CVE-2010-4476
First published: Thu Feb 17 2011(Updated: )
The `Double.parseDouble` method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. Apache Tomcat introduced workarounds to avoid being affected by this issue in versions 7.0.7, 6.0.32, and 5.5.33.
Credit: secalert_us@oracle.com secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| maven/org.apache.tomcat:tomcat | >=5.5.0<5.5.33 | 5.5.33 |
| maven/org.apache.tomcat:tomcat | >=6.0.0<6.0.32 | 6.0.32 |
| maven/org.apache.tomcat:tomcat | >=7.0.0<7.0.7 | 7.0.7 |
| Sun JRE | <=1.6.0 | |
| Sun JRE | =1.6.0 | |
| Sun JRE | =1.6.0-update_1 | |
| Sun JRE | =1.6.0-update_10 | |
| Sun JRE | =1.6.0-update_11 | |
| Sun JRE | =1.6.0-update_12 | |
| Sun JRE | =1.6.0-update_13 | |
| Sun JRE | =1.6.0-update_14 | |
| Sun JRE | =1.6.0-update_15 | |
| Sun JRE | =1.6.0-update_16 | |
| Sun JRE | =1.6.0-update_17 | |
| Sun JRE | =1.6.0-update_18 | |
| Sun JRE | =1.6.0-update_19 | |
| Sun JRE | =1.6.0-update_2 | |
| Sun JRE | =1.6.0-update_20 | |
| Sun JRE | =1.6.0-update_21 | |
| Sun JRE | =1.6.0-update_22 | |
| Sun JRE | =1.6.0-update_3 | |
| Sun JRE | =1.6.0-update_4 | |
| Sun JRE | =1.6.0-update_5 | |
| Sun JRE | =1.6.0-update_6 | |
| Sun JRE | =1.6.0-update_7 | |
| OpenJDK | <=1.6.0 | |
| OpenJDK | =1.6.0 | |
| OpenJDK | =1.6.0-update_10 | |
| OpenJDK | =1.6.0-update_11 | |
| OpenJDK | =1.6.0-update_12 | |
| OpenJDK | =1.6.0-update_13 | |
| OpenJDK | =1.6.0-update_14 | |
| OpenJDK | =1.6.0-update_15 | |
| OpenJDK | =1.6.0-update_16 | |
| OpenJDK | =1.6.0-update_17 | |
| OpenJDK | =1.6.0-update_18 | |
| OpenJDK | =1.6.0-update_19 | |
| OpenJDK | =1.6.0-update_20 | |
| OpenJDK | =1.6.0-update_21 | |
| OpenJDK | =1.6.0-update_22 | |
| OpenJDK | =1.6.0-update_3 | |
| OpenJDK | =1.6.0-update_4 | |
| OpenJDK | =1.6.0-update_5 | |
| OpenJDK | =1.6.0-update_6 | |
| OpenJDK | =1.6.0-update_7 | |
| OpenJDK | =1.6.0-update1 | |
| OpenJDK | =1.6.0-update1_b06 | |
| OpenJDK | =1.6.0-update2 | |
| OpenJDK | <=1.5.0 | |
| OpenJDK | =1.5.0 | |
| OpenJDK | =1.5.0-update1 | |
| OpenJDK | =1.5.0-update10 | |
| OpenJDK | =1.5.0-update11 | |
| OpenJDK | =1.5.0-update12 | |
| OpenJDK | =1.5.0-update13 | |
| OpenJDK | =1.5.0-update14 | |
| OpenJDK | =1.5.0-update15 | |
| OpenJDK | =1.5.0-update16 | |
| OpenJDK | =1.5.0-update17 | |
| OpenJDK | =1.5.0-update18 | |
| OpenJDK | =1.5.0-update19 | |
| OpenJDK | =1.5.0-update2 | |
| OpenJDK | =1.5.0-update20 | |
| OpenJDK | =1.5.0-update21 | |
| OpenJDK | =1.5.0-update22 | |
| OpenJDK | =1.5.0-update23 | |
| OpenJDK | =1.5.0-update24 | |
| OpenJDK | =1.5.0-update25 | |
| OpenJDK | =1.5.0-update26 | |
| OpenJDK | =1.5.0-update3 | |
| OpenJDK | =1.5.0-update4 | |
| OpenJDK | =1.5.0-update5 | |
| OpenJDK | =1.5.0-update6 | |
| OpenJDK | =1.5.0-update7 | |
| OpenJDK | =1.5.0-update8 | |
| OpenJDK | =1.5.0-update9 | |
| Sun SDK | <=1.4.2_29 | |
| Sun SDK | =1.4.2 | |
| Sun SDK | =1.4.2_1 | |
| Sun SDK | =1.4.2_02 | |
| Sun SDK | =1.4.2_3 | |
| Sun SDK | =1.4.2_4 | |
| Sun SDK | =1.4.2_5 | |
| Sun SDK | =1.4.2_6 | |
| Sun SDK | =1.4.2_7 | |
| Sun SDK | =1.4.2_8 | |
| Sun SDK | =1.4.2_9 | |
| Sun SDK | =1.4.2_10 | |
| Sun SDK | =1.4.2_11 | |
| Sun SDK | =1.4.2_12 | |
| Sun SDK | =1.4.2_13 | |
| Sun SDK | =1.4.2_14 | |
