CVE-2014-6466
First published: Wed Oct 15 2014(Updated: )
Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Internet Explorer, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle JDK 6 | =1.6.0-update81 | |
| Oracle JDK 6 | =1.8.0-update20 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update_81 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update_67 | |
| Oracle Java Runtime Environment (JRE) | =1.8.0-update_20 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html
- http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html
- http://marc.info/?l=bugtraq&m=141775382904016&w=2
- http://secunia.com/advisories/61609
- http://security.gentoo.org/glsa/glsa-201502-12.xml
- http://www-01.ibm.com/support/docview.wss?uid=swg21688283
- http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
- http://www.securityfocus.com/bid/70484
Frequently Asked Questions
What is the severity of CVE-2014-6466?
CVE-2014-6466 has a high severity rating as it can affect the confidentiality, integrity, and availability of systems.
How do I fix CVE-2014-6466?
To mitigate CVE-2014-6466, users should update to the latest versions of Oracle Java SE and ensure that Internet Explorer is also updated.
What versions of Oracle software are affected by CVE-2014-6466?
CVE-2014-6466 affects Oracle Java SE versions 6u81, 7u67, and 8u20, along with their corresponding Runtime Environments.
What impact does CVE-2014-6466 have on systems?
CVE-2014-6466 can lead to significant security risks, including unauthorized access to confidential information and potential system instability.
Is there a patch available for CVE-2014-6466?
Yes, Oracle has released patches for CVE-2014-6466 in the subsequent updates of their Java SE and JRE products.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/author
- agent/references
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle jdk 6
- version/oracle jdk 6/1.6.0-update81
- version/oracle jdk 6/1.8.0-update20
- canonical/oracle java runtime environment (jre)
- version/oracle java runtime environment (jre)/1.6.0-update_81
- version/oracle java runtime environment (jre)/1.7.0-update_67
- version/oracle java runtime environment (jre)/1.8.0-update_20