CVE-2006-0614

Name: CVE-2006-0614
Creator: NVD / NIST
Published: 2006-02-09T02:02:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 5.12%

Last modified Jun 16, 2026

CVE-2006-0614 is a vulnerability of currently unknown severity. Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 3 and earlier, SDK and JRE 1.3.x through 1.3.1_16 and 1.4.x through 1.4.2_08 allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "first issue.". EPSS estimates a 5.12% chance of exploitation in the next 30 days.

Description

Unspecified vulnerability in Sun Java JDK and JRE 5.0 Update 3 and earlier, SDK and JRE 1.3.x through 1.3.1_16 and 1.4.x through 1.4.2_08 allows remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "first issue."

Metrics

EPSS Probability

5.12%

91.3th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Sun	Jdk	5.0
Sun	Jre	>= 1.3.0, <= 1.3.1_16
Sun	Jre	>= 1.4.0, <= 1.4.2_8
Sun	Jre	5.0
Sun	Sdk	>= 1.3.0, <= 1.3.1_16
Sun	Sdk	>= 1.4.0, <= 1.4.2_08

References

http://docs.info.apple.com/article.html?artnum=303658Third Party Advisory
http://secunia.com/advisories/18760Third Party Advisory
http://secunia.com/advisories/18884Third Party Advisory
http://securitytracker.com/id?1015596Third Party Advisory, VDB Entry
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1Broken Link, Patch
http://www.gentoo.org/security/en/glsa/glsa-200602-07.xmlThird Party Advisory
http://www.kb.cert.org/vuls/id/759996Third Party Advisory, US Government Resource
http://www.vupen.com/english/advisories/2006/0467Permissions Required, Third Party Advisory
http://www.vupen.com/english/advisories/2006/0828Permissions Required, Third Party Advisory
http://www.vupen.com/english/advisories/2006/1398Permissions Required, Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/24561Third Party Advisory, VDB Entry
http://docs.info.apple.com/article.html?artnum=303658Third Party Advisory
http://secunia.com/advisories/18760Third Party Advisory
http://secunia.com/advisories/18884Third Party Advisory
http://securitytracker.com/id?1015596Third Party Advisory, VDB Entry
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102171-1Broken Link, Patch
http://www.gentoo.org/security/en/glsa/glsa-200602-07.xmlThird Party Advisory
http://www.kb.cert.org/vuls/id/759996Third Party Advisory, US Government Resource
http://www.vupen.com/english/advisories/2006/0467Permissions Required, Third Party Advisory
http://www.vupen.com/english/advisories/2006/0828Permissions Required, Third Party Advisory
http://www.vupen.com/english/advisories/2006/1398Permissions Required, Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/24561Third Party Advisory, VDB Entry

Timeline

Published: Feb 9, 2006
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2006-0614?

How severe is CVE-2006-0614?

Severity scoring for CVE-2006-0614 is pending analysis. The EPSS model estimates a 5.12% probability of exploitation in the next 30 days.

How do I fix CVE-2006-0614?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-0614?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST