setBytePixels Library Function Overflow
59708Sun Java JDK / JRE JPEGImageReader Subsample Dimension Handling Overflow
56984Apache Xerces2 Java Malformed XML Input DoS
56788Sun Java JDK / JRE Audio System Unauthorized java.lang.System Properties Access
56786Sun Java JDK / JRE Pack200 JAR File Decoding Inner Class Count Overflow
56785Sun Java JDK / JRE Proxy Mechanism Implementation Arbitrary Host Connection
56784Sun Java JDK / JRE Proxy Mechanism Implementation Unauthorized Browser Cookie...
56783Sun Java JDK / JRE SOCKS Proxy Implementation Applet Process Owner Disclosure
50516Sun Java JDK / JRE TrueType Font Processing Heap Overflow
50515Sun Java JDK / JRE GIF Image Decoding Memory Corruption
50514Sun Java JDK / JRE Java Web Start BasicService Arbitrary File Access
50513Sun Java JDK / JRE Applet Classloading Privilege Escalation

ExploitDB Exploits

idDescription
28050Oracle Java lookUpByteBI - Heap Buffer Overflow
27705Java storeImageArray() Invalid Array Indexing Vulnerability
24966Java Web Start Launcher ActiveX Control - Memory Corruption
24904Java CMM Remote Code Execution
16302Signed Applet Social Engineering Code Exec
Hide | Show 5 More...
idDescription
16298Sun Java JRE AWT setDiffICM Buffer Overflow
16294Sun Java JRE getSoundbank file:// URI Buffer Overflow
16293Sun Java Calendar Deserialization Exploit
9948Sun Java Runtime and Development Kit <= 6 update 10 Calendar Deserializati...
8753Mac OS X Java applet Remote Deserialization Remote PoC (updated)

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-06-06Name : RedHat Update for xerces-j2 RHSA-2011:0858-01
File : nvt/gb_RHSA-2011_0858-01_xerces-j2.nasl
2011-08-09Name : CentOS Update for java CESA-2009:1584 centos5 i386
File : nvt/gb_CESA-2009_1584_java_centos5_i386.nasl
2011-08-09Name : CentOS Update for xerces-j2 CESA-2009:1615 centos5 i386
File : nvt/gb_CESA-2009_1615_xerces-j2_centos5_i386.nasl
2011-08-09Name : CentOS Update for java CESA-2009:1201 centos5 i386
File : nvt/gb_CESA-2009_1201_java_centos5_i386.nasl
2011-06-20Name : Mandriva Update for xerces-j2 MDVSA-2011:108 (xerces-j2)
File : nvt/gb_mandriva_MDVSA_2011_108.nasl
Hide | Show 20 More...
idDescription
2010-10-10Name : FreeBSD Ports: apr
File : nvt/freebsd_apr0.nasl
2010-05-28Name : Java for Mac OS X 10.5 Update 2
File : nvt/macosx_java_for_10_5_upd_2.nasl
2010-05-28Name : Java for Mac OS X 10.5 Update 3
File : nvt/macosx_java_for_10_5_upd_3.nasl
2010-05-28Name : Java for Mac OS X 10.5 Update 4
File : nvt/macosx_java_for_10_5_upd_4.nasl
2010-05-28Name : Java for Mac OS X 10.5 Update 5
File : nvt/macosx_java_for_10_5_upd_5.nasl
2010-05-28Name : Java for Mac OS X 10.5 Update 6
File : nvt/macosx_java_for_10_5_upd_6.nasl
2010-05-28Name : Java for Mac OS X 10.6 Update 1
File : nvt/macosx_java_for_10_6_upd_1.nasl
2010-04-30Name : Mandriva Update for java-1.6.0-openjdk MDVSA-2010:084 (java-1.6.0-openjdk)
File : nvt/gb_mandriva_MDVSA_2010_084.nasl
2010-04-16Name : Ubuntu Update for cmake vulnerabilities USN-890-6
File : nvt/gb_ubuntu_USN_890_6.nasl
2010-03-02Name : Mandriva Update for x11-driver-video-ati MDVA-2010:084 (x11-driver-video-ati)
File : nvt/gb_mandriva_MDVA_2010_084.nasl
2010-02-19Name : Ubuntu Update for xmlrpc-c vulnerabilities USN-890-5
File : nvt/gb_ubuntu_USN_890_5.nasl
2010-02-15Name : HP-UX Update for Java HPSBUX02503
File : nvt/gb_hp_ux_HPSBUX02503.nasl
2010-01-29Name : Ubuntu Update for python-xml vulnerabilities USN-890-4
File : nvt/gb_ubuntu_USN_890_4.nasl
2010-01-25Name : Ubuntu Update for python2.4 vulnerabilities USN-890-3
File : nvt/gb_ubuntu_USN_890_3.nasl
2010-01-22Name : Ubuntu Update for expat vulnerabilities USN-890-1
File : nvt/gb_ubuntu_USN_890_1.nasl
2010-01-22Name : Ubuntu Update for python2.5 vulnerabilities USN-890-2
File : nvt/gb_ubuntu_USN_890_2.nasl
2010-01-15Name : Mandriva Update for davfs MDVSA-2009:220-1 (davfs)
File : nvt/gb_mandriva_MDVSA_2009_220_1.nasl
2010-01-15Name : Mandriva Update for expat MDVSA-2009:316-1 (expat)
File : nvt/gb_mandriva_MDVSA_2009_316_1.nasl
2010-01-15Name : Mandriva Update for expat MDVSA-2009:316-2 (expat)
File : nvt/gb_mandriva_MDVSA_2009_316_2.nasl
2010-01-15Name : Mandriva Update for expat MDVSA-2009:316-3 (expat)
File : nvt/gb_mandriva_MDVSA_2009_316_3.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-B-0019Multiple Vulnerabilities in Apache Tomcat
Severity : Category I - VMSKEY : V0044527
2013-A-0191Multiple Vulnerabilities in Java for Mac OS X
Severity : Category I - VMSKEY : V0040779
2013-A-0200Multiple Vulnerabilities in Oracle Java
Severity : Category I - VMSKEY : V0040783
2012-A-0136Multiple Vulnerabilities in Juniper Network Management Products
Severity : Category I - VMSKEY : V0033662
2009-A-0105Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0021867