| Sun SDK | =1.4.2_15 | |
| Sun SDK | =1.4.2_16 | |
| Sun SDK | =1.4.2_17 | |
| Sun SDK | =1.4.2_18 | |
| Sun SDK | =1.4.2_19 | |
| Sun SDK | =1.4.2_20 | |
| Sun SDK | =1.4.2_21 | |
| Sun SDK | =1.4.2_22 | |
| Sun SDK | =1.4.2_23 | |
| Sun SDK | =1.4.2_24 | |
| Sun SDK | =1.4.2_25 | |
| Sun SDK | =1.4.2_26 | |
| Sun SDK | =1.4.2_27 | |
| Sun SDK | =1.4.2_28 | |
| Sun JRE | <=1.5.0 | |
| Sun JRE | =1.5.0 | |
| Sun JRE | =1.5.0-update1 | |
| Sun JRE | =1.5.0-update10 | |
| Sun JRE | =1.5.0-update11 | |
| Sun JRE | =1.5.0-update12 | |
| Sun JRE | =1.5.0-update13 | |
| Sun JRE | =1.5.0-update14 | |
| Sun JRE | =1.5.0-update15 | |
| Sun JRE | =1.5.0-update16 | |
| Sun JRE | =1.5.0-update17 | |
| Sun JRE | =1.5.0-update18 | |
| Sun JRE | =1.5.0-update19 | |
| Sun JRE | =1.5.0-update2 | |
| Sun JRE | =1.5.0-update20 | |
| Sun JRE | =1.5.0-update21 | |
| Sun JRE | =1.5.0-update22 | |
| Sun JRE | =1.5.0-update23 | |
| Sun JRE | =1.5.0-update24 | |
| Sun JRE | =1.5.0-update25 | |
| Sun JRE | =1.5.0-update26 | |
| Sun JRE | =1.5.0-update3 | |
| Sun JRE | =1.5.0-update4 | |
| Sun JRE | =1.5.0-update5 | |
| Sun JRE | =1.5.0-update6 | |
| Sun JRE | =1.5.0-update7 | |
| Sun JRE | =1.5.0-update8 | |
| Sun JRE | =1.5.0-update9 | |
| Sun JRE | <=1.4.2_29 | |
| Sun JRE | =1.4.2 | |
| Sun JRE | =1.4.2_1 | |
| Sun JRE | =1.4.2_2 | |
| Sun JRE | =1.4.2_3 | |
| Sun JRE | =1.4.2_4 | |
| Sun JRE | =1.4.2_5 | |
| Sun JRE | =1.4.2_6 | |
| Sun JRE | =1.4.2_7 | |
| Sun JRE | =1.4.2_8 | |
| Sun JRE | =1.4.2_9 | |
| Sun JRE | =1.4.2_10 | |
| Sun JRE | =1.4.2_11 | |
| Sun JRE | =1.4.2_12 | |
| Sun JRE | =1.4.2_13 | |
| Sun JRE | =1.4.2_14 | |
| Sun JRE | =1.4.2_15 | |
| Sun JRE | =1.4.2_16 | |
| Sun JRE | =1.4.2_17 | |
| Sun JRE | =1.4.2_18 | |
| Sun JRE | =1.4.2_19 | |
| Sun JRE | =1.4.2_20 | |
| Sun JRE | =1.4.2_21 | |
| Sun JRE | =1.4.2_22 | |
| Sun JRE | =1.4.2_23 | |
| Sun JRE | =1.4.2_24 | |
| Sun JRE | =1.4.2_25 | |
| Sun JRE | =1.4.2_26 | |
| Sun JRE | =1.4.2_27 | |
| Sun JRE | =1.4.2_28 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html
- http://www.redhat.com/support/errata/RHSA-2011-0214.html
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM31983
- http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053926.html
- http://www.debian.org/security/2011/dsa-2161
- http://www.redhat.com/support/errata/RHSA-2011-0282.html
- http://secunia.com/advisories/43400
- http://www.vupen.com/english/advisories/2011/0422
- http://www.redhat.com/support/errata/RHSA-2011-0211.html
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ94423
- http://www.vupen.com/english/advisories/2011/0434
- http://www.redhat.com/support/errata/RHSA-2011-0213.html
- http://secunia.com/advisories/43280
- http://www-01.ibm.com/support/docview.wss?uid=swg21468358
- http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053934.html
- http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02720715&admit=109447627+1298159618320+28353475
- http://www.vupen.com/english/advisories/2011/0365
- http://secunia.com/advisories/43378
- http://secunia.com/advisories/43304
- http://secunia.com/advisories/43295
- http://www.vupen.com/english/advisories/2011/0379
- http://www.redhat.com/support/errata/RHSA-2011-0212.html
