{"lastseen": "2020-09-14T18:35:27", "references": ["http://support.novell.com/security/cve/CVE-2013-1926.html", "https://bugzilla.novell.com/show_bug.cgi?id=818768", "http://support.novell.com/security/cve/CVE-2012-3422.html", "http://support.novell.com/security/cve/CVE-2013-1927.html", "https://bugzilla.novell.com/show_bug.cgi?id=825880", "http://support.novell.com/security/cve/CVE-2012-3423.html", "https://bugzilla.novell.com/show_bug.cgi?id=815596"], "scheme": null, "pluginID": "68953", "description": "This update to IcedTea-Web 1.4 provides the following fixes and\nenhancements :\n\n - Security updates\n\n - RH916774: Class-loader incorrectly shared for applets\n with same relative-path. (CVE-2013-1926)\n\n - RH884705: fixed gifar vulnerabilit. (CVE-2013-1927)\n\n - RH840592: Potential read from an uninitialized memory\n location. (CVE-2012-3422)\n\n - RH841345: Incorrect handling of not 0-terminated\n strings. (CVE-2012-3423)\n\n - RH884705: fixed gifar vulnerability. (CVE-2013-1927)\n\n - RH916774: Class-loader incorrectly shared for applets\n with same relative-path. (CVE-2013-1926)\n\n - NetX\n\n - PR1027: DownloadService is not supported by IcedTea-Web\n\n - PR725: JNLP applications will prompt for creating\n desktop shortcuts every time they are run\n\n - PR1292: Javaws does not resolve versioned jar names with\n periods correctly\n\n - PR580: http://www.horaoficial.cl/ loads improperly.\n\n - Plugin\n\n - PR1106: Buffer overflow in plugin table-\n\n - PR1166: Embedded JNLP File is not supported in applet\n tag\n\n - PR1217: Add command line arguments for plugins\n\n - PR1189: Icedtea-plugin requires code attribute when\n using jnlp_href\n\n - PR1198: JSObject is not passed to JavaScript correctly\n\n - PR1260: IcedTea-Web should not rely on GTK\n\n - PR1157: Applets can hang browser after fatal exception\n\n - PR580: http://www.horaoficial.cl/ loads improperly\n\n - PR1260: IcedTea-Web should not rely on GTK\n\n - PR1157: Applets can hang browser after fatal exception.\n\n - Common\n\n - PR1049: Extension jnlp's signed jar with the content of\n only META-INF/* is considered\n\n - PR955: regression: SweetHome3D fails to run\n\n - PR1145: IcedTea-Web can cause ClassCircularityError\n\n - PR1161: X509VariableTrustManager does not work correctly\n with OpenJDK7\n\n - PR822: Applets fail to load if jars have different\n signers\n\n - PR1186:\n System.getProperty('deployment.user.security.trusted.cac\n erts') is null\n\n - PR909: The Java applet at\n http://de.gosupermodel.com/games/wardrobegame.jsp fails\n\n - PR1299: WebStart doesn't read socket proxy settings from\n firefox correctly.\n\n - Added cs, de, pl localization\n\n - Splash screen for javaws and plugin\n\n - Better error reporting for plugin via\n Error-splash-screen\n\n - All IcedTea-Web dialogues are centered to middle of\n active screen\n\n - Download indicator made compact for more then one jar\n\n - User can select its own JVM via itw-settings and\n deploy.properties\n\n - Added extended applets security settings and dialogue\n\n - Added new option in itw-settings which allows users to\n set JVM arguments when plugin is initialized\n\n - Fixed a build failure with older xulrunner\n\n - Changed strict openjdk6 dependencies to anything\n java-openjdk >= 1.6.0.", "edition": 17, "reporter": "This script is Copyright (C) 2013-2020 Tenable Network Security, Inc.", "published": "2013-07-18T00:00:00", "title": "SuSE 11.3 Security Update : icedtea-web (SAT Patch Number 7981)", "type": "nessus", "enchantments": {"dependencies": {"references": [{"type": "suse", "idList": ["SUSE-SU-2013:1174-1", "SUSE-SU-2013:0851-1", "OPENSUSE-SU-2012:0982-1", "SUSE-SU-2012:0979-1", "OPENSUSE-SU-2012:0981-1"]}, {"type": "cve", "idList": ["CVE-2012-3422", "CVE-2013-1927", "CVE-2013-1926", "CVE-2012-3423"]}, {"type": "nessus", "idList": ["SUSE_11_ICEDTEA-WEB-130517.NASL", "OPENSUSE-2013-439.NASL", "SL_20120731_ICEDTEA_WEB_ON_SL6_X.NASL", "REDHAT-RHSA-2012-1132.NASL", "FEDORA_2012-14316.NASL", "CENTOS_RHSA-2012-1132.NASL", "FREEBSD_PKG_55B498E2E56C11E1BBD5001C25E46B1D.NASL", "OPENSUSE-2012-513.NASL", "MANDRIVA_MDVSA-2012-122.NASL", "OPENSUSE-2012-512.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:865574", "OPENVAS:1361412562310865574", "OPENVAS:136141256231071848", "OPENVAS:870802", "OPENVAS:1361412562310841098", "OPENVAS:850309", "OPENVAS:864713", "OPENVAS:1361412562310864706", "OPENVAS:1361412562310850308", "OPENVAS:841098"]}, {"type": "centos", "idList": ["CESA-2012:1132", "CESA-2013:0753"]}, {"type": "freebsd", "idList": ["55B498E2-E56C-11E1-BBD5-001C25E46B1D"]}, {"type": "redhat", "idList": ["RHSA-2013:0753", "RHSA-2012:1132"]}, {"type": "ubuntu", "idList": ["USN-1804-2", "USN-1804-1", "USN-1521-1"]}, {"type": "oraclelinux", "idList": ["ELSA-2012-1132", "ELSA-2013-0753"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:29259", "SECURITYVULNS:VULN:13018"]}, {"type": "gentoo", "idList": ["GLSA-201406-32"]}], "modified": "2020-09-14T18:35:27", "rev": 2}, "score": {"value": 8.1, "vector": "NONE", "modified": "2020-09-14T18:35:27", "rev": 2}, "vulnersScore": 8.1}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2013-1926", "CVE-2012-3423", "CVE-2013-1927"], "modified": "2013-07-18T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:11:icedtea-web", "cpe:/o:novell:suse_linux:11"], "id": "SUSE_11_ICEDTEA-WEB-130702.NASL", "href": "https://www.tenable.com/plugins/nessus/68953", "viewCount": 2, "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68953);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\", \"CVE-2013-1926\", \"CVE-2013-1927\");\n\n script_name(english:\"SuSE 11.3 Security Update : icedtea-web (SAT Patch Number 7981)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update to IcedTea-Web 1.4 provides the following fixes and\nenhancements :\n\n - Security updates\n\n - RH916774: Class-loader incorrectly shared for applets\n with same relative-path. (CVE-2013-1926)\n\n - RH884705: fixed gifar vulnerabilit. (CVE-2013-1927)\n\n - RH840592: Potential read from an uninitialized memory\n location. (CVE-2012-3422)\n\n - RH841345: Incorrect handling of not 0-terminated\n strings. (CVE-2012-3423)\n\n - RH884705: fixed gifar vulnerability. (CVE-2013-1927)\n\n - RH916774: Class-loader incorrectly shared for applets\n with same relative-path. (CVE-2013-1926)\n\n - NetX\n\n - PR1027: DownloadService is not supported by IcedTea-Web\n\n - PR725: JNLP applications will prompt for creating\n desktop shortcuts every time they are run\n\n - PR1292: Javaws does not resolve versioned jar names with\n periods correctly\n\n - PR580: http://www.horaoficial.cl/ loads improperly.\n\n - Plugin\n\n - PR1106: Buffer overflow in plugin table-\n\n - PR1166: Embedded JNLP File is not supported in applet\n tag\n\n - PR1217: Add command line arguments for plugins\n\n - PR1189: Icedtea-plugin requires code attribute when\n using jnlp_href\n\n - PR1198: JSObject is not passed to JavaScript correctly\n\n - PR1260: IcedTea-Web should not rely on GTK\n\n - PR1157: Applets can hang browser after fatal exception\n\n - PR580: http://www.horaoficial.cl/ loads improperly\n\n - PR1260: IcedTea-Web should not rely on GTK\n\n - PR1157: Applets can hang browser after fatal exception.\n\n - Common\n\n - PR1049: Extension jnlp's signed jar with the content of\n only META-INF/* is considered\n\n - PR955: regression: SweetHome3D fails to run\n\n - PR1145: IcedTea-Web can cause ClassCircularityError\n\n - PR1161: X509VariableTrustManager does not work correctly\n with OpenJDK7\n\n - PR822: Applets fail to load if jars have different\n signers\n\n - PR1186:\n System.getProperty('deployment.user.security.trusted.cac\n erts') is null\n\n - PR909: The Java applet at\n http://de.gosupermodel.com/games/wardrobegame.jsp fails\n\n - PR1299: WebStart doesn't read socket proxy settings from\n firefox correctly.\n\n - Added cs, de, pl localization\n\n - Splash screen for javaws and plugin\n\n - Better error reporting for plugin via\n Error-splash-screen\n\n - All IcedTea-Web dialogues are centered to middle of\n active screen\n\n - Download indicator made compact for more then one jar\n\n - User can select its own JVM via itw-settings and\n deploy.properties\n\n - Added extended applets security settings and dialogue\n\n - Added new option in itw-settings which allows users to\n set JVM arguments when plugin is initialized\n\n - Fixed a build failure with older xulrunner\n\n - Changed strict openjdk6 dependencies to anything\n java-openjdk >= 1.6.0.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=815596\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=818768\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=825880\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2012-3422.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2012-3423.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1926.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1927.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 7981.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/07/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 3) audit(AUDIT_OS_NOT, \"SuSE 11.3\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"icedtea-web-1.4-0.10.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"icedtea-web-1.4-0.10.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}

{"suse": [{"lastseen": "2016-09-04T11:51:34", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2013-1926", "CVE-2012-3423", "CVE-2013-1927"], "edition": 1, "description": "This update to IcedTea-Web 1.4 provides the following fixes\n and enhancements:\n\n *\n\n Security updates\n\n o CVE-2013-1926, RH916774: Class-loader\n incorrectly shared for applets with same relative-path o\n CVE-2013-1927, RH884705: fixed gifar vulnerabilit o\n CVE-2012-3422, RH840592: Potential read from an\n uninitialized memory location o CVE-2012-3423, RH841345:\n Incorrect handling of not 0-terminated strings o\n CVE-2013-1927, RH884705: fixed gifar vulnerability o\n CVE-2013-1926, RH916774: Class-loader incorrectly shared\n for applets with same relative-path.\n *\n\n NetX\n\n o PR1027: DownloadService is not supported by\n IcedTea-Web o PR725: JNLP applications will prompt for\n creating desktop shortcuts every time they are run o\n PR1292: Javaws does not resolve versioned jar names with\n periods correctly o PR580: <a rel=\"nofollow\" href=\"http://www.horaoficial.cl/\">http://www.horaoficial.cl/</a> loads\n improperly.\n *\n\n Plugin\n\n o PR1106: Buffer overflow in plugin table- o\n PR1166: Embedded JNLP File is not supported in applet tag o\n PR1217: Add command line arguments for plugins o PR1189:\n Icedtea-plugin requires code attribute when using jnlp_href\n o PR1198: JSObject is not passed to javascript correctly o\n PR1260: IcedTea-Web should not rely on GTK o PR1157:\n Applets can hang browser after fatal exception o PR580:\n <a rel=\"nofollow\" href=\"http://www.horaoficial.cl/\">http://www.horaoficial.cl/</a> loads improperly o PR1260:\n IcedTea-Web should not rely on GTK o PR1157: Applets can\n hang browser after fatal exception.\n *\n\n Common\n\n o PR1049: Extension jnlp's signed jar with the\n content of only META-INF/* is considered o PR955:\n regression: SweetHome3D fails to run o PR1145: IcedTea-Web\n can cause ClassCircularityError o PR1161:\n X509VariableTrustManager does not work correctly with\n OpenJDK7 o PR822: Applets fail to load if jars have\n different signers o PR1186:\n System.getProperty(&quot;deployment.user.security.trusted.cacerts\n &quot;) is null o PR909: The Java applet at\n <a rel=\"nofollow\" href=\"http://de.gosupermodel.com/games/wardrobegame.jsp\">http://de.gosupermodel.com/games/wardrobegame.jsp</a> fails o\n PR1299: WebStart doesn't read socket proxy settings from\n firefox correctly.\n *\n\n Added cs, de, pl localization\n\n * Splash screen for javaws and plugin\n * Better error reporting for plugin via\n Error-splash-screen\n * All IcedTea-Web dialogues are centered to middle of\n active screen\n * Download indicator made compact for more then one jar\n * User can select its own JVM via itw-settings and\n deploy.properties\n * Added extended applets security settings and dialogue\n * Added new option in itw-settings which allows users\n to set JVM arguments when plugin is initialized\n * Fixed a build failure with older xulrunner\n * Changed strict openjdk6 dependencies to anything\n java-openjdk &gt;= 1.6.0.