CVE
- Id
- 42678
- CVE No.
- CVE-2010-0094
- Status
- Candidate
- Description
- Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18 and 5.0 Update 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is due to missing privilege checks during deserialization of RMIConnectionImpl objects, which allows remote attackers to call system-level Java functions via the ClassLoader of a constructor that is being deserialized.
- Phase
- Assigned (20091216)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 464966 | 42678 | CVE-2010-0094 | BUGTRAQ:20100405 ZDI-10-051: Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability | View |
| 464967 | 42678 | CVE-2010-0094 | URL:http://www.securityfocus.com/archive/1/archive/1/510527/100/0/threaded | View |
| 464968 | 42678 | CVE-2010-0094 | BUGTRAQ:20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX | View |
| 464969 | 42678 | CVE-2010-0094 | URL:http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded | View |
| 464970 | 42678 | CVE-2010-0094 | MISC:http://www.zerodayinitiative.com/advisories/ZDI-10-051 | View |
| 464971 | 42678 | CVE-2010-0094 | CONFIRM:http://www.oracle.com/technetwork/topics/security/javacpumar2010-083341.html | View |
| 464972 | 42678 | CVE-2010-0094 | CONFIRM:http://support.apple.com/kb/HT4170 | View |
| 464973 | 42678 | CVE-2010-0094 | CONFIRM:http://support.apple.com/kb/HT4171 | View |
| 464974 | 42678 | CVE-2010-0094 | CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html | View |
| 464975 | 42678 | CVE-2010-0094 | CONFIRM:http://www.vmware.com/security/advisories/VMSA-2011-0003.html | View |
| 464976 | 42678 | CVE-2010-0094 | CONFIRM:http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html | View |
| 464977 | 42678 | CVE-2010-0094 | APPLE:APPLE-SA-2010-05-18-1 | View |
| 464978 | 42678 | CVE-2010-0094 | URL:http://lists.apple.com/archives/security-announce/2010//May/msg00001.html | View |
| 464979 | 42678 | CVE-2010-0094 | APPLE:APPLE-SA-2010-05-18-2 | View |
| 464980 | 42678 | CVE-2010-0094 | URL:http://lists.apple.com/archives/security-announce/2010//May/msg00002.html | View |
| 464981 | 42678 | CVE-2010-0094 | HP:HPSBMA02547 | View |
| 464982 | 42678 | CVE-2010-0094 | URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 | View |
| 464983 | 42678 | CVE-2010-0094 | HP:SSRT100179 | View |
| 464984 | 42678 | CVE-2010-0094 | URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 | View |
| 464985 | 42678 | CVE-2010-0094 | HP:HPSBMU02799 | View |
| 464986 | 42678 | CVE-2010-0094 | URL:http://marc.info/?l=bugtraq&m=134254866602253&w=2 | View |
| 464987 | 42678 | CVE-2010-0094 | HP:HPSBUX02524 | View |
| 464988 | 42678 | CVE-2010-0094 | URL:http://marc.info/?l=bugtraq&m=127557596201693&w=2 | View |
| 464989 | 42678 | CVE-2010-0094 | HP:SSRT100089 | View |
| 464990 | 42678 | CVE-2010-0094 | URL:http://marc.info/?l=bugtraq&m=127557596201693&w=2 | View |
| 464991 | 42678 | CVE-2010-0094 | MANDRIVA:MDVSA-2010:084 | View |
| 464992 | 42678 | CVE-2010-0094 | URL:http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 | View |
| 464993 | 42678 | CVE-2010-0094 | REDHAT:RHSA-2010:0337 | View |
| 464994 | 42678 | CVE-2010-0094 | URL:http://www.redhat.com/support/errata/RHSA-2010-0337.html | View |