- http://blogs.oracle.com/security/2011/02/security_alert_for_cve-2010-44.html
- http://www.securitytracker.com/id?1025062
- http://www.vupen.com/english/advisories/2011/0377
- http://www.redhat.com/support/errata/RHSA-2011-0210.html
- http://blog.fortify.com/blog/2011/02/08/Double-Trouble
- http://secunia.com/advisories/43048
- http://secunia.com/advisories/43333
- http://www.oracle.com/technetwork/topics/security/alert-cve-2010-4476-305811.html
- http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/
- http://www.redhat.com/support/errata/RHSA-2011-0334.html
- http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
- http://www.redhat.com/support/errata/RHSA-2011-0333.html
- http://secunia.com/advisories/45555
- http://www.ibm.com/support/docview.wss?uid=swg24029498
- http://www.ibm.com/support/docview.wss?uid=swg24029497
- http://www.redhat.com/support/errata/RHSA-2011-0880.html
- http://marc.info/?l=bugtraq&m=130514352726432&w=2
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:054
- http://marc.info/?l=bugtraq&m=131041767210772&w=2
- http://www.vupen.com/english/advisories/2011/0605
- http://marc.info/?l=bugtraq&m=129960314701922&w=2
- http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00004.html
- http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00010.html
- http://secunia.com/advisories/43659
- http://secunia.com/advisories/44954
- http://secunia.com/advisories/45022
- http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5098550.html
- http://secunia.com/advisories/49198
- http://marc.info/?l=bugtraq&m=132215163318824&w=2
- http://marc.info/?l=bugtraq&m=136485229118404&w=2
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-003/index.html
- http://marc.info/?l=bugtraq&m=134254957702612&w=2
- http://marc.info/?l=bugtraq&m=130270785502599&w=2
- http://marc.info/?l=bugtraq&m=130497185606818&w=2
- http://marc.info/?l=bugtraq&m=133469267822771&w=2
- http://marc.info/?l=bugtraq&m=130497132406206&w=2
- http://marc.info/?l=bugtraq&m=129899347607632&w=2
- http://marc.info/?l=bugtraq&m=133728004526190&w=2
- http://marc.info/?l=bugtraq&m=130168502603566&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19493
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14589
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14328
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12745
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12662
- http://marc.info/?l=bugtraq&m=134254866602253&w=2
- https://nvd.nist.gov/vuln/detail/CVE-2010-4476
- https://github.com/apache/tomcat/commit/407841c426dc52a4c6b8ccd297df6c484a540056
- https://github.com/apache/tomcat/commit/69ef147c4498397e8f644a0699cf588b45a05120
- https://github.com/apache/tomcat/commit/b0c1eeaa0d303bcb42651b222037e079d0634c01
- https://svn.apache.org/viewvc?view=revision&revision=1066244
- https://svn.apache.org/viewvc?view=revision&revision=1066315
- https://svn.apache.org/viewvc?view=revision&revision=1066318
- https://tomcat.apache.org/security-5.html
- https://tomcat.apache.org/security-6.html
- https://tomcat.apache.org/security-7.html
- http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308
- https://github.com/advisories/GHSA-gvgc-rxmh-5hvw (Advisory)
Frequently Asked Questions
What is the severity of CVE-2010-4476?
