PRIOn knowledge basePRION:CVE-2014-2412Buffer overflow
6.4 Medium
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
81.1%
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, SE 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-0451.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 13.10 | |
| ubuntu_linux | eq | 12.10 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 10.04 | |
| ubuntu_linux | eq | 12.04 | |
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 7.0 | |
| debian_linux | eq | 6.0 | |
| jdk | eq | 1.7.0 update51 | |
| jdk | eq | 1.8.0 |
References
rhn.redhat.com/errata/RHSA-2014-0675.html
rhn.redhat.com/errata/RHSA-2014-0685.html
secunia.com/advisories/58415
security.gentoo.org/glsa/glsa-201406-32.xml
security.gentoo.org/glsa/glsa-201502-12.xml
www-01.ibm.com/support/docview.wss?uid=swg21672080
www.debian.org/security/2014/dsa-2912
www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
www.securityfocus.com/bid/66873
www.ubuntu.com/usn/USN-2187-1
www.ubuntu.com/usn/USN-2191-1
access.redhat.com/errata/RHSA-2014:0413
access.redhat.com/errata/RHSA-2014:0414
marc.info/?l=bugtraq&m=140852886808946&w=2
marc.info/?l=bugtraq&m=140852974709252&w=2
Related
6.4 Medium
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
81.1%