What is CVE-2010-4452?

CVE-2010-4452 is a vulnerability in Sun Jdk. Published 2011-02-17.

Is CVE-2010-4452 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Sun Jdk

CVE-2010-4452

Unspecified vulnerability in the Deployment component in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affec…

EPSS: 0.849 (99.4th percentile) — read the EPSS interpretation.

Affected products

Sun Jdk — versions 1.6.0
Sun Jre — versions 1.6.0
N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

secalert_us@oracle.com (x_refsource_CONFIRM)
8145 (x_refsource_SREASON, third-party-advisory)
HPSBMU02799 (x_refsource_HP, vendor-advisory)
secalert_us@oracle.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
oval:org.mitre.oval:def:14230 (x_refsource_OVAL, signature, vdb-entry)
44954 (x_refsource_SECUNIA, third-party-advisory)
oval:org.mitre.oval:def:12927 (x_refsource_OVAL, signature, vdb-entry)
RHSA-2011:0880 (x_refsource_REDHAT, vendor-advisory)
RHSA-2011:0282 (x_refsource_REDHAT, vendor-advisory)
SSRT100867 (x_refsource_HP, vendor-advisory)

Frequently asked questions

What is CVE-2010-4452?: CVE-2010-4452 is a vulnerability in Sun Jdk. Published 2011-02-17.
Is CVE-2010-4452 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.