CVE-2010-4476 has a high severity rating due to its potential to cause a denial of service.
How do I fix CVE-2010-4476?
To fix CVE-2010-4476, ensure that you update to Oracle Java SE 6 Update 24 or later, or apply the recommended patches for affected versions.
Which software is affected by CVE-2010-4476?
CVE-2010-4476 affects multiple versions of the Java Runtime Environment including Oracle Java SE 6 Update 23 and earlier, and related software like Apache Tomcat.
Can CVE-2010-4476 be exploited remotely?
Yes, CVE-2010-4476 can be exploited remotely, allowing attackers to cause a denial of service on vulnerable systems.
What products utilize the vulnerable method in CVE-2010-4476?
The vulnerable `Double.parseDouble` method in CVE-2010-4476 is utilized by various products including OpenJDK, JBossweb, and Oracle's Java SE.
- agent/type
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-gvgc-rxmh-5hvw
- alias/CVE-2010-4476
- agent/software-canonical-lookup
- agent/weakness
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/description
- agent/author
- collector/github-advisory
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- package-manager/maven
- vendor/sun
- canonical/sun jre
- version/sun jre/1.6.0
- version/sun jre/1.6.0-update_1
- version/sun jre/1.6.0-update_10
- version/sun jre/1.6.0-update_11
- version/sun jre/1.6.0-update_12
- version/sun jre/1.6.0-update_13
- version/sun jre/1.6.0-update_14
- version/sun jre/1.6.0-update_15
- version/sun jre/1.6.0-update_16
- version/sun jre/1.6.0-update_17
- version/sun jre/1.6.0-update_18
- version/sun jre/1.6.0-update_19
- version/sun jre/1.6.0-update_2
- version/sun jre/1.6.0-update_20
- version/sun jre/1.6.0-update_21
- version/sun jre/1.6.0-update_22
- version/sun jre/1.6.0-update_3
- version/sun jre/1.6.0-update_4
- version/sun jre/1.6.0-update_5
- version/sun jre/1.6.0-update_6
- version/sun jre/1.6.0-update_7
- canonical/openjdk
- version/openjdk/1.6.0
- version/openjdk/1.6.0-update_10
- version/openjdk/1.6.0-update_11
- version/openjdk/1.6.0-update_12
- version/openjdk/1.6.0-update_13
- version/openjdk/1.6.0-update_14
- version/openjdk/1.6.0-update_15
- version/openjdk/1.6.0-update_16
- version/openjdk/1.6.0-update_17
- version/openjdk/1.6.0-update_18
- version/openjdk/1.6.0-update_19
- version/openjdk/1.6.0-update_20
- version/openjdk/1.6.0-update_21
- version/openjdk/1.6.0-update_22
- version/openjdk/1.6.0-update_3
- version/openjdk/1.6.0-update_4
- version/openjdk/1.6.0-update_5
- version/openjdk/1.6.0-update_6
- version/openjdk/1.6.0-update_7
- version/openjdk/1.6.0-update1
- version/openjdk/1.6.0-update1_b06
- version/openjdk/1.6.0-update2
- version/openjdk/1.5.0
- version/openjdk/1.5.0-update1
- version/openjdk/1.5.0-update10
- version/openjdk/1.5.0-update11
- version/openjdk/1.5.0-update12
- version/openjdk/1.5.0-update13
- version/openjdk/1.5.0-update14
- version/openjdk/1.5.0-update15
- version/openjdk/1.5.0-update16
- version/openjdk/1.5.0-update17
- version/openjdk/1.5.0-update18
