Lucene search

K
ubuntucveUbuntu.comUB:CVE-2007-0012
HistoryJan 09, 2008 - 12:00 a.m.

CVE-2007-0012

2008-01-0900:00:00
ubuntu.com
ubuntu.com
6

0.006 Low

EPSS

Percentile

78.0%

Sun JRE 5.0 before update 14 allows remote attackers to cause a denial of
service (Internet Explorer crash) via an object tag with an encoded applet
and an undefined name attribute, which triggers a NULL pointer dereference
in jpiexp32.dll when the applet is decoded and passed to the JVM.

Notes

Author Note
jdstrand browser bug and almost definitely Windows specific
mdeslaur advisory says java6 is not affected

0.006 Low

EPSS

Percentile

78.0%