9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.354 Low
EPSS
Percentile
97.1%
Heap-based buffer overflow in the setBytePixels function in the Abstract
Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in
JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and
JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows
remote attackers to execute arbitrary code via crafted arguments, aka Bug
Id 6872358.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | openjdk-6 | < 6b18-1.8.2-4ubuntu1~8.04.1 | UNKNOWN |
ubuntu | 8.10 | noarch | openjdk-6 | < 6b12-0ubuntu6.6 | UNKNOWN |
ubuntu | 9.04 | noarch | openjdk-6 | < 6b14-1.4.1-0ubuntu12 | UNKNOWN |
ubuntu | 9.10 | noarch | openjdk-6 | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
ubuntu | 8.04 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.8.04 | UNKNOWN |
ubuntu | 9.04 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.9.04 | UNKNOWN |
ubuntu | 9.10 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.9.10 | UNKNOWN |
ubuntu | 10.04 | noarch | sun-java6 | < 6.20dlj-1ubuntu3 | UNKNOWN |