- version/openjdk/1.5.0-update19
- version/openjdk/1.5.0-update2
- version/openjdk/1.5.0-update20
- version/openjdk/1.5.0-update21
- version/openjdk/1.5.0-update22
- version/openjdk/1.5.0-update23
- version/openjdk/1.5.0-update24
- version/openjdk/1.5.0-update25
- version/openjdk/1.5.0-update26
- version/openjdk/1.5.0-update3
- version/openjdk/1.5.0-update4
- version/openjdk/1.5.0-update5
- version/openjdk/1.5.0-update6
- version/openjdk/1.5.0-update7
- version/openjdk/1.5.0-update8
- version/openjdk/1.5.0-update9
- canonical/sun sdk
- version/sun sdk/1.4.2_29
- version/sun sdk/1.4.2
- version/sun sdk/1.4.2_1
- version/sun sdk/1.4.2_02
- version/sun sdk/1.4.2_3
- version/sun sdk/1.4.2_4
- version/sun sdk/1.4.2_5
- version/sun sdk/1.4.2_6
- version/sun sdk/1.4.2_7
- version/sun sdk/1.4.2_8
- version/sun sdk/1.4.2_9
- version/sun sdk/1.4.2_10
- version/sun sdk/1.4.2_11
- version/sun sdk/1.4.2_12
- version/sun sdk/1.4.2_13
- version/sun sdk/1.4.2_14
- version/sun sdk/1.4.2_15
- version/sun sdk/1.4.2_16
- version/sun sdk/1.4.2_17
- version/sun sdk/1.4.2_18
- version/sun sdk/1.4.2_19
- version/sun sdk/1.4.2_20
- version/sun sdk/1.4.2_21
- version/sun sdk/1.4.2_22
- version/sun sdk/1.4.2_23
- version/sun sdk/1.4.2_24
- version/sun sdk/1.4.2_25
- version/sun sdk/1.4.2_26
- version/sun sdk/1.4.2_27
- version/sun sdk/1.4.2_28
- version/sun jre/1.5.0
- version/sun jre/1.5.0-update1
- version/sun jre/1.5.0-update10
- version/sun jre/1.5.0-update11
- version/sun jre/1.5.0-update12
- version/sun jre/1.5.0-update13
- version/sun jre/1.5.0-update14
- version/sun jre/1.5.0-update15
- version/sun jre/1.5.0-update16
- version/sun jre/1.5.0-update17
- version/sun jre/1.5.0-update18
- version/sun jre/1.5.0-update19
- version/sun jre/1.5.0-update2
- version/sun jre/1.5.0-update20
- version/sun jre/1.5.0-update21
- version/sun jre/1.5.0-update22
- version/sun jre/1.5.0-update23
- version/sun jre/1.5.0-update24
- version/sun jre/1.5.0-update25
- version/sun jre/1.5.0-update26
- version/sun jre/1.5.0-update3
- version/sun jre/1.5.0-update4
- version/sun jre/1.5.0-update5
- version/sun jre/1.5.0-update6
- version/sun jre/1.5.0-update7
- version/sun jre/1.5.0-update8
- version/sun jre/1.5.0-update9
- version/sun jre/1.4.2_29
- version/sun jre/1.4.2
- version/sun jre/1.4.2_1
- version/sun jre/1.4.2_2
- version/sun jre/1.4.2_3
- version/sun jre/1.4.2_4
- version/sun jre/1.4.2_5
- version/sun jre/1.4.2_6
- version/sun jre/1.4.2_7
- version/sun jre/1.4.2_8
- version/sun jre/1.4.2_9
- version/sun jre/1.4.2_10
- version/sun jre/1.4.2_11
- version/sun jre/1.4.2_12
- version/sun jre/1.4.2_13
- version/sun jre/1.4.2_14
- version/sun jre/1.4.2_15
- version/sun jre/1.4.2_16
- version/sun jre/1.4.2_17
- version/sun jre/1.4.2_18
- version/sun jre/1.4.2_19
- version/sun jre/1.4.2_20
- version/sun jre/1.4.2_21
- version/sun jre/1.4.2_22
- version/sun jre/1.4.2_23
- version/sun jre/1.4.2_24
- version/sun jre/1.4.2_25
- version/sun jre/1.4.2_26
- version/sun jre/1.4.2_27
- version/sun jre/1.4.2_28