CVE-2006-2426
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
97.4%
Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 and earlier, and SDK 1.5.0_6 and earlier allows remote attackers to cause a denial of service (disk consumption) by using the Font.createFont function to create temporary files of arbitrary size in the %temp% directory.
Affected configurations
References
secunia.com/advisories/20132
secunia.com/advisories/20457
secunia.com/advisories/34489
secunia.com/advisories/34495
secunia.com/advisories/34496
secunia.com/advisories/34632
secunia.com/advisories/34675
securityreason.com/securityalert/909
support.avaya.com/elmodocs2/security/ASA-2009-108.htm
support.avaya.com/elmodocs2/security/ASA-2009-109.htm
www.debian.org/security/2009/dsa-1769
www.illegalaccess.org/exploit/FullDiskApplet.html
www.mandriva.com/security/advisories?name=MDVSA-2009:137
www.mandriva.com/security/advisories?name=MDVSA-2009:162
www.novell.com/linux/security/advisories/2006-06-02.html
www.osvdb.org/25561
www.redhat.com/support/errata/RHSA-2009-0392.html
www.redhat.com/support/errata/RHSA-2009-0394.html
www.securityfocus.com/archive/1/434001/100/0/threaded
www.securityfocus.com/bid/17981
www.ubuntu.com/usn/usn-748-1
www.vupen.com/english/advisories/2006/1824
exchange.xforce.ibmcloud.com/vulnerabilities/26493
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10609
rhn.redhat.com/errata/RHSA-2009-0377.html
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
97.4%