5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.007 Low
EPSS
Percentile
80.4%
The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK
and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows
remote attackers to discover the username of the account that invoked an
untrusted (1) applet or (2) Java Web Start application via unspecified
vectors.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | openjdk-6 | < 6b18-1.8.2-4ubuntu1~8.04.1 | UNKNOWN |
ubuntu | 8.10 | noarch | openjdk-6 | < 6b12-0ubuntu6.5 | UNKNOWN |
ubuntu | 9.04 | noarch | openjdk-6 | < 6b14-1.4.1-0ubuntu11 | UNKNOWN |
ubuntu | 8.04 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.8.04 | UNKNOWN |
ubuntu | 9.04 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.9.04 | UNKNOWN |
ubuntu | 9.10 | noarch | sun-java6 | < 6-15-1 | UNKNOWN |
ubuntu | 10.04 | noarch | sun-java6 | < 6-15-1 | UNKNOWN |