critical
9.3
CWE
NVD-CWE-Other
Advisory Published
Updated

CVE-2006-6745

First published: Tue Dec 26 2006(Updated: )

Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Sun Java SE=1.4
Sun Java SE=1.4.1
Sun Java SE=1.4.2
Sun Java SE=1.4.2_01
Sun Java SE=1.4.2_02
Sun Java SE=1.4.2_03
Sun Java SE=1.4.2_04
Sun Java SE=1.4.2_05
Sun Java SE=1.4.2_06
Sun Java SE=1.4.2_07
Sun Java SE=1.4.2_08
Sun Java SE=1.4.2_09
Sun Java SE=1.4.2_10
Sun Java SE=1.4.2_11
Sun Java SE=1.4.2_12
Sun Java SE=5.0
Sun Java SE=5.0_update1
Sun Java SE=5.0_update2
Sun Java SE=5.0_update3
Sun Java SE=5.0_update4
Sun Java SE=5.0_update5
Sun Java SE=5.0_update6
Sun Java SE=5.0_update7
Sun Java Runtime Environment (JRE)=1.4.1
Sun Java Runtime Environment (JRE)=1.4.2
Sun Java Runtime Environment (JRE)=1.4.2_1
Sun Java Runtime Environment (JRE)=1.4.2_2
Sun Java Runtime Environment (JRE)=1.4.2_3
Sun Java Runtime Environment (JRE)=1.4.2_4
Sun Java Runtime Environment (JRE)=1.4.2_5
Sun Java Runtime Environment (JRE)=1.4.2_6
Sun Java Runtime Environment (JRE)=1.4.2_7
Sun Java Runtime Environment (JRE)=1.4.2_8
Sun Java Runtime Environment (JRE)=1.4.2_9
Sun Java Runtime Environment (JRE)=1.4.2_10
Sun Java Runtime Environment (JRE)=1.4.2_11
Sun Java Runtime Environment (JRE)=1.4.2_12
Sun Java Runtime Environment (JRE)=1.4.2_13
Sun Java Runtime Environment (JRE)=1.5.0
Sun Java Runtime Environment (JRE)=1.5.0-update1
Sun Java Runtime Environment (JRE)=1.5.0-update2
Sun Java Runtime Environment (JRE)=1.5.0-update3
Sun Java Runtime Environment (JRE)=1.5.0-update4
Sun Java Runtime Environment (JRE)=1.5.0-update5
Sun Java Runtime Environment (JRE)=1.5.0-update6
Sun Java Runtime Environment (JRE)=1.5.0-update7
=1.4
=1.4.1
=1.4.2
=1.4.2_01
=1.4.2_02
=1.4.2_03
=1.4.2_04
=1.4.2_05
=1.4.2_06
=1.4.2_07
=1.4.2_08
=1.4.2_09
=1.4.2_10
=1.4.2_11
=1.4.2_12
=5.0
=5.0_update1
=5.0_update2
=5.0_update3
=5.0_update4
=5.0_update5
=5.0_update6
=5.0_update7
=1.4.1
=1.4.2
=1.4.2_1
=1.4.2_2
=1.4.2_3
=1.4.2_4
=1.4.2_5
=1.4.2_6
=1.4.2_7
=1.4.2_8
=1.4.2_9
=1.4.2_10
=1.4.2_11
=1.4.2_12
=1.4.2_13
=1.5.0
=1.5.0-update1
=1.5.0-update2
=1.5.0-update3
=1.5.0-update4
=1.5.0-update5
=1.5.0-update6
=1.5.0-update7

Remedy

http://securitytracker.com/id?1017426

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2006-6745?

    The severity of CVE-2006-6745 is considered high due to its potential to allow attackers to execute arbitrary code.

  • How do I fix CVE-2006-6745?

    To fix CVE-2006-6745, you should upgrade to a patched version of the Sun Java Development Kit (JDK) or Java Runtime Environment (JRE) that is not affected.

  • What versions are affected by CVE-2006-6745?

    CVE-2006-6745 affects Sun JRE versions 1.4.2 Update 12 and earlier, and JDK version 5.0 Update 7 and earlier.

  • What types of attacks can exploit CVE-2006-6745?

    Exploits of CVE-2006-6745 can lead to unauthorized control over a victim's system via malicious Java applets or applications.

  • Is there a workaround for CVE-2006-6745?

    A potential workaround for CVE-2006-6745 includes disabling the execution of Java applets in browsers until a fix is applied.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203