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2019-03-26Oracle Java ImagingLib buffer overflow attempt
RuleID : 49256 - Type : FILE-JAVA - Revision : 1
2019-03-26Oracle Java ImagingLib buffer overflow attempt
RuleID : 49255 - Type : FILE-JAVA - Revision : 1
2019-03-12Oracle Java JPEGImageWriter memory corruption attempt
RuleID : 49117 - Type : FILE-JAVA - Revision : 1
2019-03-12Oracle Java JPEGImageWriter memory corruption attempt
RuleID : 49116 - Type : FILE-JAVA - Revision : 1
2016-03-24Oracle Java sun.awt.image.ImagingLib.lookupByteBI memory corruption attempt
RuleID : 37821 - Type : FILE-JAVA - Revision : 1
Hide | Show 20 More...
DateDescription
2016-03-24Oracle Java sun.awt.image.ImagingLib.lookupByteBI memory corruption attempt
RuleID : 37820 - Type : FILE-JAVA - Revision : 1
2016-03-24Oracle Java sun.awt.image.ImagingLib.lookupByteBI memory corruption attempt
RuleID : 37819 - Type : FILE-JAVA - Revision : 1
2016-03-24Oracle Java sun.awt.image.ImagingLib.lookupByteBI memory corruption attempt
RuleID : 37818 - Type : FILE-JAVA - Revision : 1
2016-03-22Oracle Java IntegerInterleavedRaster integer overflow attempt
RuleID : 37805 - Type : FILE-JAVA - Revision : 3
2016-03-22Oracle Java IntegerInterleavedRaster integer overflow attempt
RuleID : 37804 - Type : FILE-JAVA - Revision : 3
2016-03-22Oracle Java IntegerInterleavedRaster integer overflow attempt
RuleID : 37803 - Type : FILE-JAVA - Revision : 2
2016-03-22Oracle Java IntegerInterleavedRaster integer overflow attempt
RuleID : 37802 - Type : FILE-JAVA - Revision : 2
2015-04-30Nuclear exploit kit obfuscated file download
RuleID : 33983 - Type : EXPLOIT-KIT - Revision : 4
2015-04-30Nuclear exploit kit landing page detected
RuleID : 33982 - Type : EXPLOIT-KIT - Revision : 3
2014-11-16Oracle Java IntegerInterleavedRaster integer overflow attempt
RuleID : 31541 - Type : FILE-JAVA - Revision : 7
2014-11-16Oracle Java IntegerInterleavedRaster integer overflow attempt
RuleID : 31540 - Type : FILE-JAVA - Revision : 6
2014-11-16CottonCastle exploit kit decryption page outbound request
RuleID : 31279 - Type : EXPLOIT-KIT - Revision : 2
2014-11-16CottonCastle exploit kit Oracle java outbound connection
RuleID : 31278 - Type : EXPLOIT-KIT - Revision : 2
2014-11-16CottonCastle exploit kit Oracle Java outbound connection
RuleID : 31277 - Type : EXPLOIT-KIT - Revision : 2
2014-03-06Oracle Java 2D ImagingLib AffineTransformOp integer overflow attempt
RuleID : 29606 - Type : FILE-JAVA - Revision : 4
2014-03-06Oracle Java 2D ImagingLib AffineTransformOp integer overflow attempt
RuleID : 29605 - Type : FILE-JAVA - Revision : 3
2014-03-01Oracle Java ShortComponentRaster integer overflow attempt
RuleID : 29491 - Type : FILE-JAVA - Revision : 4
2014-03-01Oracle Java ShortComponentRaster integer overflow attempt
RuleID : 29490 - Type : FILE-JAVA - Revision : 3
2014-02-08Oracle Java sun.awt.image.ImagingLib.lookupByteBI memory corruption attempt
RuleID : 29273 - Type : FILE-JAVA - Revision : 7
2014-02-08Oracle Java sun.awt.image.ImagingLib.lookupByteBI memory corruption attempt
RuleID : 29272 - Type : FILE-JAVA - Revision : 7

