Unrated severityNVD Advisory· Published Aug 23, 2006· Updated Apr 16, 2026

CVE-2006-4302

Description

The Java Plug-in J2SE 1.3.0_02 through 5.0 Update 5, and Java Web Start 1.0 through 1.2 and J2SE 1.4.2 through 5.0 Update 5, allows remote attackers to exploit vulnerabilities by specifying a JRE version that contain vulnerabilities.

Affected products

Sun Corporation/J2se5 versions
cpe:2.3:a:sun:j2se:1.3.0_02:*:sdk:*:*:*:*:*+ 4 more
- cpe:2.3:a:sun:j2se:1.3.0_02:*:sdk:*:*:*:*:*
- cpe:2.3:a:sun:j2se:1.4.2:*:sdk:*:*:*:*:*
- cpe:2.3:a:sun:j2se:5.0:*:sdk:*:*:*:*:*
- cpe:2.3:a:sun:j2se:5.0_update1:*:sdk:*:*:*:*:*
- cpe:2.3:a:sun:j2se:5.0_update5:*:*:*:*:*:*:*
Sun Corporation/Java Web Start5 versions
cpe:2.3:a:sun:java_web_start:1.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:sun:java_web_start:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_web_start:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_web_start:1.0.1_01:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_web_start:1.0.1_02:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_web_start:1.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/21570nvdPatchVendor Advisory
sunsolve.sun.com/search/document.donvdPatch
www.vupen.com/english/advisories/2006/3354nvdVendor Advisory
securitytracker.com/idnvd
securitytracker.com/idnvd
support.avaya.com/elmodocs2/security/ASA-2006-205.htmnvd
www.osvdb.org/28109nvd
www.securityfocus.com/archive/1/382413nvd
www.securityfocus.com/bid/11757nvd
www.securityfocus.com/bid/8879nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000