CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
98.4%
Unspecified vulnerability in the Java Runtime Environment (JRE) component
in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0
Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers
to affect confidentiality, integrity, and availability via unknown vectors
related to 2D, a different vulnerability than CVE-2013-2394 and
CVE-2013-1491.
Author | Note |
---|---|
mdeslaur | in lucid+, NetX and the plugin moved to the icedtea-web package |
jdstrand | sun-java6 is not redistributable, no longer in the archive and no longer tracked sun-java5 is EOL upstream and no longer tracked Oracle java only |