Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-1716
HistoryJun 16, 2012 - 12:00 a.m.

CVE-2012-1716

2012-06-1600:00:00
ubuntu.com
ubuntu.com
15
java runtime environment
oracle
remote attackers
confidentiality
integrity
availability
swing

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.015

Percentile

86.8%

Unspecified vulnerability in the Java Runtime Environment (JRE) component
in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5
update 35 and earlier allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors related to Swing.

Bugs

Notes

Author Note
mdeslaur in natty+, NetX and the plugin moved to the icedtea-web package
sbeattie openjdk-6b18 in oneiric has been superceded by openjdk-6 openjdk-6b18 in lucid & natty would be superceded by openjdk-6 except that openjdk-6 FTBFS on armel (LP: #1043003)
OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchopenjdk-6< 6b27-1.12.3-0ubuntu1~08.04.1UNKNOWN
ubuntu10.04noarchopenjdk-6< 6b24-1.11.3-1ubuntu0.10.04.1UNKNOWN
ubuntu11.04noarchopenjdk-6< 6b24-1.11.3-1ubuntu0.11.04.1UNKNOWN
ubuntu11.10noarchopenjdk-6< 6b24-1.11.3-1ubuntu0.11.10.1UNKNOWN
ubuntu12.04noarchopenjdk-6< 6b24-1.11.3-1ubuntu0.12.04.1UNKNOWN
ubuntu11.10noarchopenjdk-7< 7u9-2.3.3-0ubuntu1~11.10.1UNKNOWN

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.015

Percentile

86.8%