CVE

Id
43425  
CVE No.
CVE-2010-0841  
Status
Candidate  
Description
Unspecified vulnerability in the ImageIO component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is an integer overflow in the Java Runtime Environment that allows remote attackers to execute arbitrary code via a JPEG image that contains subsample dimensions with large values, related to JPEGImageReader and "stepX".  
Phase
Assigned (20100303)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
473198 43425 CVE-2010-0841 BUGTRAQ:20100405 ZDI-10-054: Sun Java Runtime Environment JPEGImageReader stepX Remote Code Execution Vulnerability  View
473199 43425 CVE-2010-0841 URL:http://www.securityfocus.com/archive/1/archive/1/510531/100/0/threaded  View
473200 43425 CVE-2010-0841 BUGTRAQ:20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX  View
473201 43425 CVE-2010-0841 URL:http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded  View
473202 43425 CVE-2010-0841 MISC:http://www.zerodayinitiative.com/advisories/ZDI-10-054/  View
473203 43425 CVE-2010-0841 CONFIRM:http://www.oracle.com/technetwork/topics/security/javacpumar2010-083341.html  View
473204 43425 CVE-2010-0841 CONFIRM:http://support.apple.com/kb/HT4170  View
473205 43425 CVE-2010-0841 CONFIRM:http://support.apple.com/kb/HT4171  View
473206 43425 CVE-2010-0841 CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html  View
473207 43425 CVE-2010-0841 CONFIRM:http://www.vmware.com/security/advisories/VMSA-2011-0003.html  View
473208 43425 CVE-2010-0841 CONFIRM:http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html  View
473209 43425 CVE-2010-0841 APPLE:APPLE-SA-2010-05-18-1  View
473210 43425 CVE-2010-0841 URL:http://lists.apple.com/archives/security-announce/2010//May/msg00001.html  View
473211 43425 CVE-2010-0841 APPLE:APPLE-SA-2010-05-18-2  View
473212 43425 CVE-2010-0841 URL:http://lists.apple.com/archives/security-announce/2010//May/msg00002.html  View
473213 43425 CVE-2010-0841 HP:HPSBMA02547  View
473214 43425 CVE-2010-0841 URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751  View
473215 43425 CVE-2010-0841 HP:SSRT100179  View
473216 43425 CVE-2010-0841 URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751  View
473217 43425 CVE-2010-0841 HP:HPSBMU02799  View
473218 43425 CVE-2010-0841 URL:http://marc.info/?l=bugtraq&m=134254866602253&w=2  View
473219 43425 CVE-2010-0841 HP:HPSBUX02524  View
473220 43425 CVE-2010-0841 URL:http://marc.info/?l=bugtraq&m=127557596201693&w=2  View
473221 43425 CVE-2010-0841 HP:SSRT100089  View
473222 43425 CVE-2010-0841 URL:http://marc.info/?l=bugtraq&m=127557596201693&w=2  View
473223 43425 CVE-2010-0841 REDHAT:RHSA-2010:0337  View
473224 43425 CVE-2010-0841 URL:http://www.redhat.com/support/errata/RHSA-2010-0337.html  View
473225 43425 CVE-2010-0841 REDHAT:RHSA-2010:0338  View
473226 43425 CVE-2010-0841 URL:http://www.redhat.com/support/errata/RHSA-2010-0338.html  View
473227 43425 CVE-2010-0841 REDHAT:RHSA-2010:0383  View
473228 43425 CVE-2010-0841 URL:http://www.redhat.com/support/errata/RHSA-2010-0383.html  View
473229 43425 CVE-2010-0841 REDHAT:RHSA-2010:0471  View
473230 43425 CVE-2010-0841 URL:http://www.redhat.com/support/errata/RHSA-2010-0471.html  View
473231 43425 CVE-2010-0841 REDHAT:RHSA-2010:0489  View
473232 43425 CVE-2010-0841 URL:http://www.redhat.com/support/errata/RHSA-2010-0489.html  View
473233 43425 CVE-2010-0841 SUSE:SUSE-SR:2010:008  View
473234 43425 CVE-2010-0841 URL:http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html  View
473235 43425 CVE-2010-0841 SUSE:SUSE-SR:2010:017  View
473236 43425 CVE-2010-0841 URL:http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html  View
473237 43425 CVE-2010-0841 BID:39067  View
473238 43425 CVE-2010-0841 URL:http://www.securityfocus.com/bid/39067  View
473239 43425 CVE-2010-0841 OVAL:oval:org.mitre.oval:def:14144  View
473240 43425 CVE-2010-0841 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14144  View
473241 43425 CVE-2010-0841 SECUNIA:39317  View
473242 43425 CVE-2010-0841 URL:http://secunia.com/advisories/39317  View
473243 43425 CVE-2010-0841 SECUNIA:39659  View
473244 43425 CVE-2010-0841 URL:http://secunia.com/advisories/39659  View
473245 43425 CVE-2010-0841 SECUNIA:39819  View
473246 43425 CVE-2010-0841 URL:http://secunia.com/advisories/39819  View
473247 43425 CVE-2010-0841 SECUNIA:40211  View
473248 43425 CVE-2010-0841 URL:http://secunia.com/advisories/40211  View
473249 43425 CVE-2010-0841 SECUNIA:40545  View
473250 43425 CVE-2010-0841 URL:http://secunia.com/advisories/40545  View
473251 43425 CVE-2010-0841 SECUNIA:43308  View
473252 43425 CVE-2010-0841 URL:http://secunia.com/advisories/43308  View
473253 43425 CVE-2010-0841 VUPEN:ADV-2010-1191  View
473254 43425 CVE-2010-0841 URL:http://www.vupen.com/english/advisories/2010/1191  View
473255 43425 CVE-2010-0841 VUPEN:ADV-2010-1454  View
473256 43425 CVE-2010-0841 URL:http://www.vupen.com/english/advisories/2010/1454  View
473257 43425 CVE-2010-0841 VUPEN:ADV-2010-1523  View
473258 43425 CVE-2010-0841 URL:http://www.vupen.com/english/advisories/2010/1523  View
473259 43425 CVE-2010-0841 VUPEN:ADV-2010-1793  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
35534 JVNDB-2010-001314 複数の Oracle 製品の HotSpot Server コンポーネントにおける脆弱性 複数の Oracle 製品の HotSpot Server コンポーネントには、機密性、完全性、可用性に影響のある脆弱性が存在します。 CVE-2010-0845 43425 5.1 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001314.html  View