| 464995 | 42678 | CVE-2010-0094 | REDHAT:RHSA-2010:0338 | View |
| 464996 | 42678 | CVE-2010-0094 | URL:http://www.redhat.com/support/errata/RHSA-2010-0338.html | View |
| 464997 | 42678 | CVE-2010-0094 | REDHAT:RHSA-2010:0339 | View |
| 464998 | 42678 | CVE-2010-0094 | URL:http://www.redhat.com/support/errata/RHSA-2010-0339.html | View |
| 464999 | 42678 | CVE-2010-0094 | REDHAT:RHSA-2010:0383 | View |
| 465000 | 42678 | CVE-2010-0094 | URL:http://www.redhat.com/support/errata/RHSA-2010-0383.html | View |
| 465001 | 42678 | CVE-2010-0094 | REDHAT:RHSA-2010:0471 | View |
| 465002 | 42678 | CVE-2010-0094 | URL:http://www.redhat.com/support/errata/RHSA-2010-0471.html | View |
| 465003 | 42678 | CVE-2010-0094 | SUSE:SUSE-SR:2010:008 | View |
| 465004 | 42678 | CVE-2010-0094 | URL:http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html | View |
| 465005 | 42678 | CVE-2010-0094 | SUSE:SUSE-SR:2010:011 | View |
| 465006 | 42678 | CVE-2010-0094 | URL:http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html | View |
| 465007 | 42678 | CVE-2010-0094 | UBUNTU:USN-923-1 | View |
| 465008 | 42678 | CVE-2010-0094 | URL:http://ubuntu.com/usn/usn-923-1 | View |
| 465009 | 42678 | CVE-2010-0094 | OVAL:oval:org.mitre.oval:def:10851 | View |
| 465010 | 42678 | CVE-2010-0094 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10851 | View |
| 465011 | 42678 | CVE-2010-0094 | OVAL:oval:org.mitre.oval:def:14351 | View |
| 465012 | 42678 | CVE-2010-0094 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14351 | View |
| 465013 | 42678 | CVE-2010-0094 | SECUNIA:39292 | View |
| 465014 | 42678 | CVE-2010-0094 | URL:http://secunia.com/advisories/39292 | View |
| 465015 | 42678 | CVE-2010-0094 | SECUNIA:39317 | View |
| 465016 | 42678 | CVE-2010-0094 | URL:http://secunia.com/advisories/39317 | View |
| 465017 | 42678 | CVE-2010-0094 | SECUNIA:39659 | View |
| 465018 | 42678 | CVE-2010-0094 | URL:http://secunia.com/advisories/39659 | View |
| 465019 | 42678 | CVE-2010-0094 | SECUNIA:39819 | View |
| 465020 | 42678 | CVE-2010-0094 | URL:http://secunia.com/advisories/39819 | View |
| 465021 | 42678 | CVE-2010-0094 | SECUNIA:40545 | View |
| 465022 | 42678 | CVE-2010-0094 | URL:http://secunia.com/advisories/40545 | View |
| 465023 | 42678 | CVE-2010-0094 | SECUNIA:43308 | View |
| 465024 | 42678 | CVE-2010-0094 | URL:http://secunia.com/advisories/43308 | View |
| 465025 | 42678 | CVE-2010-0094 | VUPEN:ADV-2010-1107 | View |
| 465026 | 42678 | CVE-2010-0094 | URL:http://www.vupen.com/english/advisories/2010/1107 | View |
| 465027 | 42678 | CVE-2010-0094 | VUPEN:ADV-2010-1191 | View |
| 465028 | 42678 | CVE-2010-0094 | URL:http://www.vupen.com/english/advisories/2010/1191 | View |
| 465029 | 42678 | CVE-2010-0094 | VUPEN:ADV-2010-1454 | View |
| 465030 | 42678 | CVE-2010-0094 | URL:http://www.vupen.com/english/advisories/2010/1454 | View |
| 465031 | 42678 | CVE-2010-0094 | VUPEN:ADV-2010-1793 | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 35591 | JVNDB-2010-001371 | 複数のアンチウィルス製品に脆弱性 | 複数のアンチウィルス製品が影響を受ける可能性があります。 | CVE-2010-0098 | 42678 | 10 | http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001371.html | View |
