CVE - CVE-2010-4472

CVE-ID
CVE-2010-4472	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:46404 URL:http://www.securityfocus.com/bid/46404 CONFIRM:http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-003/index.html CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html CONFIRM:http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html DEBIAN:DSA-2224 URL:http://www.debian.org/security/2011/dsa-2224 FEDORA:FEDORA-2011-1631 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.html FEDORA:FEDORA-2011-1645 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054134.html GENTOO:GLSA-201406-32 URL:http://security.gentoo.org/glsa/glsa-201406-32.xml HP:HPSBMU02797 URL:http://marc.info/?l=bugtraq&m=134254957702612&w=2 HP:HPSBMU02799 URL:http://marc.info/?l=bugtraq&m=134254866602253&w=2 HP:SSRT100867 URL:http://marc.info/?l=bugtraq&m=134254957702612&w=2 MANDRIVA:MDVSA-2011:054 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2011:054~~ (Obsolete source) OVAL:oval:org.mitre.oval:def:12903 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12903 OVAL:oval:org.mitre.oval:def:14118 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14118 REDHAT:RHSA-2011:0281 URL:http://www.redhat.com/support/errata/RHSA-2011-0281.html REDHAT:RHSA-2011:0282 URL:http://www.redhat.com/support/errata/RHSA-2011-0282.html SECUNIA:43350 URL:http://secunia.com/advisories/43350 XF:oracle-java-xml-dos(65411) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/65411
Assigning CNA
Oracle
Date Record Created
20101206	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20101206)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)