\n", "modified": "2013-07-10T19:04:21", "published": "2013-07-10T19:04:21", "href": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00013.html", "id": "SUSE-SU-2013:1174-1", "type": "suse", "title": "Security update for icedtea-web (important)", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-04T12:29:26", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2013-1926", "CVE-2012-3423", "CVE-2013-1927"], "description": "This update of icedtea-web fixes several bugs and security\n issues.\n", "edition": 1, "modified": "2013-05-31T19:04:15", "published": "2013-05-31T19:04:15", "id": "SUSE-SU-2013:0851-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00020.html", "title": "Security update for icedtea-web (important)", "type": "suse", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:57:23", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "The icedtea-web Java browser plugin was updated to 1.2.1 to\n fix security issues and bugs.\n\n * CVE-2012-3422: Potential read from a uninitialized\n memory location has been fixed.\n * CVE-2012-3423: Incorrect handling of not-0 terminated\n strings has been fixed.\n", "edition": 1, "modified": "2012-08-09T20:08:29", "published": "2012-08-09T20:08:29", "id": "SUSE-SU-2012:0979-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00003.html", "title": "Security update for icedtea-web (important)", "type": "suse", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:29:41", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "This update of icedtea-web fixed multiple hewap buffer\n overflows.\n\n", "edition": 1, "modified": "2012-08-13T09:08:35", "published": "2012-08-13T09:08:35", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00005.html", "id": "OPENSUSE-SU-2012:0982-1", "title": "update for icedtea-web (important)", "type": "suse", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:57:02", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "- update to 1.2.1 (bnc#773458)\n - Security Updates\n * CVE-2012-3422, RH840592: Potential read from an\n uninitialized memory location\n * CVE-2012-3423, RH841345: Incorrect handling of not\n 0-terminated strings\n - NetX\n * PR898: signed applications with big jnlp-file doesn't\n start (webstart affect like &quot;frozen&quot;)\n * PR811: javaws is not handling urls with spaces (and\n other characters needing encoding) correctly\n * 816592: icedtea-web not loading GeoGebra java applets\n in Firefox or Chrome\n - Plugin\n * PR863: Error passing strings to applet methods in\n Chromium\n * PR895: IcedTea-Web searches for missing classes on each\n loadClass or findClass\n * PR518: NPString.utf8characters not guaranteed to be\n nul-terminated\n - Common\n * RH838417: Disambiguate signed applet security prompt\n from certificate warning\n * RH838559: Disambiguate signed applet security prompt\n from certificate warning\n\n", "edition": 1, "modified": "2012-08-10T21:08:31", "published": "2012-08-10T21:08:31", "id": "OPENSUSE-SU-2012:0981-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00004.html", "title": "icedtea-web: Update to 1.2.1 (bnc#) (important)", "type": "suse", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "cve": [{"lastseen": "2020-09-21T14:12:37", "description": "The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.", "edition": 2, "cvss3": {}, "published": "2012-08-07T21:55:00", "title": "CVE-2012-3423", "type": "cve", "cwe": ["CWE-119"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2012-3423"], "modified": "2014-10-04T04:53:00", "cpe": ["cpe:/a:redhat:icedtea-web:1.0", "cpe:/a:redhat:icedtea-web:1.2", "cpe:/a:redhat:icedtea-web:1.1"], "id": "CVE-2012-3423", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3423", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:a:redhat:icedtea-web:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*"]}, {"lastseen": "2020-09-21T14:12:37", "description": "The getFirstInTableInstance function in the IcedTea-Web plugin before 1.2.1 returns an uninitialized pointer when the instance_to_id_map hash is empty, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted web page, which causes an uninitialized memory location to be read.", "edition": 2, "cvss3": {}, "published": "2012-08-07T21:55:00", "title": "CVE-2012-3422", "type": "cve", "cwe": ["CWE-119"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2012-3422"], "modified": "2014-10-04T04:53:00", "cpe": ["cpe:/a:redhat:icedtea-web:1.0", "cpe:/a:redhat:icedtea-web:1.2", "cpe:/a:redhat:icedtea-web:1.1"], "id": "CVE-2012-3422", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3422", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:a:redhat:icedtea-web:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*"]}, {"lastseen": "2020-09-21T14:19:40", "description": "The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 uses the same class loader for applets with the same codebase path but from different domains, which allows remote attackers to obtain sensitive information or possibly alter other applets via a crafted applet.\nPer http://www.ubuntu.com/usn/USN-1804-1/ \"A security issue affects these releases of Ubuntu and its derivatives:\r\n Ubuntu 12.10\r\n Ubuntu 12.04 LTS\r\n Ubuntu 11.10\r\n Ubuntu 10.04 LTS\"\r\n\r\nPer http://lists.opensuse.org/opensuse-updates/2013-04/msg00106.html\r\n\"Affected Products:\r\nopenSUSE 12.2\"", "edition": 2, "cvss3": {}, "published": "2013-04-29T22:55:00", "title": "CVE-2013-1926", "type": "cve", "cwe": ["NVD-CWE-noinfo"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "NONE", "integrityImpact": "PARTIAL", "baseScore": 5.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 4.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2013-1926"], "modified": "2018-10-30T16:27:00", "cpe": ["cpe:/a:redhat:icedtea-web:1.2.2", "cpe:/a:redhat:icedtea-web:1.0", "cpe:/a:redhat:icedtea-web:1.1.7", "cpe:/o:canonical:ubuntu_linux:11.10", "cpe:/a:redhat:icedtea-web:1.0.4", "cpe:/a:redhat:icedtea-web:1.1.4", "cpe:/o:canonical:ubuntu_linux:12.04", "cpe:/a:redhat:icedtea-web:1.2.1", "cpe:/a:redhat:icedtea-web:1.1.5", "cpe:/a:redhat:icedtea-web:1.1.1", "cpe:/a:redhat:icedtea-web:1.2", "cpe:/a:redhat:icedtea-web:1.0.6", "cpe:/o:canonical:ubuntu_linux:12.10", "cpe:/a:redhat:icedtea-web:1.0.1", "cpe:/a:redhat:icedtea-web:1.0.5", "cpe:/a:redhat:icedtea-web:1.0.2", "cpe:/a:redhat:icedtea-web:1.1.6", "cpe:/a:redhat:icedtea-web:1.1.2", "cpe:/o:canonical:ubuntu_linux:10.04", "cpe:/a:redhat:icedtea-web:1.3", "cpe:/o:opensuse:opensuse:12.2", "cpe:/a:redhat:icedtea-web:1.1.3", "cpe:/a:redhat:icedtea-web:1.1", "cpe:/a:redhat:icedtea-web:1.3.1", "cpe:/a:redhat:icedtea-web:1.0.3"], "id": "CVE-2013-1926", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1926", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N"}, "cpe23": ["cpe:2.3:a:redhat:icedtea-web:1.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1:*:*:*:*:*:*:*", "cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.3:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.3.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.3:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.6:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.5:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.4:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.4:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.2:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2.2:*:*:*:*:*:*:*"]}, {"lastseen": "2020-09-21T14:19:40", "description": "The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 allows remote attackers to execute arbitrary code via a crafted file that validates as both a GIF and a Java JAR file, aka \"GIFAR.\"\nPer http://www.ubuntu.com/usn/USN-1804-1/ \"A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.10 Ubuntu 12.04 LTS Ubuntu 11.10 Ubuntu 10.04 LTS\" Per http://lists.opensuse.org/opensuse-updates/2013-04/msg00106.html \"Affected Products: openSUSE 12.2\"", "edition": 2, "cvss3": {}, "published": "2013-04-29T22:55:00", "title": "CVE-2013-1927", "type": "cve", "cwe": ["NVD-CWE-noinfo"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2013-1927"], "modified": "2018-10-30T16:27:00", "cpe": ["cpe:/a:redhat:icedtea-web:1.2.2", "cpe:/a:redhat:icedtea-web:1.0", "cpe:/a:redhat:icedtea-web:1.1.7", "cpe:/o:canonical:ubuntu_linux:11.10", "cpe:/a:redhat:icedtea-web:1.0.4", "cpe:/a:redhat:icedtea-web:1.1.4", "cpe:/o:canonical:ubuntu_linux:12.04", "cpe:/a:redhat:icedtea-web:1.2.1", "cpe:/a:redhat:icedtea-web:1.1.5", "cpe:/a:redhat:icedtea-web:1.1.1", "cpe:/a:redhat:icedtea-web:1.2", "cpe:/a:redhat:icedtea-web:1.0.6", "cpe:/o:canonical:ubuntu_linux:12.10", "cpe:/a:redhat:icedtea-web:1.0.1", "cpe:/a:redhat:icedtea-web:1.0.5", "cpe:/a:redhat:icedtea-web:1.0.2", "cpe:/a:redhat:icedtea-web:1.1.6", "cpe:/a:redhat:icedtea-web:1.1.2", "cpe:/o:canonical:ubuntu_linux:10.04", "cpe:/a:redhat:icedtea-web:1.3", "cpe:/o:opensuse:opensuse:12.2", "cpe:/a:redhat:icedtea-web:1.1.3", "cpe:/a:redhat:icedtea-web:1.1", "cpe:/a:redhat:icedtea-web:1.3.1", "cpe:/a:redhat:icedtea-web:1.0.3"], "id": "CVE-2013-1927", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1927", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:a:redhat:icedtea-web:1.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1:*:*:*:*:*:*:*", "cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.3:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.3.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.3:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.6:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.5:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.0.4:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.4:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.1.2:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*", "cpe:2.3:a:redhat:icedtea-web:1.2.2:*:*:*:*:*:*:*"]}], "nessus": [{"lastseen": "2020-09-14T16:33:58", "description": "Changes in icedtea-web with update to 1.4 (bnc#818768) :\n\n - Added cs, de, pl localization\n\n - Splash screen for javaws and plugin\n\n - Better error reporting for plugin via\n Error-splash-screen\n\n - All IcedTea-Web dialogues are centered to middle of\n active screen\n\n - Download indicator made compact for more then one jar\n\n - User can select its own JVM via itw-settings and\n deploy.properties.\n\n - Added extended applets security settings and dialogue\n\n - Security updates\n\n - CVE-2013-1926, RH916774: Class-loader incorrectly shared\n for applets with same relative-path.\n\n - CVE-2013-1927, RH884705: fixed gifar vulnerabilit\n\n - CVE-2012-3422, RH840592: Potential read from an\n uninitialized memory location\n\n - CVE-2012-3423, RH841345: Incorrect handling of not\n 0-terminated strings\n\n - NetX\n\n - PR1027: DownloadService is not supported by IcedTea-Web\n\n - PR725: JNLP applications will prompt for creating\n desktop shortcuts every time they are run\n\n - PR1292: Javaws does not resolve versioned jar names with\n periods correctly\n\n - Plugin\n\n - PR1106: Buffer overflow in plugin table-\n\n - PR1166: Embedded JNLP File is not supported in applet\n tag\n\n - PR1217: Add command line arguments for plugins\n\n - PR1189: Icedtea-plugin requires code attribute when\n using jnlp_href\n\n - PR1198: JSObject is not passed to JavaScript correctly\n\n - PR1260: IcedTea-Web should not rely on GTK\n\n - PR1157: Applets can hang browser after fatal exception\n\n - PR580: http://www.horaoficial.cl/ loads improperly\n\n - Common\n\n - PR1049: Extension jnlp's signed jar with the content of\n only META-INF/* is considered\n\n - PR955: regression: SweetHome3D fails to run\n\n - PR1145: IcedTea-Web can cause ClassCircularityError\n\n - PR1161: X509VariableTrustManager does not work correctly\n with OpenJDK7\n\n - PR822: Applets fail to load if jars have different\n signers\n\n - PR1186:\n System.getProperty('deployment.user.security.trusted.cac\n erts') is null\n\n - PR909: The Java applet at\n http://de.gosupermodel.com/games/wardrobegame.jsp fails\n\n - PR1299: WebStart doesn't read socket proxy settings from\n firefox correctly", "edition": 19, "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : icedtea-web (openSUSE-SU-2013:0893-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2013-1926", "CVE-2012-3423", "CVE-2013-1927"], "modified": "2014-06-13T00:00:00", "cpe": ["cpe:/o:novell:opensuse:12.3", "p-cpe:/a:novell:opensuse:icedtea-web-javadoc", "p-cpe:/a:novell:opensuse:icedtea-web-debugsource", "p-cpe:/a:novell:opensuse:icedtea-web-debuginfo", "p-cpe:/a:novell:opensuse:icedtea-web", "cpe:/o:novell:opensuse:12.2"], "id": "OPENSUSE-2013-439.NASL", "href": "https://www.tenable.com/plugins/nessus/75010", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2013-439.