Lucene search

K

[email protected]CVE-2016-0466

HistoryJan 21, 2016 - 3:00 a.m.

CVE-2016-0466

2016-01-2103:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

105

cve-2016-0466

vulnerability

java se

jrockit

remote attackers

jaxp

availability.

5.6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.051 Low

EPSS

Percentile

92.8%

Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect availability via vectors related to JAXP.

CPENameOperatorVersion
canonical:ubuntu_linuxcanonical ubuntu linuxeq12.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq15.10
canonical:ubuntu_linuxcanonical ubuntu linuxeq14.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq15.04
oracle:jdkoracle jdkeq1.8.0
oracle:jdkoracle jdkeq1.6.0
oracle:jdkoracle jdkeq1.7.0
oracle:jreoracle jreeq1.6.0
oracle:jreoracle jreeq1.7.0
oracle:jreoracle jreeq1.8.0

References

lists.opensuse.org/opensuse-security-announce/2016-01/msg00038.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00041.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00042.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00043.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00044.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00047.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00048.html

rhn.redhat.com/errata/RHSA-2016-0049.html

rhn.redhat.com/errata/RHSA-2016-0050.html

rhn.redhat.com/errata/RHSA-2016-0053.html

rhn.redhat.com/errata/RHSA-2016-0054.html

rhn.redhat.com/errata/RHSA-2016-0055.html

rhn.redhat.com/errata/RHSA-2016-0056.html

rhn.redhat.com/errata/RHSA-2016-0057.html

rhn.redhat.com/errata/RHSA-2016-0067.html

www.debian.org/security/2016/dsa-3458

www.debian.org/security/2016/dsa-3465

www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

www.securityfocus.com/bid/81118

www.securitytracker.com/id/1034715

www.ubuntu.com/usn/USN-2884-1

www.ubuntu.com/usn/USN-2885-1

access.redhat.com/errata/RHSA-2016:1430

kc.mcafee.com/corporate/index?page=content&id=SB10148

security.gentoo.org/glsa/201603-14

security.gentoo.org/glsa/201610-08

5.6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.051 Low

EPSS

Percentile

92.8%

Related for CVE-2016-0466

prion1 ibm76 debiancve1 ubuntucve1 f52 nessus42 openvas36 centos5 amazon3 oraclelinux5 ubuntu2 redhat8 debian3 kaspersky1 veracode5 mageia1 osv1 suse6