7.2 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.009 Low
EPSS
Percentile
82.9%
Unspecified vulnerability in Java Web Start (JWS) and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted JWS applications to obtain the pathname of the JWS cache and the application username via unknown vectors, aka CR 6727071.
lists.opensuse.org/opensuse-security-announce/2009-01/msg00009.html
lists.opensuse.org/opensuse-security-announce/2009-04/msg00004.html
marc.info/?l=bugtraq&m=123678756409861&w=2
marc.info/?l=bugtraq&m=126583436323697&w=2
rhn.redhat.com/errata/RHSA-2008-1018.html
rhn.redhat.com/errata/RHSA-2008-1025.html
secunia.com/advisories/32991
secunia.com/advisories/33015
secunia.com/advisories/33710
secunia.com/advisories/34233
secunia.com/advisories/34447
secunia.com/advisories/34605
secunia.com/advisories/37386
secunia.com/advisories/38539
security.gentoo.org/glsa/glsa-200911-02.xml
sunsolve.sun.com/search/document.do?assetkey=1-26-244988-1
support.avaya.com/elmodocs2/security/ASA-2008-486.htm
support.avaya.com/elmodocs2/security/ASA-2009-012.htm
support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=829914&poid=
www.redhat.com/support/errata/RHSA-2009-0016.html
www.redhat.com/support/errata/RHSA-2009-0369.html
www.us-cert.gov/cas/techalerts/TA08-340A.html
www.vupen.com/english/advisories/2008/3339
www.vupen.com/english/advisories/2009/0672
www116.nortel.com/pub/repository/CLARIFY/DOCUMENT/2009/03/024431-01.pdf
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6529
More