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(75010);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\", \"CVE-2013-1926\", \"CVE-2013-1927\");\n\n script_name(english:\"openSUSE Security Update : icedtea-web (openSUSE-SU-2013:0893-1)\");\n script_summary(english:\"Check for the openSUSE-2013-439 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Changes in icedtea-web with update to 1.4 (bnc#818768) :\n\n - Added cs, de, pl localization\n\n - Splash screen for javaws and plugin\n\n - Better error reporting for plugin via\n Error-splash-screen\n\n - All IcedTea-Web dialogues are centered to middle of\n active screen\n\n - Download indicator made compact for more then one jar\n\n - User can select its own JVM via itw-settings and\n deploy.properties.\n\n - Added extended applets security settings and dialogue\n\n - Security updates\n\n - CVE-2013-1926, RH916774: Class-loader incorrectly shared\n for applets with same relative-path.\n\n - CVE-2013-1927, RH884705: fixed gifar vulnerabilit\n\n - CVE-2012-3422, RH840592: Potential read from an\n uninitialized memory location\n\n - CVE-2012-3423, RH841345: Incorrect handling of not\n 0-terminated strings\n\n - NetX\n\n - PR1027: DownloadService is not supported by IcedTea-Web\n\n - PR725: JNLP applications will prompt for creating\n desktop shortcuts every time they are run\n\n - PR1292: Javaws does not resolve versioned jar names with\n periods correctly\n\n - Plugin\n\n - PR1106: Buffer overflow in plugin table-\n\n - PR1166: Embedded JNLP File is not supported in applet\n tag\n\n - PR1217: Add command line arguments for plugins\n\n - PR1189: Icedtea-plugin requires code attribute when\n using jnlp_href\n\n - PR1198: JSObject is not passed to JavaScript correctly\n\n - PR1260: IcedTea-Web should not rely on GTK\n\n - PR1157: Applets can hang browser after fatal exception\n\n - PR580: http://www.horaoficial.cl/ loads improperly\n\n - Common\n\n - PR1049: Extension jnlp's signed jar with the content of\n only META-INF/* is considered\n\n - PR955: regression: SweetHome3D fails to run\n\n - PR1145: IcedTea-Web can cause ClassCircularityError\n\n - PR1161: X509VariableTrustManager does not work correctly\n with OpenJDK7\n\n - PR822: Applets fail to load if jars have different\n signers\n\n - PR1186:\n System.getProperty('deployment.user.security.trusted.cac\n erts') is null\n\n - PR909: The Java applet at\n http://de.gosupermodel.com/games/wardrobegame.jsp fails\n\n - PR1299: WebStart doesn't read socket proxy settings from\n firefox correctly\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://de.gosupermodel.com/games/wardrobegame.jsp\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.horaoficial.cl/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=818768\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2013-05/msg00032.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2013-06/msg00030.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected icedtea-web packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:12.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:12.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/05/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE12\\.2|SUSE12\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"12.2 / 12.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE12.2\", reference:\"icedtea-web-1.4-1.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.2\", reference:\"icedtea-web-debuginfo-1.4-1.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.2\", reference:\"icedtea-web-debugsource-1.4-1.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.2\", reference:\"icedtea-web-javadoc-1.4-1.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"icedtea-web-1.4-4.14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"icedtea-web-debuginfo-1.4-4.14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"icedtea-web-debugsource-1.4-4.14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"icedtea-web-javadoc-1.4-4.14.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"icedtea-web / icedtea-web-debuginfo / icedtea-web-debugsource / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-06-05T12:29:02", "description": "This update of icedtea-web fixes several bugs and security issues.", "edition": 14, "published": "2013-06-02T00:00:00", "title": "SuSE 11.2 Security Update : icedtea-web (SAT Patch Number 7742)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2013-1926", "CVE-2012-3423", "CVE-2013-1927"], "modified": "2013-06-02T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:11:icedtea-web", "cpe:/o:novell:suse_linux:11"], "id": "SUSE_11_ICEDTEA-WEB-130517.NASL", "href": "https://www.tenable.com/plugins/nessus/66741", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66741);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\", \"CVE-2013-1926\", \"CVE-2013-1927\");\n\n script_name(english:\"SuSE 11.2 Security Update : icedtea-web (SAT Patch Number 7742)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\"This update of icedtea-web fixes several bugs and security issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=818768\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2012-3422.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2012-3423.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1926.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1927.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 7742.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/05/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/06/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 2) audit(AUDIT_OS_NOT, \"SuSE 11.2\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"i586\", reference:\"icedtea-web-1.4-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"icedtea-web-1.4-0.5.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-06-05T11:12:04", "description": "This update of icedtea-web fixed multiple hewap buffer overflows.", "edition": 15, "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : icedtea-web (openSUSE-SU-2012:0982-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2014-06-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:icedtea-web-javadoc", "cpe:/o:novell:opensuse:12.1", "p-cpe:/a:novell:opensuse:icedtea-web-debugsource", "p-cpe:/a:novell:opensuse:icedtea-web-debuginfo", "p-cpe:/a:novell:opensuse:icedtea-web"], "id": "OPENSUSE-2012-513.NASL", "href": "https://www.tenable.com/plugins/nessus/74712", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2012-513.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74712);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n\n script_name(english:\"openSUSE Security Update : icedtea-web (openSUSE-SU-2012:0982-1)\");\n script_summary(english:\"Check for the openSUSE-2012-513 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\"This update of icedtea-web fixed multiple hewap buffer overflows.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=773458\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2012-08/msg00022.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected icedtea-web packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:12.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/08/07\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE12\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"12.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-1.2.1-10.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-debuginfo-1.2.1-10.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-debugsource-1.2.1-10.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-javadoc-1.2.1-10.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"icedtea-web / icedtea-web-debuginfo / icedtea-web-debugsource / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-06-05T12:29:02", "description": "The icedtea-web Java browser plugin was updated to 1.2.1 to fix\nsecurity issues and bugs.\n\n - Potential read from a uninitialized memory location has\n been fixed. (CVE-2012-3422)\n\n - Incorrect handling of not-0 terminated strings has been\n fixed. (CVE-2012-3423)", "edition": 16, "published": "2013-01-25T00:00:00", "title": "SuSE 11.1 / 11.2 Security Update : icedtea-web (SAT Patch Numbers 6621 / 6626)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2013-01-25T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:11:icedtea-web", "cpe:/o:novell:suse_linux:11"], "id": "SUSE_11_ICEDTEA-WEB-120802.NASL", "href": "https://www.tenable.com/plugins/nessus/64155", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(64155);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n\n script_name(english:\"SuSE 11.1 / 11.2 Security Update : icedtea-web (SAT Patch Numbers 6621 / 6626)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The icedtea-web Java browser plugin was updated to 1.2.1 to fix\nsecurity issues and bugs.\n\n - Potential read from a uninitialized memory location has\n been fixed. (CVE-2012-3422)\n\n - Incorrect handling of not-0 terminated strings has been\n fixed. (CVE-2012-3423)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=773458\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2012-3422.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2012-3423.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Apply SAT patch number 6621 / 6626 as appropriate.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/01/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"icedtea-web-1.2.1-0.2.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"icedtea-web-1.2.1-0.2.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"i586\", reference:\"icedtea-web-1.2.1-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"icedtea-web-1.2.1-0.7.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-03-17T23:22:15", "description": "This update brings IcedTea-Web 1.3 to Fedora. From Red Hat Bugzilla,\nit fixes rhbz#720836. Additionally, it provides numerous other bug\nfixes and enhancements, many of which are listed here :\n\nhttps://dbhole.wordpress.com/2012/09/05/icedtea-web-1-3-released/\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 12, "published": "2012-09-26T00:00:00", "title": "Fedora 18 : icedtea-web-1.3-1.fc18 (2012-14370)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2012-09-26T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:18", "p-cpe:/a:fedoraproject:fedora:icedtea-web"], "id": "FEDORA_2012-14370.NASL", "href": "https://www.tenable.com/plugins/nessus/62296", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2012-14370.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62296);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_bugtraq_id(54762);\n script_xref(name:\"FEDORA\", value:\"2012-14370\");\n\n script_name(english:\"Fedora 18 : icedtea-web-1.3-1.fc18 (2012-14370)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update brings IcedTea-Web 1.3 to Fedora. From Red Hat Bugzilla,\nit fixes rhbz#720836. Additionally, it provides numerous other bug\nfixes and enhancements, many of which are listed here :\n\nhttps://dbhole.wordpress.com/2012/09/05/icedtea-web-1-3-released/\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=840592\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=841345\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://dbhole.wordpress.com/2012/09/05/icedtea-web-1-3-released/\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2012-September/088090.