CVE Vulnerabilities

CVE-2010-0844

Published: Apr 01, 2010 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
7.5 IMPORTANT
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu
MEDIUM

Unspecified vulnerability in the Sound component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is for improper parsing of a crafted MIDI stream when creating a MixerSequencer object, which causes a pointer to be corrupted and allows a NULL byte to be written to arbitrary memory.

Affected Software

Name Vendor Start Version End Version
Jre Sun * 1.6.0 (including)
Jre Sun 1.6.0 (including) 1.6.0 (including)
Jre Sun 1.6.0-update_1 (including) 1.6.0-update_1 (including)
Jre Sun 1.6.0-update_10 (including) 1.6.0-update_10 (including)
Jre Sun 1.6.0-update_11 (including) 1.6.0-update_11 (including)
Jre Sun 1.6.0-update_12 (including) 1.6.0-update_12 (including)
Jre Sun 1.6.0-update_13 (including) 1.6.0-update_13 (including)
Jre Sun 1.6.0-update_14 (including) 1.6.0-update_14 (including)
Jre Sun 1.6.0-update_15 (including) 1.6.0-update_15 (including)
Jre Sun 1.6.0-update_16 (including) 1.6.0-update_16 (including)
Jre Sun 1.6.0-update_17 (including) 1.6.0-update_17 (including)
Jre Sun 1.6.0-update_2 (including) 1.6.0-update_2 (including)
Jre Sun 1.6.0-update_3 (including) 1.6.0-update_3 (including)
Jre Sun 1.6.0-update_4 (including) 1.6.0-update_4 (including)
Jre Sun 1.6.0-update_5 (including) 1.6.0-update_5 (including)
Jre Sun 1.6.0-update_6 (including) 1.6.0-update_6 (including)
Jre Sun 1.6.0-update_7 (including) 1.6.0-update_7 (including)
Extras for RHEL 3 RedHat java-1.4.2-ibm-0:1.4.2.13.5-1jpp.1.el3 *
Extras for RHEL 4 RedHat java-1.6.0-sun-1:1.6.0.19-1jpp.1.el4 *
Extras for RHEL 4 RedHat java-1.5.0-sun-0:1.5.0.22-1jpp.3.el4 *
Extras for RHEL 4 RedHat java-1.6.0-ibm-1:1.6.0.8-1jpp.1.el4 *
Extras for RHEL 4 RedHat java-1.5.0-ibm-1:1.5.0.11.2-1jpp.1.el4 *
Extras for RHEL 4 RedHat java-1.4.2-ibm-0:1.4.2.13.5-1jpp.1.el4 *
Extras for RHEL 4.7.z RedHat java-1.5.0-sun-0:1.5.0.22-1jpp.3.el4 *
Red Hat Network Satellite Server v 5.3 RedHat java-1.6.0-ibm-1:1.6.0.8-1jpp.1.el5 *
RHEL 4 for SAP RedHat java-1.4.2-ibm-sap-0:1.4.2.13.5.sap-1jpp.1.el4_8 *
RHEL 5 for SAP RedHat java-1.4.2-ibm-sap-0:1.4.2.13.5.sap-1jpp.1.el5 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.6.0-sun-1:1.6.0.19-1jpp.1.el5 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.5.0-sun-0:1.5.0.22-1jpp.3.el5 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.6.0-ibm-1:1.6.0.8-1jpp.1.el5 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.5.0-ibm-1:1.5.0.11.2-1jpp.1.el5 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.4.2-ibm-0:1.4.2.13.5-1jpp.1.el5 *
Supplementary for RHEL 5.2.z RedHat java-1.5.0-sun-0:1.5.0.22-1jpp.3.el5 *
Supplementary for RHEL 5.3.z RedHat java-1.5.0-sun-0:1.5.0.22-1jpp.3.el5 *
Openjdk-6 Ubuntu intrepid *
Sun-java5 Ubuntu dapper *
Sun-java5 Ubuntu hardy *
Sun-java5 Ubuntu intrepid *
Sun-java5 Ubuntu jaunty *
Sun-java5 Ubuntu upstream *
Sun-java6 Ubuntu hardy *
Sun-java6 Ubuntu intrepid *
Sun-java6 Ubuntu jaunty *
Sun-java6 Ubuntu karmic *
Sun-java6 Ubuntu upstream *

References