Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-4301
HistoryFeb 02, 2013 - 12:00 a.m.

CVE-2012-4301

2013-02-0200:00:00
ubuntu.com
ubuntu.com
6

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.121 Low

EPSS

Percentile

95.4%

Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX
2.2.4 and earlier allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors, a different vulnerability
than other CVEs listed in the February 2013 CPU. NOTE: the previous
information is from the February 2013 CPU. Oracle has not commented on
claims from a third party that this issue allows remote attackers to
execute arbitrary code via an β€œinvalid type case” in the init method of the
D3DShader class in the com.sun.prism.d3d package. CPU.

Notes

Author Note
jdstrand per Debian, JavaFX not part of OpenJDK

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.121 Low

EPSS

Percentile

95.4%