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?f111f589\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected icedtea-web package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:18\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/26\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2020 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^18([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 18.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC18\", reference:\"icedtea-web-1.3-1.fc18\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"icedtea-web\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-09-25T08:55:24", "description": "From Red Hat Security Advisory 2012:1132 :\n\nUpdated icedtea-web packages that fix two security issues are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe IcedTea-Web project provides a Java web browser plug-in and an\nimplementation of Java Web Start, which is based on the Netx project.\nIt also contains a configuration tool for managing deployment settings\nfor the plug-in and Web Start implementations.\n\nAn uninitialized pointer use flaw was found in the IcedTea-Web\nplug-in. Visiting a malicious web page could possibly cause a web\nbrowser using the IcedTea-Web plug-in to crash, disclose a portion of\nits memory, or execute arbitrary code. (CVE-2012-3422)\n\nIt was discovered that the IcedTea-Web plug-in incorrectly assumed all\nstrings received from the browser were NUL terminated. When using the\nplug-in with a web browser that does not NUL terminate strings,\nvisiting a web page containing a Java applet could possibly cause the\nbrowser to crash, disclose a portion of its memory, or execute\narbitrary code. (CVE-2012-3423)\n\nRed Hat would like to thank Chamal De Silva for reporting the\nCVE-2012-3422 issue.\n\nThis erratum also upgrades IcedTea-Web to version 1.2.1. Refer to the\nNEWS file, linked to in the References, for further information.\n\nAll IcedTea-Web users should upgrade to these updated packages, which\nresolve these issues. Web browsers using the IcedTea-Web browser\nplug-in must be restarted for this update to take effect.", "edition": 20, "published": "2013-07-12T00:00:00", "title": "Oracle Linux 6 : icedtea-web (ELSA-2012-1132)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2013-07-12T00:00:00", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:icedtea-web-javadoc", "p-cpe:/a:oracle:linux:icedtea-web"], "id": "ORACLELINUX_ELSA-2012-1132.NASL", "href": "https://www.tenable.com/plugins/nessus/68590", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2012:1132 and \n# Oracle Linux Security Advisory ELSA-2012-1132 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68590);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/09/24\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_xref(name:\"RHSA\", value:\"2012:1132\");\n\n script_name(english:\"Oracle Linux 6 : icedtea-web (ELSA-2012-1132)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2012:1132 :\n\nUpdated icedtea-web packages that fix two security issues are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe IcedTea-Web project provides a Java web browser plug-in and an\nimplementation of Java Web Start, which is based on the Netx project.\nIt also contains a configuration tool for managing deployment settings\nfor the plug-in and Web Start implementations.\n\nAn uninitialized pointer use flaw was found in the IcedTea-Web\nplug-in. Visiting a malicious web page could possibly cause a web\nbrowser using the IcedTea-Web plug-in to crash, disclose a portion of\nits memory, or execute arbitrary code. (CVE-2012-3422)\n\nIt was discovered that the IcedTea-Web plug-in incorrectly assumed all\nstrings received from the browser were NUL terminated. When using the\nplug-in with a web browser that does not NUL terminate strings,\nvisiting a web page containing a Java applet could possibly cause the\nbrowser to crash, disclose a portion of its memory, or execute\narbitrary code. (CVE-2012-3423)\n\nRed Hat would like to thank Chamal De Silva for reporting the\nCVE-2012-3422 issue.\n\nThis erratum also upgrades IcedTea-Web to version 1.2.1. Refer to the\nNEWS file, linked to in the References, for further information.\n\nAll IcedTea-Web users should upgrade to these updated packages, which\nresolve these issues. Web browsers using the IcedTea-Web browser\nplug-in must be restarted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2012-July/002965.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected icedtea-web packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:icedtea-web-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/08/07\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"icedtea-web-1.2.1-1.el6_3\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"icedtea-web-javadoc-1.2.1-1.el6_3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"icedtea-web / icedtea-web-javadoc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-09-24T07:07:35", "description": "The IcedTea project team reports :\n\nCVE-2012-3422: Use of uninitialized instance pointers\n\nAn uninitialized pointer use flaw was found in IcedTea-Web web browser\nplugin. A malicious web page could use this flaw make IcedTea-Web\nbrowser plugin pass invalid pointer to a web browser. Depending on the\nbrowser used, it may cause the browser to crash or possibly execute\narbitrary code.\n\nThe get_cookie_info() and get_proxy_info() call\ngetFirstInTableInstance() with the instance_to_id_map hash as a\nparameter. If instance_to_id_map is empty (which can happen when\nplugin was recently removed), getFirstInTableInstance() returns an\nuninitialized pointer.\n\nCVE-2012-3423: Incorrect handling of non 0-terminated strings\n\nIt was discovered that the IcedTea-Web web browser plugin incorrectly\nassumed that all strings provided by browser are NUL terminated, which\nis not guaranteed by the NPAPI (Netscape Plugin Application\nProgramming Interface). When used in a browser that does not NUL\nterminate NPVariant NPStrings, this could lead to buffer over-read or\nover-write, resulting in possible information leak, crash, or code\nexecution.\n\nMozilla browsers currently NUL terminate strings, however recent\nChrome versions are known not to provide NUL terminated data.", "edition": 20, "published": "2012-08-14T00:00:00", "title": "FreeBSD : Several vulnerabilities found in IcedTea-Web (55b498e2-e56c-11e1-bbd5-001c25e46b1d)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2012-08-14T00:00:00", "cpe": ["cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:icedtea-web"], "id": "FREEBSD_PKG_55B498E2E56C11E1BBD5001C25E46B1D.NASL", "href": "https://www.tenable.com/plugins/nessus/61522", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61522);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/09/23\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n\n script_name(english:\"FreeBSD : Several vulnerabilities found in IcedTea-Web (55b498e2-e56c-11e1-bbd5-001c25e46b1d)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The IcedTea project team reports :\n\nCVE-2012-3422: Use of uninitialized instance pointers\n\nAn uninitialized pointer use flaw was found in IcedTea-Web web browser\nplugin. A malicious web page could use this flaw make IcedTea-Web\nbrowser plugin pass invalid pointer to a web browser. Depending on the\nbrowser used, it may cause the browser to crash or possibly execute\narbitrary code.\n\nThe get_cookie_info() and get_proxy_info() call\ngetFirstInTableInstance() with the instance_to_id_map hash as a\nparameter. If instance_to_id_map is empty (which can happen when\nplugin was recently removed), getFirstInTableInstance() returns an\nuninitialized pointer.\n\nCVE-2012-3423: Incorrect handling of non 0-terminated strings\n\nIt was discovered that the IcedTea-Web web browser plugin incorrectly\nassumed that all strings provided by browser are NUL terminated, which\nis not guaranteed by the NPAPI (Netscape Plugin Application\nProgramming Interface). When used in a browser that does not NUL\nterminate NPVariant NPStrings, this could lead to buffer over-read or\nover-write, resulting in possible information leak, crash, or code\nexecution.\n\nMozilla browsers currently NUL terminate strings, however recent\nChrome versions are known not to provide NUL terminated data.\"\n );\n # http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-July/019580.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?8f9c1f1b\"\n );\n # https://vuxml.freebsd.org/freebsd/55b498e2-e56c-11e1-bbd5-001c25e46b1d.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?890ac3b4\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/07/31\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"icedtea-web<1.2.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:pkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-09-04T06:05:49", "description": "Chamal De Silva discovered that the IcedTea-Web Java web browser\nplugin could dereference an uninitialized pointer. A remote attacker\ncould use this to craft a malicious web page that could cause a denial\nof service by crashing the web browser or possibly execute arbitrary\ncode. (CVE-2012-3422)\n\nSteven Bergom and others discovered that the IcedTea-Web Java web\nbrowser plugin assumed that all strings provided by browsers are NULL\nterminated, which is not guaranteed by the NPAPI (Netscape Plugin\nApplication Programming Interface). A remote attacker could use this\nto craft a malicious Java applet that could cause a denial of service\nby crashing the web browser, expose sensitive information or possibly\nexecute arbitrary code. (CVE-2012-3423).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 20, "published": "2012-08-01T00:00:00", "title": "Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : icedtea-web vulnerabilities (USN-1521-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2020-09-02T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:icedtea-6-plugin", "cpe:/o:canonical:ubuntu_linux:11.10", "cpe:/o:canonical:ubuntu_linux:11.04", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:icedtea-7-plugin", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "id": "UBUNTU_USN-1521-1.NASL", "href": "https://www.tenable.com/plugins/nessus/61380", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1521-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61380);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2019/09/19 12:54:28\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_xref(name:\"USN\", value:\"1521-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : icedtea-web vulnerabilities (USN-1521-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Chamal De Silva discovered that the IcedTea-Web Java web browser\nplugin could dereference an uninitialized pointer. A remote attacker\ncould use this to craft a malicious web page that could cause a denial\nof service by crashing the web browser or possibly execute arbitrary\ncode. (CVE-2012-3422)\n\nSteven Bergom and others discovered that the IcedTea-Web Java web\nbrowser plugin assumed that all strings provided by browsers are NULL\nterminated, which is not guaranteed by the NPAPI (Netscape Plugin\nApplication Programming Interface). A remote attacker could use this\nto craft a malicious Java applet that could cause a denial of service\nby crashing the web browser, expose sensitive information or possibly\nexecute arbitrary code. (CVE-2012-3423).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/1521-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected icedtea-6-plugin and / or icedtea-7-plugin\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:icedtea-6-plugin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:icedtea-7-plugin\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/08/07\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/07/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(10\\.04|11\\.04|11\\.10|12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04 / 11.04 / 11.10 / 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"icedtea-6-plugin\", pkgver:\"1.2-2ubuntu0.10.04.2\")) flag++;\nif (ubuntu_check(osver:\"11.04\", pkgname:\"icedtea-6-plugin\", pkgver:\"1.2-2ubuntu0.11.04.2\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"icedtea-6-plugin\", pkgver:\"1.2-2ubuntu0.11.10.2\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"icedtea-6-plugin\", pkgver:\"1.2-2ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"icedtea-7-plugin\", pkgver:\"1.2-2ubuntu1.