Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2006-6731

Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allow attackers to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.

  • Published: Dec 27, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-6731
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 9.3
  • AV:N/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
sun / jdk 1.5.0-update3 1.5.0-update3.x
sun / jdk 1.5.0-update6 1.5.0-update6.x
sun / jdk 1.5.0-update1 1.5.0-update1.x
sun / jdk 1.5.0-update4 1.5.0-update4.x
sun / jdk 1.5.0-update7 1.5.0-update7.x
sun / jdk 1.5.0-update5 1.5.0-update5.x
sun / jdk 1.5.0-update2 1.5.0-update2.x
sun / jdk 1.5.0 1.5.0.x
sun / jre 1.4.2_7 1.4.2_7.x
sun / jre 1.3.1_10 1.3.1_10.x
sun / jre 1.3.1_06 1.3.1_06.x
sun / jre 1.4.2_4 1.4.2_4.x
sun / jre 1.4.2_2 1.4.2_2.x
sun / jre 1.5.0-update2 1.5.0-update2.x
sun / jre 1.3.1_2 1.3.1_2.x
sun / jre 1.4.2_1 1.4.2_1.x
sun / jre 1.4.2_8 1.4.2_8.x
sun / jre 1.3.1_16 1.3.1_16.x
sun / jre 1.3.1_11 1.3.1_11.x
sun / jre 1.3.1_17 1.3.1_17.x
sun / jre 1.4.2_12 1.4.2_12.x
sun / jre 1.3.1_12 1.3.1_12.x
sun / jre 1.3.1_03 1.3.1_03.x
sun / jre 1.3.1_14 1.3.1_14.x
sun / jre 1.3.1_08 1.3.1_08.x
sun / jre 1.5.0-update7 1.5.0-update7.x
sun / jre 1.5.0-update3 1.5.0-update3.x
sun / jre 1.3.1_07 1.3.1_07.x
sun / jre 1.3.1_05 1.3.1_05.x
sun / jre 1.4.2_10 1.4.2_10.x
sun / jre 1.5.0-update5 1.5.0-update5.x
sun / jre 1.4.2_9 1.4.2_9.x
sun / jre 1.5.0-update6 1.5.0-update6.x
sun / jre 1.3.1_13 1.3.1_13.x
sun / jre 1.3.1_04 1.3.1_04.x
sun / jre 1.3.1_09 1.3.1_09.x
sun / jre 1.4.2_11 1.4.2_11.x
sun / jre 1.5.0-update1 1.5.0-update1.x
sun / jre 1.3.1_18 1.3.1_18.x
sun / jre 1.3.1_15 1.3.1_15.x
sun / jre 1.4.2_3 1.4.2_3.x
sun / jre 1.5.0-update4 1.5.0-update4.x
sun / jre 1.4.2_5 1.4.2_5.x
sun / jre 1.4.2_6 1.4.2_6.x
sun / jre 1.5.0 1.5.0.x
sun / jre 1.4.2 1.4.2.x
sun / jre 1.3.1 1.3.1.x
sun / sdk 1.3.1_03 1.3.1_03.x
sun / sdk 1.4.2 1.4.2.x
sun / sdk 1.3.1 1.3.1.x
sun / sdk 1.3.1_08 1.3.1_08.x
sun / sdk 1.4.2_10 1.4.2_10.x
sun / sdk 1.4.2_12 1.4.2_12.x
sun / sdk 1.3.1_15 1.3.1_15.x
sun / sdk 1.4.2_6 1.4.2_6.x
sun / sdk 1.3.1_07 1.3.1_07.x
sun / sdk 1.4.2_2 1.4.2_2.x
sun / sdk 1.3.1_10 1.3.1_10.x
sun / sdk 1.4.2_5 1.4.2_5.x
sun / sdk 1.3.1_06 1.3.1_06.x
sun / sdk 1.4.2_1 1.4.2_1.x
sun / sdk 1.3.1_12 1.3.1_12.x
sun / sdk 1.4.2_4 1.4.2_4.x
sun / sdk 1.3.1_17 1.3.1_17.x
sun / sdk 1.3.1_02 1.3.1_02.x
sun / sdk 1.3.1_18 1.3.1_18.x
sun / sdk 1.3.1_01 1.3.1_01.x
sun / sdk 1.3.1_16 1.3.1_16.x
sun / sdk 1.3.1_01a 1.3.1_01a.x
sun / sdk 1.3.1_14 1.3.1_14.x
sun / sdk 1.4.2_7 1.4.2_7.x
sun / sdk 1.3.1_13 1.3.1_13.x
sun / sdk 1.4.2_8 1.4.2_8.x
sun / sdk 1.4.2_11 1.4.2_11.x
sun / sdk 1.3.1_09 1.3.1_09.x
sun / sdk 1.4.2_9 1.4.2_9.x
sun / sdk 1.3.1_04 1.3.1_04.x
sun / sdk 1.3.1_05 1.3.1_05.x
sun / sdk 1.4.2_3 1.4.2_3.x
sun / sdk 1.3.1_11 1.3.1_11.x