5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
85.9%
Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45 allows
remote attackers to affect confidentiality, integrity, and availability via
unknown vectors related to Install, a different vulnerability than
CVE-2013-5905.
Author | Note |
---|---|
mdeslaur | in lucid+, NetX and the plugin moved to the icedtea-web package |
jdstrand | sun-java6 is not redistributable, no longer in the archive and no longer tracked sun-java5 is EOL upstream and no longer tracked Based on Oracle advisory and lack of fixes from OpenJDK, marking as ‘not-affected’ for now (which is the best we can do until more information comes to light) |