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"icedtea-6-plugin / icedtea-7-plugin\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-09-14T16:33:39", "description": " - update to 1.2.1 (bnc#773458)\n\n - Security Updates\n\n - CVE-2012-3422, RH840592: Potential read from an\n uninitialized memory location\n\n - CVE-2012-3423, RH841345: Incorrect handling of not\n 0-terminated strings\n\n - NetX\n\n - PR898: signed applications with big jnlp-file doesn't\n start (webstart affect like 'frozen')\n\n - PR811: javaws is not handling urls with spaces (and\n other characters needing encoding) correctly\n\n - 816592: icedtea-web not loading GeoGebra java applets in\n Firefox or Chrome\n\n - Plugin\n\n - PR863: Error passing strings to applet methods in\n Chromium\n\n - PR895: IcedTea-Web searches for missing classes on each\n loadClass or findClass\n\n - PR518: NPString.utf8characters not guaranteed to be\n nul-terminated\n\n - Common\n\n - RH838417: Disambiguate signed applet security prompt\n from certificate warning\n\n - RH838559: Disambiguate signed applet security prompt\n from certificate warning", "edition": 18, "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : icedtea-web (openSUSE-SU-2012:0981-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2014-06-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:icedtea-web-javadoc", "cpe:/o:novell:opensuse:12.1", "p-cpe:/a:novell:opensuse:icedtea-web-debugsource", "p-cpe:/a:novell:opensuse:icedtea-web-debuginfo", "p-cpe:/a:novell:opensuse:icedtea-web"], "id": "OPENSUSE-2012-512.NASL", "href": "https://www.tenable.com/plugins/nessus/74711", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2012-512.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74711);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n\n script_name(english:\"openSUSE Security Update : icedtea-web (openSUSE-SU-2012:0981-1)\");\n script_summary(english:\"Check for the openSUSE-2012-512 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - update to 1.2.1 (bnc#773458)\n\n - Security Updates\n\n - CVE-2012-3422, RH840592: Potential read from an\n uninitialized memory location\n\n - CVE-2012-3423, RH841345: Incorrect handling of not\n 0-terminated strings\n\n - NetX\n\n - PR898: signed applications with big jnlp-file doesn't\n start (webstart affect like 'frozen')\n\n - PR811: javaws is not handling urls with spaces (and\n other characters needing encoding) correctly\n\n - 816592: icedtea-web not loading GeoGebra java applets in\n Firefox or Chrome\n\n - Plugin\n\n - PR863: Error passing strings to applet methods in\n Chromium\n\n - PR895: IcedTea-Web searches for missing classes on each\n loadClass or findClass\n\n - PR518: NPString.utf8characters not guaranteed to be\n nul-terminated\n\n - Common\n\n - RH838417: Disambiguate signed applet security prompt\n from certificate warning\n\n - RH838559: Disambiguate signed applet security prompt\n from certificate warning\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=773458\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2012-08/msg00021.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected icedtea-web packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:icedtea-web-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:12.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/08/07\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/08/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE12\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"12.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-1.2.1-6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-debuginfo-1.2.1-6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-debugsource-1.2.1-6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"icedtea-web-javadoc-1.2.1-6.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"icedtea-web\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-03-17T23:22:15", "description": "This update brings IcedTea-Web 1.3 to Fedora. From Red Hat Bugzilla,\nit fixes rhbz#720836. Additionally, it provides numerous other bug\nfixes and enhancements, many of which are listed here :\n\nhttps://dbhole.wordpress.com/2012/09/05/icedtea-web-1-3-released/\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 12, "published": "2012-09-24T00:00:00", "title": "Fedora 17 : icedtea-web-1.3-1.fc17 (2012-14316)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2012-09-24T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:17", "p-cpe:/a:fedoraproject:fedora:icedtea-web"], "id": "FEDORA_2012-14316.NASL", "href": "https://www.tenable.com/plugins/nessus/62232", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2012-14316.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62232);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_bugtraq_id(54762);\n script_xref(name:\"FEDORA\", value:\"2012-14316\");\n\n script_name(english:\"Fedora 17 : icedtea-web-1.3-1.fc17 (2012-14316)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update brings IcedTea-Web 1.3 to Fedora. From Red Hat Bugzilla,\nit fixes rhbz#720836. Additionally, it provides numerous other bug\nfixes and enhancements, many of which are listed here :\n\nhttps://dbhole.wordpress.com/2012/09/05/icedtea-web-1-3-released/\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\n - Updated to 1.2.1\n\n - Resolves: RH840592/CVE-2012-3422\n\n - Resolves: RH841345/CVE-2012-3423\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=840592\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=841345\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://dbhole.wordpress.com/2012/09/05/icedtea-web-1-3-released/\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2012-September/087631.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6dcabfb4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected icedtea-web package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:17\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2020 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^17([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 17.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC17\", reference:\"icedtea-web-1.3-1.fc17\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"icedtea-web\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "openvas": [{"lastseen": "2018-01-22T13:10:42", "description": "Check for the Version of icedtea-web", "edition": 3, "published": "2013-04-22T00:00:00", "title": "Fedora Update for icedtea-web FEDORA-2013-5925", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-4540", "CVE-2012-3422", "CVE-2013-1926", "CVE-2012-3423", "CVE-2013-1927"], "modified": "2018-01-22T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=865574", "id": "OPENVAS:865574", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for icedtea-web FEDORA-2013-5925\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\ntag_affected = \"icedtea-web on Fedora 17\";\ntag_insight = \"The IcedTea-Web project provides a Java web browser plugin, an implementation\n of Java Web Start (originally based on the Netx project) and a settings tool to\n manage deployment settings for the aforementioned plugin and Web Start\n implementations.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\nif(description)\n{\n script_id(865574);\n script_version(\"$Revision: 8483 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-22 07:58:04 +0100 (Mon, 22 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-22 10:28:40 +0530 (Mon, 22 Apr 2013)\");\n script_cve_id(\"CVE-2013-1927\", \"CVE-2013-1926\", \"CVE-2012-4540\", \"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Fedora Update for icedtea-web FEDORA-2013-5925\");\n\n script_xref(name: \"FEDORA\", value: \"2013-5925\");\n script_xref(name: \"URL\" , value: \"http://lists.fedoraproject.org/pipermail/package-announce/2013-April/102100.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of icedtea-web\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC17\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.3.2~0.fc17\", rls:\"FC17\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:38:19", "description": "The remote host is missing an update for the ", "edition": 5, "published": "2013-04-22T00:00:00", "title": "Fedora Update for icedtea-web FEDORA-2013-5925", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-4540", "CVE-2012-3422", "CVE-2013-1926", "CVE-2012-3423", "CVE-2013-1927"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310865574", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310865574", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for icedtea-web FEDORA-2013-5925\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.865574\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-22 10:28:40 +0530 (Mon, 22 Apr 2013)\");\n script_cve_id(\"CVE-2013-1927\", \"CVE-2013-1926\", \"CVE-2012-4540\", \"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Fedora Update for icedtea-web FEDORA-2013-5925\");\n script_xref(name:\"FEDORA\", value:\"2013-5925\");\n script_xref(name:\"URL\", value:\"http://lists.fedoraproject.org/pipermail/package-announce/2013-April/102100.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'icedtea-web'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC17\");\n script_tag(name:\"affected\", value:\"icedtea-web on Fedora 17\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC17\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.3.2~0.fc17\", rls:\"FC17\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:39:13", "description": "The remote host is missing an update for the ", "edition": 5, "published": "2012-09-22T00:00:00", "title": "Fedora Update for icedtea-web FEDORA-2012-14316", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310864713", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310864713", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for icedtea-web FEDORA-2012-14316\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.fedoraproject.org/pipermail/package-announce/2012-September/087631.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.864713\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:56:12 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name:\"FEDORA\", value:\"2012-14316\");\n script_name(\"Fedora Update for icedtea-web FEDORA-2012-14316\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'icedtea-web'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC17\");\n script_tag(name:\"affected\", value:\"icedtea-web on Fedora 17\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC17\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.3~1.fc17\", rls:\"FC17\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2018-01-02T10:57:05", "description": "Check for the Version of icedtea-web", "edition": 3, "published": "2012-09-22T00:00:00", "title": "Fedora Update for icedtea-web FEDORA-2012-14340", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2018-01-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=864706", "id": "OPENVAS:864706", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for icedtea-web FEDORA-2012-14340\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"icedtea-web on Fedora 16\";\ntag_insight = \"The IcedTea-Web project provides a Java web browser plugin, an implementation\n of Java Web Start (originally based on the Netx project) and a settings tool to\n manage deployment settings for the aforementioned plugin and Web Start\n implementations.