CVE

Id
43422  
CVE No.
CVE-2010-0838  
Status
Candidate  
Description
Unspecified vulnerability in the Java 2D component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is a stack-based buffer overflow using an untrusted size value in the readMabCurveData function in the CMM module in the JVM.  
Phase
Assigned (20100303)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
473011 43422 CVE-2010-0838 BUGTRAQ:20100405 ZDI-10-061: Sun Java Runtime CMM readMabCurveData Remote Code Execution Vulnerability  View
473012 43422 CVE-2010-0838 URL:http://www.securityfocus.com/archive/1/archive/1/510534/100/0/threaded  View
473013 43422 CVE-2010-0838 BUGTRAQ:20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX  View
473014 43422 CVE-2010-0838 URL:http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded  View
473015 43422 CVE-2010-0838 MISC:http://www.zerodayinitiative.com/advisories/ZDI-10-061  View
473016 43422 CVE-2010-0838 CONFIRM:http://www.oracle.com/technetwork/topics/security/javacpumar2010-083341.html  View
473017 43422 CVE-2010-0838 CONFIRM:http://support.apple.com/kb/HT4170  View
473018 43422 CVE-2010-0838 CONFIRM:http://support.apple.com/kb/HT4171  View
473019 43422 CVE-2010-0838 CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html  View
473020 43422 CVE-2010-0838 CONFIRM:http://www.vmware.com/security/advisories/VMSA-2011-0003.html  View
473021 43422 CVE-2010-0838 CONFIRM:http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html  View
473022 43422 CVE-2010-0838 APPLE:APPLE-SA-2010-05-18-1  View
473023 43422 CVE-2010-0838 URL:http://lists.apple.com/archives/security-announce/2010//May/msg00001.html  View
473024 43422 CVE-2010-0838 APPLE:APPLE-SA-2010-05-18-2  View
473025 43422 CVE-2010-0838 URL:http://lists.apple.com/archives/security-announce/2010//May/msg00002.html  View
473026 43422 CVE-2010-0838 HP:HPSBMA02547  View
473027 43422 CVE-2010-0838 URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751  View
473028 43422 CVE-2010-0838 HP:SSRT100179  View
473029 43422 CVE-2010-0838 URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751  View
473030 43422 CVE-2010-0838 HP:HPSBMU02799  View
473031 43422 CVE-2010-0838 URL:http://marc.info/?l=bugtraq&m=134254866602253&w=2  View
473032 43422 CVE-2010-0838 HP:HPSBUX02524  View
473033 43422 CVE-2010-0838 URL:http://marc.info/?l=bugtraq&m=127557596201693&w=2  View
473034 43422 CVE-2010-0838 HP:SSRT100089  View
473035 43422 CVE-2010-0838 URL:http://marc.info/?l=bugtraq&m=127557596201693&w=2  View
473036 43422 CVE-2010-0838 MANDRIVA:MDVSA-2010:084  View
473037 43422 CVE-2010-0838 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2010:084  View
473038 43422 CVE-2010-0838 REDHAT:RHSA-2010:0337  View
473039 43422 CVE-2010-0838 URL:http://www.redhat.com/support/errata/RHSA-2010-0337.html  View
473040 43422 CVE-2010-0838 REDHAT:RHSA-2010:0338  View
473041 43422 CVE-2010-0838 URL:http://www.redhat.com/support/errata/RHSA-2010-0338.html  View
473042 43422 CVE-2010-0838 REDHAT:RHSA-2010:0339  View
473043 43422 CVE-2010-0838 URL:http://www.redhat.com/support/errata/RHSA-2010-0339.html  View
473044 43422 CVE-2010-0838 REDHAT:RHSA-2010:0383  View
473045 43422 CVE-2010-0838 URL:http://www.redhat.com/support/errata/RHSA-2010-0383.html  View
473046 43422 CVE-2010-0838 REDHAT:RHSA-2010:0471  View
473047 43422 CVE-2010-0838 URL:http://www.redhat.com/support/errata/RHSA-2010-0471.html  View
473048 43422 CVE-2010-0838 SUSE:SUSE-SR:2010:008  View
473049 43422 CVE-2010-0838 URL:http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html  View
473050 43422 CVE-2010-0838 SUSE:SUSE-SR:2010:011  View
473051 43422 CVE-2010-0838 URL:http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html  View
473052 43422 CVE-2010-0838 UBUNTU:USN-923-1  View
473053 43422 CVE-2010-0838 URL:http://ubuntu.com/usn/usn-923-1  View
473054 43422 CVE-2010-0838 BID:39069  View
473055 43422 CVE-2010-0838 URL:http://www.securityfocus.com/bid/39069  View
473056 43422 CVE-2010-0838 OVAL:oval:org.mitre.oval:def:10482  View
473057 43422 CVE-2010-0838 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10482  View
473058 43422 CVE-2010-0838 OVAL:oval:org.mitre.oval:def:13923  View
473059 43422 CVE-2010-0838 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:13923  View
473060 43422 CVE-2010-0838 SECUNIA:39292  View
473061 43422 CVE-2010-0838 URL:http://secunia.com/advisories/39292  View
473062 43422 CVE-2010-0838 SECUNIA:39317  View
473063 43422 CVE-2010-0838 URL:http://secunia.com/advisories/39317  View
473064 43422 CVE-2010-0838 SECUNIA:39659  View
473065 43422 CVE-2010-0838 URL:http://secunia.com/advisories/39659  View
473066 43422 CVE-2010-0838 SECUNIA:39819  View
473067 43422 CVE-2010-0838 URL:http://secunia.com/advisories/39819  View
473068 43422 CVE-2010-0838 SECUNIA:40545  View
473069 43422 CVE-2010-0838 URL:http://secunia.com/advisories/40545  View
473070 43422 CVE-2010-0838 SECUNIA:43308  View
473071 43422 CVE-2010-0838 URL:http://secunia.com/advisories/43308  View
473072 43422 CVE-2010-0838 VUPEN:ADV-2010-1107  View
473073 43422 CVE-2010-0838 URL:http://www.vupen.com/english/advisories/2010/1107  View
473074 43422 CVE-2010-0838 VUPEN:ADV-2010-1191  View
473075 43422 CVE-2010-0838 URL:http://www.vupen.com/english/advisories/2010/1191  View
473076 43422 CVE-2010-0838 VUPEN:ADV-2010-1454  View
473077 43422 CVE-2010-0838 URL:http://www.vupen.com/english/advisories/2010/1454  View
473078 43422 CVE-2010-0838 VUPEN:ADV-2010-1793  View
473079 43422 CVE-2010-0838 URL:http://www.vupen.com/english/advisories/2010/1793  View
473080 43422 CVE-2010-0838 XF:javase-javab-java2d-unspecifed(57346)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
35543 JVNDB-2010-001323 複数の Oracle 製品の Sound コンポーネントにおける脆弱性 複数の Oracle 製品の Sound コンポーネントには、機密性、完全性、可用性に影響のある脆弱性が存在します。 CVE-2010-0842 43422 7.5 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001323.html  View