Lucene search

K
ubuntucveUbuntu.comUB:CVE-2014-4208
HistoryJul 17, 2014 - 12:00 a.m.

CVE-2014-4208

2014-07-1700:00:00
ubuntu.com
ubuntu.com
19

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

EPSS

0.011

Percentile

84.4%

Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60
and 8u5 allows remote attackers to affect integrity via unknown vectors
related to Deployment, a different vulnerability than CVE-2014-4220.

Notes

Author Note
mdeslaur in lucid+, NetX and the plugin moved to the icedtea-web package
jdstrand sun-java6 is not redistributable, no longer in the archive and no longer tracked sun-java5 is EOL upstream and no longer tracked

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

EPSS

0.011

Percentile

84.4%