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2012-September/087635.html\");\n script_id(864706);\n script_version(\"$Revision: 8265 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-01 07:29:23 +0100 (Mon, 01 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:54:40 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name: \"FEDORA\", value: \"2012-14340\");\n script_name(\"Fedora Update for icedtea-web FEDORA-2012-14340\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of icedtea-web\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.3~2.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-02T21:10:49", "description": "The remote host is missing an update to the system\nas announced in the referenced advisory.", "edition": 1, "published": "2012-08-30T00:00:00", "title": "FreeBSD Ports: icedtea-web", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2017-04-12T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=71848", "id": "OPENVAS:71848", "sourceData": "#\n#VID 55b498e2-e56c-11e1-bbd5-001c25e46b1d\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from VID 55b498e2-e56c-11e1-bbd5-001c25e46b1d\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The following package is affected: icedtea-web\n\nCVE-2012-3422\nThe getFirstInTableInstance function in the IcedTea-Web plugin before\n1.2.1 returns an uninitialized pointer when the instance_to_id_map\nhash is empty, which allows remote attackers to cause a denial of\nservice (crash) and possibly execute arbitrary code via a crafted web\npage, which causes an uninitialized memory location to be read.\nCVE-2012-3423\nThe IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant\nNPStrings without NUL terminators, which allows remote attackers to\ncause a denial of service (crash), obtain sensitive information from\nmemory, or execute arbitrary code via a crafted Java applet.\";\ntag_solution = \"Update your system with the appropriate patches or\nsoftware upgrades.\n\nhttp://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-July/019580.html\nhttp://www.vuxml.org/freebsd/55b498e2-e56c-11e1-bbd5-001c25e46b1d.html\";\ntag_summary = \"The remote host is missing an update to the system\nas announced in the referenced advisory.\";\n\n\n\nif(description)\n{\n script_id(71848);\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_version(\"$Revision: 5940 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-04-12 11:02:05 +0200 (Wed, 12 Apr 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-30 11:34:18 -0400 (Thu, 30 Aug 2012)\");\n script_name(\"FreeBSD Ports: icedtea-web\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"FreeBSD Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/freebsdrel\", \"login/SSH/success\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-bsd.inc\");\nvuln = 0;\ntxt = \"\";\nbver = portver(pkg:\"icedtea-web\");\nif(!isnull(bver) && revcomp(a:bver, b:\"1.2.1\")<0) {\n txt += \"Package icedtea-web version \" + bver + \" is installed which is known to be vulnerable.\\n\";\n vuln = 1;\n}\n\nif(vuln) {\n security_message(data:string(txt ));\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:39:08", "description": "The remote host is missing an update for the ", "edition": 6, "published": "2012-08-03T00:00:00", "title": "Mandriva Update for icedtea-web MDVSA-2012:122 (icedtea-web)", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2018-11-16T00:00:00", "id": "OPENVAS:1361412562310831710", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310831710", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for icedtea-web MDVSA-2012:122 (icedtea-web)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2012:122\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.831710\");\n script_version(\"$Revision: 12381 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 12:16:30 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-03 11:19:16 +0530 (Fri, 03 Aug 2012)\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name:\"MDVSA\", value:\"2012:122\");\n script_name(\"Mandriva Update for icedtea-web MDVSA-2012:122 (icedtea-web)\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'icedtea-web'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\", re:\"ssh/login/release=MNDK_(2011\\.0|mes5\\.2)\");\n script_tag(name:\"affected\", value:\"icedtea-web on Mandriva Linux 2011.0,\n Mandriva Enterprise Server 5.2\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Multiple vulnerabilities has been discovered and corrected in\n icedtea-web:\n\n An uninitialized pointer use flaw was found in IcedTea-Web web\n browser plugin. A malicious web page could use this flaw make\n IcedTea-Web browser plugin pass invalid pointer to a web browser.\n Depending on the browser used, it may cause the browser to crash or\n possibly execute arbitrary code (CVE-2012-3422).\n\n It was discovered that the IcedTea-Web web browser plugin incorrectly\n assumed that all strings provided by browser are NUL terminated,\n which is not guaranteed by the NPAPI (Netscape Plugin Application\n Programming Interface). When used in a browser that does not NUL\n terminate NPVariant NPStrings, this could lead to buffer over-read\n or over-write, resulting in possible information leak, crash, or code\n execution (CVE-2012-3423).\n\n The updated packages have been upgraded to the 1.1.6 version which\n is not affected by these issues.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"MNDK_2011.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.1.6~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"icedtea-web-javadoc\", rpm:\"icedtea-web-javadoc~1.1.6~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"MNDK_mes5.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.1.6~0.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"icedtea-web-javadoc\", rpm:\"icedtea-web-javadoc~1.1.6~0.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:36:01", "description": "Oracle Linux Local Security Checks ELSA-2012-1132", "edition": 7, "published": "2015-10-06T00:00:00", "title": "Oracle Linux Local Check: ELSA-2012-1132", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2018-09-28T00:00:00", "id": "OPENVAS:1361412562310123853", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123853", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2012-1132.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123853\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:09:26 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2012-1132\");\n script_tag(name:\"insight\", value:\"ELSA-2012-1132 - icedtea-web security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2012-1132\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2012-1132.html\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux6\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.2.1~1.el6_3\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"icedtea-web-javadoc\", rpm:\"icedtea-web-javadoc~1.2.1~1.el6_3\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2018-01-06T13:07:59", "description": "Check for the Version of icedtea-web", "edition": 3, "published": "2012-08-03T00:00:00", "title": "CentOS Update for icedtea-web CESA-2012:1132 centos6 ", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2018-01-05T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881466", "id": "OPENVAS:881466", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for icedtea-web CESA-2012:1132 centos6 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The IcedTea-Web project provides a Java web browser plug-in and an\n implementation of Java Web Start, which is based on the Netx project. It\n also contains a configuration tool for managing deployment settings for the\n plug-in and Web Start implementations.\n\n An uninitialized pointer use flaw was found in the IcedTea-Web plug-in.\n Visiting a malicious web page could possibly cause a web browser using the\n IcedTea-Web plug-in to crash, disclose a portion of its memory, or execute\n arbitrary code. (CVE-2012-3422)\n \n It was discovered that the IcedTea-Web plug-in incorrectly assumed all\n strings received from the browser were NUL terminated. When using the\n plug-in with a web browser that does not NUL terminate strings, visiting a\n web page containing a Java applet could possibly cause the browser to\n crash, disclose a portion of its memory, or execute arbitrary code.\n (CVE-2012-3423)\n \n Red Hat would like to thank Chamal De Silva for reporting the CVE-2012-3422\n issue.\n \n This erratum also upgrades IcedTea-Web to version 1.2.1. Refer to the NEWS\n file, linked to in the References, for further information.\n \n All IcedTea-Web users should upgrade to these updated packages, which\n resolve these issues. Web browsers using the IcedTea-Web browser plug-in\n must be restarted for this update to take effect.\";\n\ntag_affected = \"icedtea-web on CentOS 6\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2012-July/018778.html\");\n script_id(881466);\n script_version(\"$Revision: 8295 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-05 07:29:18 +0100 (Fri, 05 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-03 11:17:19 +0530 (Fri, 03 Aug 2012)\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name: \"CESA\", value: \"2012:1132\");\n script_name(\"CentOS Update for icedtea-web CESA-2012:1132 centos6 \");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of icedtea-web\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS6\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.2.1~1.el6_3\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"icedtea-web-javadoc\", rpm:\"icedtea-web-javadoc~1.2.1~1.el6_3\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2020-01-31T18:42:10", "description": "The remote host is missing an update for the ", "edition": 7, "published": "2012-12-13T00:00:00", "title": "openSUSE: Security Advisory for update (openSUSE-SU-2012:0982-1)", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2020-01-31T00:00:00", "id": "OPENVAS:1361412562310850309", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310850309", "sourceData": "# Copyright (C) 2012 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of their respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.850309\");\n script_version(\"2020-01-31T08:23:39+0000\");\n script_tag(name:\"last_modification\", value:\"2020-01-31 08:23:39 +0000 (Fri, 31 Jan 2020)\");\n script_tag(name:\"creation_date\", value:\"2012-12-13 17:01:46 +0530 (Thu, 13 Dec 2012)\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name:\"openSUSE-SU\", value:\"2012:0982-1\");\n script_name(\"openSUSE: Security Advisory for update (openSUSE-SU-2012:0982-1)\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'update'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2012 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=(openSUSE11\\.4|openSUSE12\\.1)\");\n\n script_tag(name:\"affected\", value:\"update on openSUSE 12.1, openSUSE 11.4\");\n\n script_tag(name:\"insight\", value:\"This update of icedtea-web fixed multiple hewap buffer\n overflows.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"openSUSE11.4\") {\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.2.1~0.17.1\", rls:\"openSUSE11.4\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web-debuginfo\", rpm:\"icedtea-web-debuginfo~1.2.1~0.17.1\", rls:\"openSUSE11.4\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web-debugsource\", rpm:\"icedtea-web-debugsource~1.2.1~0.17.1\", rls:\"openSUSE11.4\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web-javadoc\", rpm:\"icedtea-web-javadoc~1.2.1~0.17.1\", rls:\"openSUSE11.4\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nif(release == \"openSUSE12.1\") {\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.2.1~10.1\", rls:\"openSUSE12.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web-debuginfo\", rpm:\"icedtea-web-debuginfo~1.2.1~10.1\", rls:\"openSUSE12.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web-debugsource\", rpm:\"icedtea-web-debugsource~1.2.1~10.1\", rls:\"openSUSE12.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"icedtea-web-javadoc\", rpm:\"icedtea-web-javadoc~1.2.1~10.1\", rls:\"openSUSE12.1\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:38:54", "description": "The remote host is missing an update for the ", "edition": 7, "published": "2012-08-03T00:00:00", "title": "RedHat Update for icedtea-web RHSA-2012:1132-01", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "modified": "2018-11-23T00:00:00", "id": "OPENVAS:1361412562310870802", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870802", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for icedtea-web RHSA-2012:1132-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2012-July/msg00033.