Lucene search

K

Ubuntu.comUB:CVE-2012-1720

HistoryJun 16, 2012 - 12:00 a.m.

CVE-2012-1720

2012-06-1600:00:00

ubuntu.com

ubuntu.com

10

CVSS2

3.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

EPSS

0.001

Percentile

26.5%

Unspecified vulnerability in the Java Runtime Environment (JRE) component
in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update
35 and earlier, and 1.4.2_37 and earlier, when running on Solaris, allows
local users to affect confidentiality, integrity, and availability via
unknown vectors related to Networking.

Bugs

Notes

Author	Note
mdeslaur	in natty+, NetX and the plugin moved to the icedtea-web package

References

www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html

launchpad.net/bugs/cve/CVE-2012-1720

nvd.nist.gov/vuln/detail/CVE-2012-1720

security-tracker.debian.org/tracker/CVE-2012-1720

www.cve.org/CVERecord?id=CVE-2012-1720

CVSS2

3.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

EPSS

0.001

Percentile

26.5%

Related for UB:CVE-2012-1720

cve1 nvd1 prion1 cvelist1 ibm3 openvas2 nessus4 securityvulns1 oracle1