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2016-11-30Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_18449f92ab3911e68011005056925db4.nasl - Type : ACT_GATHER_INFO
2016-06-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL48802597.nasl - Type : ACT_GATHER_INFO
2016-03-08Name : The remote VMware ESX host is missing a security-related patch.
File : vmware_VMSA-2010-0002_remote.nasl - Type : ACT_GATHER_INFO
2016-03-04Name : The remote VMware ESX / ESXi host is missing a security-related patch.
File : vmware_esx_VMSA-2013-0012_remote.nasl - Type : ACT_GATHER_INFO
2016-03-03Name : The remote host is missing a security-related patch.
File : vmware_VMSA-2009-0014_remote.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2016-03-03Name : The remote host is missing a security-related patch.
File : vmware_VMSA-2009-0016_remote.nasl - Type : ACT_GATHER_INFO
2015-05-20Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2013-1256-1.nasl - Type : ACT_GATHER_INFO
2015-05-20Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2013-1669-1.nasl - Type : ACT_GATHER_INFO
2015-05-15Name : The remote Debian host is missing a security update.
File : debian_DLA-219.nasl - Type : ACT_GATHER_INFO
2015-03-17Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3187.nasl - Type : ACT_GATHER_INFO
2015-03-11Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2522-3.nasl - Type : ACT_GATHER_INFO
2015-03-09Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2522-2.nasl - Type : ACT_GATHER_INFO
2015-03-06Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2522-1.nasl - Type : ACT_GATHER_INFO
2015-01-19Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_tomcat_20140522.nasl - Type : ACT_GATHER_INFO
2014-12-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10627.nasl - Type : ACT_GATHER_INFO
2014-12-15Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL15905.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2012-1537.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1455.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1456.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1793.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-0414.nasl - Type : ACT_GATHER_INFO
2014-11-06Name : The remote host has a version of Java installed that is affected by multiple ...
File : macosx_java_2014-001.nasl - Type : ACT_GATHER_INFO
2014-08-22Name : The remote host is affected by multiple vulnerabilities.
File : juniper_nsm_jsa10642.nasl - Type : ACT_GATHER_INFO
2014-07-30Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-0675.nasl - Type : ACT_GATHER_INFO
2014-07-30Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-0685.nasl - Type : ACT_GATHER_INFO