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870802\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-03 11:15:59 +0530 (Fri, 03 Aug 2012)\");\n script_cve_id(\"CVE-2012-3422\", \"CVE-2012-3423\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name:\"RHSA\", value:\"2012:1132-01\");\n script_name(\"RedHat Update for icedtea-web RHSA-2012:1132-01\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'icedtea-web'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_6\");\n script_tag(name:\"affected\", value:\"icedtea-web on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"The IcedTea-Web project provides a Java web browser plug-in and an\n implementation of Java Web Start, which is based on the Netx project. It\n also contains a configuration tool for managing deployment settings for the\n plug-in and Web Start implementations.\n\n An uninitialized pointer use flaw was found in the IcedTea-Web plug-in.\n Visiting a malicious web page could possibly cause a web browser using the\n IcedTea-Web plug-in to crash, disclose a portion of its memory, or execute\n arbitrary code. (CVE-2012-3422)\n\n It was discovered that the IcedTea-Web plug-in incorrectly assumed all\n strings received from the browser were NUL terminated. When using the\n plug-in with a web browser that does not NUL terminate strings, visiting a\n web page containing a Java applet could possibly cause the browser to\n crash, disclose a portion of its memory, or execute arbitrary code.\n (CVE-2012-3423)\n\n This erratum also upgrades IcedTea-Web to version 1.2.1. Refer to the NEWS\n file, linked to in the References, for further information.\n\n All IcedTea-Web users should upgrade to these updated packages, which\n resolve these issues. Web browsers using the IcedTea-Web browser plug-in\n must be restarted for this update to take effect.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"icedtea-web\", rpm:\"icedtea-web~1.2.1~1.el6_3\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"icedtea-web-debuginfo\", rpm:\"icedtea-web-debuginfo~1.2.1~1.el6_3\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:36:48", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "[1.2.1-1]\n- Updated to 1.2.1\n- Resolves: CVE-2012-3422\n- Resolves: CVE-2012-3423", "edition": 4, "modified": "2012-07-31T00:00:00", "published": "2012-07-31T00:00:00", "id": "ELSA-2012-1132", "href": "http://linux.oracle.com/errata/ELSA-2012-1132.html", "title": "icedtea-web security update", "type": "oraclelinux", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:39:33", "bulletinFamily": "unix", "cvelist": ["CVE-2013-1926", "CVE-2013-1927"], "description": "[1.2.3-2]\n- Added (temporally!) posttrans forcing creation of symlinks\n - should be removed next release\n- Resolves: rhbz#949094\n[1.2.3-1]\n- fixed postun - removal of alternatives for plugin restricted to\n (correct) removal process only\n- fixed date in changelog previous entry\n- Resolves: rhbz#949094\n[1.2.3-0]\n- Updated to latest ustream release of 1.2 branch - 1.2.3\n - Security Updates\n - CVE-2013-1927, RH884705 - fixed gifar vulnerability\n - CVE-2013-1926, RH916774: Class-loader incorrectly shared for applets with same relative-path.\n - Common\n - PR1161: X509VariableTrustManager does not work correctly with OpenJDK7\n - Plugin\n - PR1157: Applets can hang browser after fatal exception\n- Removed upstreamed patch 0- icedtea-web-PR1161.patch\n- Resolves: rhbz#949094", "edition": 4, "modified": "2013-04-17T00:00:00", "published": "2013-04-17T00:00:00", "id": "ELSA-2013-0753", "href": "http://linux.oracle.com/errata/ELSA-2013-0753.html", "title": "icedtea-web security update", "type": "oraclelinux", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "centos": [{"lastseen": "2019-12-20T18:26:52", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "**CentOS Errata and Security Advisory** CESA-2012:1132\n\n\nThe IcedTea-Web project provides a Java web browser plug-in and an\nimplementation of Java Web Start, which is based on the Netx project. It\nalso contains a configuration tool for managing deployment settings for the\nplug-in and Web Start implementations.\n\nAn uninitialized pointer use flaw was found in the IcedTea-Web plug-in.\nVisiting a malicious web page could possibly cause a web browser using the\nIcedTea-Web plug-in to crash, disclose a portion of its memory, or execute\narbitrary code. (CVE-2012-3422)\n\nIt was discovered that the IcedTea-Web plug-in incorrectly assumed all\nstrings received from the browser were NUL terminated. When using the\nplug-in with a web browser that does not NUL terminate strings, visiting a\nweb page containing a Java applet could possibly cause the browser to\ncrash, disclose a portion of its memory, or execute arbitrary code.\n(CVE-2012-3423)\n\nRed Hat would like to thank Chamal De Silva for reporting the CVE-2012-3422\nissue.\n\nThis erratum also upgrades IcedTea-Web to version 1.2.1. Refer to the NEWS\nfile, linked to in the References, for further information.\n\nAll IcedTea-Web users should upgrade to these updated packages, which\nresolve these issues. Web browsers using the IcedTea-Web browser plug-in\nmust be restarted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-July/030816.html\n\n**Affected packages:**\nicedtea-web\nicedtea-web-javadoc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1132.html", "edition": 3, "modified": "2012-07-31T23:18:48", "published": "2012-07-31T23:18:48", "href": "http://lists.centos.org/pipermail/centos-announce/2012-July/030816.html", "id": "CESA-2012:1132", "title": "icedtea security update", "type": "centos", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-12-20T18:26:25", "bulletinFamily": "unix", "cvelist": ["CVE-2013-1926", "CVE-2013-1927"], "description": "**CentOS Errata and Security Advisory** CESA-2013:0753\n\n\nThe IcedTea-Web project provides a Java web browser plug-in and an\nimplementation of Java Web Start, which is based on the Netx project. It\nalso contains a configuration tool for managing deployment settings for the\nplug-in and Web Start implementations.\n\nIt was discovered that the IcedTea-Web plug-in incorrectly used the same\nclass loader instance for applets with the same value of the codebase\nattribute, even when they originated from different domains. A malicious\napplet could use this flaw to gain information about and possibly\nmanipulate applets from different domains currently running in the browser.\n(CVE-2013-1926)\n\nThe IcedTea-Web plug-in did not properly check the format of the downloaded\nJava Archive (JAR) files. This could cause the plug-in to execute code\nhidden in a file in a different format, possibly allowing attackers to\nexecute code in the context of web sites that allow uploads of specific\nfile types, known as a GIFAR attack. (CVE-2013-1927)\n\nThe CVE-2013-1926 issue was discovered by Jiri Vanek of the Red Hat OpenJDK\nTeam, and CVE-2013-1927 was discovered by the Red Hat Security Response\nTeam.\n\nThis erratum also upgrades IcedTea-Web to version 1.2.3. Refer to the NEWS\nfile, linked to in the References, for further information.\n\nAll IcedTea-Web users should upgrade to these updated packages, which\nresolve these issues. Web browsers using the IcedTea-Web browser plug-in\nmust be restarted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-April/031732.html\n\n**Affected packages:**\nicedtea-web\nicedtea-web-javadoc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-0753.html", "edition": 3, "modified": "2013-04-17T22:33:18", "published": "2013-04-17T22:33:18", "href": "http://lists.centos.org/pipermail/centos-announce/2013-April/031732.html", "id": "CESA-2013:0753", "title": "icedtea security update", "type": "centos", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "freebsd": [{"lastseen": "2019-05-29T18:33:47", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "\nThe IcedTea project team reports:\n\nCVE-2012-3422: Use of uninitialized instance pointers\nAn uninitialized pointer use flaw was found in IcedTea-Web web\n\t browser plugin. A malicious web page could use this flaw make\n\t IcedTea-Web browser plugin pass invalid pointer to a web browser.\n\t Depending on the browser used, it may cause the browser to crash\n\t or possibly execute arbitrary code.\nThe get_cookie_info() and get_proxy_info() call\n\t getFirstInTableInstance() with the instance_to_id_map hash as\n\t a parameter. If instance_to_id_map is empty (which can happen\n\t when plugin was recently removed), getFirstInTableInstance()\n\t returns an uninitialized pointer.\n\n\nCVE-2012-3423: Incorrect handling of non 0-terminated strings\nIt was discovered that the IcedTea-Web web browser plugin\n\t incorrectly assumed that all strings provided by browser are NUL\n\t terminated, which is not guaranteed by the NPAPI (Netscape Plugin\n\t Application Programming Interface). When used in a browser that\n\t does not NUL terminate NPVariant NPStrings, this could lead to\n\t buffer over-read or over-write, resulting in possible information\n\t leak, crash, or code execution.\nMozilla browsers currently NUL terminate strings, however recent\n\t Chrome versions are known not to provide NUL terminated data.\n\n", "edition": 4, "modified": "2012-07-31T00:00:00", "published": "2012-07-31T00:00:00", "id": "55B498E2-E56C-11E1-BBD5-001C25E46B1D", "href": "https://vuxml.freebsd.org/freebsd/55b498e2-e56c-11e1-bbd5-001c25e46b1d.html", "title": "Several vulnerabilities found in IcedTea-Web", "type": "freebsd", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "redhat": [{"lastseen": "2019-08-13T18:45:09", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "The IcedTea-Web project provides a Java web browser plug-in and an\nimplementation of Java Web Start, which is based on the Netx project. It\nalso contains a configuration tool for managing deployment settings for the\nplug-in and Web Start implementations.\n\nAn uninitialized pointer use flaw was found in the IcedTea-Web plug-in.\nVisiting a malicious web page could possibly cause a web browser using the\nIcedTea-Web plug-in to crash, disclose a portion of its memory, or execute\narbitrary code. (CVE-2012-3422)\n\nIt was discovered that the IcedTea-Web plug-in incorrectly assumed all\nstrings received from the browser were NUL terminated. When using the\nplug-in with a web browser that does not NUL terminate strings, visiting a\nweb page containing a Java applet could possibly cause the browser to\ncrash, disclose a portion of its memory, or execute arbitrary code.\n(CVE-2012-3423)\n\nRed Hat would like to thank Chamal De Silva for reporting the CVE-2012-3422\nissue.\n\nThis erratum also upgrades IcedTea-Web to version 1.2.1. Refer to the NEWS\nfile, linked to in the References, for further information.\n\nAll IcedTea-Web users should upgrade to these updated packages, which\nresolve these issues. Web browsers using the IcedTea-Web browser plug-in\nmust be restarted for this update to take effect.\n", "modified": "2018-06-06T20:24:12", "published": "2012-07-31T04:00:00", "id": "RHSA-2012:1132", "href": "https://access.redhat.com/errata/RHSA-2012:1132", "type": "redhat", "title": "(RHSA-2012:1132) Important: icedtea-web security update", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-08-13T18:46:39", "bulletinFamily": "unix", "cvelist": ["CVE-2013-1926", "CVE-2013-1927"], "description": "The IcedTea-Web project provides a Java web browser plug-in and an\nimplementation of Java Web Start, which is based on the Netx project. It\nalso contains a configuration tool for managing deployment settings for the\nplug-in and Web Start implementations.\n\nIt was discovered that the IcedTea-Web plug-in incorrectly used the same\nclass loader instance for applets with the same value of the codebase\nattribute, even when they originated from different domains. A malicious\napplet could use this flaw to gain information about and possibly\nmanipulate applets from different domains currently running in the browser.\n(CVE-2013-1926)\n\nThe IcedTea-Web plug-in did not properly check the format of the downloaded\nJava Archive (JAR) files. This could cause the plug-in to execute code\nhidden in a file in a different format, possibly allowing attackers to\nexecute code in the context of web sites that allow uploads of specific\nfile types, known as a GIFAR attack. (CVE-2013-1927)\n\nThe CVE-2013-1926 issue was discovered by Jiri Vanek of the Red Hat OpenJDK\nTeam, and CVE-2013-1927 was discovered by the Red Hat Security Response\nTeam.\n\nThis erratum also upgrades IcedTea-Web to version 1.2.3. Refer to the NEWS\nfile, linked to in the References, for further information.\n\nAll IcedTea-Web users should upgrade to these updated packages, which\nresolve these issues. Web browsers using the IcedTea-Web browser plug-in\nmust be restarted for this update to take effect.\n", "modified": "2018-06-06T20:24:22", "published": "2013-04-17T04:00:00", "id": "RHSA-2013:0753", "href": "https://access.redhat.com/errata/RHSA-2013:0753", "type": "redhat", "title": "(RHSA-2013:0753) Moderate: icedtea-web security update", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "ubuntu": [{"lastseen": "2020-07-02T11:40:12", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3422", "CVE-2012-3423"], "description": "Chamal De Silva discovered that the IcedTea-Web Java web browser \nplugin could dereference an uninitialized pointer. A remote attacker \ncould use this to craft a malicious web page that could cause a \ndenial of service by crashing the web browser or possibly execute \narbitrary code. (CVE-2012-3422)\n\nSteven Bergom and others discovered that the IcedTea-Web Java web \nbrowser plugin assumed that all strings provided by browsers are NULL \nterminated, which is not guaranteed by the NPAPI (Netscape Plugin \nApplication Programming Interface). A remote attacker could use this \nto craft a malicious Java applet that could cause a denial of service \nby crashing the web browser, expose sensitive information or possibly \nexecute arbitrary code. (CVE-2012-3423)", "edition": 5, "modified": "2012-07-31T00:00:00", "published": "2012-07-31T00:00:00", "id": "USN-1521-1", "href": "https://ubuntu.com/security/notices/USN-1521-1", "title": "IcedTea-Web vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-07-02T11:43:57", "bulletinFamily": "unix", "cvelist": ["CVE-2013-1926", "CVE-2013-1927"], "description": "Jiri Vanek discovered that IcedTea-Web would use the same classloader for \napplets from different domains. A remote attacker could exploit this to \nexpose sensitive information or potentially manipulate applets from other \ndomains. (CVE-2013-1926)\n\nIt was discovered that IcedTea-Web did not properly verify JAR files and \nwas susceptible to the GIFAR attack. If a user were tricked into opening a \nmalicious website, a remote attacker could potentially exploit this to \nexecute code under certain circumstances. (CVE-2013-1927)", "edition": 5, "modified": "2013-04-18T00:00:00", "published": "2013-04-18T00:00:00", "id": "USN-1804-1", "href": "https://ubuntu.com/security/notices/USN-1804-1", "title": "IcedTea-Web vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-07-02T11:38:55", "bulletinFamily": "unix", "cvelist": ["CVE-2013-1926", "CVE-2013-1927"], "description": "USN-1804-1 fixed vulnerabilities in IcedTea-Web. This update introduced \na regression with the Java Network Launching Protocol (JNLP) when fetching \ncontent over SSL under certain configurations, such as when using the \ncommunity-supported IcedTead 7 browser plugin. This update fixes the \nproblem.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\nJiri Vanek discovered that IcedTea-Web would use the same classloader for \napplets from different domains. A remote attacker could exploit this to \nexpose sensitive information or potentially manipulate applets from other \ndomains. (CVE-2013-1926)\n\nIt was discovered that IcedTea-Web did not properly verify JAR files and \nwas susceptible to the GIFAR attack. If a user were tricked into opening a \nmalicious website, a remote attacker could potentially exploit this to \nexecute code under certain circumstances. (CVE-2013-1927)", "edition": 5, "modified": "2013-04-23T00:00:00", "published": "2013-04-23T00:00:00", "id": "USN-1804-2", "href": "https://ubuntu.com/security/notices/USN-1804-2", "title": "IcedTea-Web regression", "type": "ubuntu", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:47", "bulletinFamily": "software", "cvelist": ["CVE-2013-1926", "CVE-2013-1927"], "description": "\r\n\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-1804-1\r\nApril 18, 2013\r\n\r\nicedtea-web vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 12.10\r\n- Ubuntu 12.04 LTS\r\n- Ubuntu 11.10\r\n- Ubuntu 10.04 LTS\r\n\r\nSummary:\r\n\r\nTwo security issues were fixed in IcedTea-Web.\r\n\r\nSoftware Description:\r\n- icedtea-web: A web browser plugin to execute Java applets\r\n\r\nDetails:\r\n\r\nJiri Vanek discovered that IcedTea-Web would use the same classloader for\r\napplets from different domains. A remote attacker could exploit this to\r\nexpose sensitive information or potentially manipulate applets from other\r\ndomains. &#40;CVE-2013-1926&#41;\r\n\r\nIt was discovered that IcedTea-Web did not properly verify JAR files and\r\nwas susceptible to the GIFAR attack. If a user were tricked into opening a\r\nmalicious website, a remote attacker could potentially exploit this to\r\nexecute code under certain circumstances. &#40;CVE-2013-1927&#41;\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 12.10:\r\n icedtea-netx 1.3.2-1ubuntu0.12.10.1\r\n\r\nUbuntu 12.04 LTS:\r\n icedtea-netx 1.2.3-0ubuntu0.12.04.1\r\n\r\nUbuntu 11.10:\r\n icedtea-netx 1.2.3-0ubuntu0.11.10.1\r\n\r\nUbuntu 10.04 LTS:\r\n icedtea-netx 1.2.3-0ubuntu0.10.04.1\r\n\r\nAfter a standard system update you need to restart your browser to make\r\nall the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-1804-1\r\n CVE-2013-1926, CVE-2013-1927\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/icedtea-web/1.3.2-1ubuntu0.12.10.1\r\n https://launchpad.net/ubuntu/+source/icedtea-web/1.2.3-0ubuntu0.12.04.1\r\n https://launchpad.net/ubuntu/+source/icedtea-web/1.2.3-0ubuntu0.11.10.1\r\n https://launchpad.net/ubuntu/+source/icedtea-web/1.2.3-0ubuntu0.10.04.1\r\n\r\n\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "edition": 1, "modified": "2013-04-22T00:00:00", "published": "2013-04-22T00:00:00", "id": "SECURITYVULNS:DOC:29259", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:29259", "title": "[USN-1804-1] IcedTea-Web vulnerabilities", "type": "securityvulns", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:51", "bulletinFamily": "software", "cvelist": ["CVE-2013-1926", "CVE-2013-1927"], "description": "Crossdomain access, code execution.", "edition": 1, "modified": "2013-04-22T00:00:00", "published": "2013-04-22T00:00:00", "id": "SECURITYVULNS:VULN:13018", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:13018", "title": "IcedTea-Web security vulnerabilities", "type": "securityvulns", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:20", "bulletinFamily": "unix", "cvelist": ["CVE-2012-5089", "CVE-2013-0426", "CVE-2013-2431", "CVE-2010-3562", "CVE-2013-2420", "CVE-2011-0865", "CVE-2013-2384", "CVE-2013-2415", "CVE-2012-1711", "CVE-2014-2397", "CVE-2013-1571", "CVE-2013-5782", "CVE-2011-3557", "CVE-2013-2417", "CVE-2013-1500", "CVE-2013-2448", "CVE-2010-3557", "CVE-2011-3551", "CVE-2013-4002", "CVE-2013-0401", "CVE-2012-5074", "CVE-2012-5073", "CVE-2013-0427", "CVE-2012-1725", "CVE-2013-2424", "CVE-2014-0457", "CVE-2013-5850", "CVE-2013-2407", "CVE-2013-5778", "CVE-2013-1478", "CVE-2013-2456", "CVE-2010-3551", "CVE-2011-0868", "CVE-2013-0428", "CVE-2014-0446", "CVE-2013-2436", "CVE-2013-2454", "CVE-2013-2470", "CVE-2013-1485", "CVE-2013-0169", "CVE-2010-3553", "CVE-2012-1719", "CVE-2014-1876", "CVE-2014-0458", "CVE-2013-0429", "CVE-2014-2427", "CVE-2011-3563", "CVE-2013-1475", "CVE-2013-2421", "CVE-2013-1518", "CVE-2013-0435", "CVE-2012-5087", "CVE-2013-0809", "CVE-2013-0442", "CVE-2010-3566", "CVE-2013-2452", "CVE-2013-2451", "CVE-2013-5842", "CVE-2010-4448", "CVE-2013-0431", "CVE-2010-4465", "CVE-2012-5085", "CVE-2012-4540", "CVE-2011-0869", "CVE-2010-3565", "CVE-2012-5076", "CVE-2013-5830", "CVE-2013-2473", "CVE-2013-6954", "CVE-2012-4416", "CVE-2012-5075", "CVE-2014-0453", "CVE-2013-1488", "CVE-2012-0424", "CVE-2013-0434", "CVE-2013-5784", "CVE-2013-5809", "CVE-2013-5802", "CVE-2013-5851", "CVE-2011-3548", "CVE-2012-5081", "CVE-2011-3547", "CVE-2013-5817", "CVE-2010-4469", "CVE-2012-0503", "CVE-2011-3521", "CVE-2013-0443", "CVE-2011-5035", "CVE-2013-2419", "CVE-2014-0461", "CVE-2012-1723", "CVE-2013-2463", "CVE-2011-3571", "CVE-2010-3860", "CVE-2011-3389", "CVE-2013-2469", "CVE-2014-0459", "CVE-2014-0456", "CVE-2010-4450", "CVE-2012-1726", "CVE-2013-2465", "CVE-2013-1537", "CVE-2014-0429", "CVE-2013-5806", "CVE-2010-3574", "CVE-2011-3544", "CVE-2013-5805", "CVE-2011-3553", "CVE-2013-0444", "CVE-2012-0506", "CVE-2013-0433", "CVE-2013-1480", "CVE-2013-5825", "CVE-2012-1717", "CVE-2013-2423", "CVE-2010-3541", "CVE-2013-5823", "CVE-2011-3558", "CVE-2014-2403", "CVE-2012-1713", "CVE-2013-2461", "CVE-2012-1716", "CVE-2009-3555", "CVE-2013-2429", "CVE-2013-5849", "CVE-2014-2412", "CVE-2010-2548", "CVE-2012-5086", "CVE-2013-2471", "CVE-2012-0497", "CVE-2012-5077", "CVE-2013-1486", "CVE-2013-1476", "CVE-2010-4476", "CVE-2010-4472", "CVE-2013-5780", "CVE-2010-4471", "CVE-2014-2421", "CVE-2012-5069", "CVE-2012-3216", "CVE-2014-0460", "CVE-2011-0870", "CVE-2011-0815", "CVE-2013-0432", "CVE-2012-0505", "CVE-2012-5084", "CVE-2012-1718", "CVE-2010-2783", "CVE-2013-2458", "CVE-2011-3554", "CVE-2013-0424", "CVE-2013-2459", "CVE-2013-0450", "CVE-2012-5071", "CVE-2013-5814", "CVE-2010-3561", "CVE-2011-0025", "CVE-2012-0501", "CVE-2010-3564", "CVE-2013-0440", "CVE-2013-2443", "CVE-2010-3549", "CVE-2012-3422", "CVE-2013-2446", "CVE-2011-3556", "CVE-2012-0547", "CVE-2013-5829", "CVE-2010-3554", "CVE-2013-5803", "CVE-2012-5072", "CVE-2013-2450", "CVE-2013-2472", "CVE-2014-2423", "CVE-2010-4470", "CVE-2011-0822", "CVE-2011-3560", "CVE-2013-1493", "CVE-2013-2444", "CVE-2013-2447", "CVE-2013-2457", "CVE-2010-4351", "CVE-2011-0864", "CVE-2013-2453", "CVE-2013-1557", "CVE-2013-2426", "CVE-2013-2455", "CVE-2013-2422", "CVE-2013-2383", "CVE-2013-0425", "CVE-2013-1484", "CVE-2011-3552", "CVE-2013-5774", "CVE-2012-1724", "CVE-2010-3567", "CVE-2010-3573", "CVE-2013-6629", "CVE-2012-5068", "CVE-2013-3829", "CVE-2013-0441", "CVE-2010-3548", "CVE-2011-0706", "CVE-2012-5979", "CVE-2012-0502", "CVE-2013-5783", "CVE-2010-4467", "CVE-2012-3423", "CVE-2013-5800", "CVE-2013-5820", "CVE-2013-5790", "CVE-2014-2398", "CVE-2010-3568", "CVE-2014-0451", "CVE-2013-1569", "CVE-2013-2412", "CVE-2014-0452", "CVE-2011-0862", "CVE-2013-2445", "CVE-2013-2430", "CVE-2013-2460", "CVE-2013-5840", "CVE-2014-2414", "CVE-2010-3569", "CVE-2011-0871", "CVE-2013-2449", "CVE-2011-0872", "CVE-2012-5070", "CVE-2013-5797", "CVE-2013-5804", "CVE-2013-5772"], "description": "### Background\n\nIcedTea is a distribution of the Java OpenJDK source code built with free build tools. \n\n### Description\n\nMultiple vulnerabilities have been discovered in the IcedTea JDK. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA remote attacker could possibly execute arbitrary code with the privileges of the process, cause a Denial of Service condition, obtain sensitive information, bypass intended security policies, or have other unspecified impact. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll IcedTea JDK users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-java/icedtea-bin-6.1.13.3\"", "edition": 1, "modified": "2016-04-19T00:00:00", "published": "2014-06-29T00:00:00", "id": "GLSA-201406-32", "href": "https://security.gentoo.org/glsa/201406-32", "type": "gentoo", "title": "IcedTea JDK: Multiple vulnerabilities", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}