Lucene search

K

RedhatCVELIST:CVE-2011-0706

HistoryFeb 18, 2011 - 11:00 p.m.

CVE-2011-0706

2011-02-1823:00:00

redhat

www.cve.org

6

AI Score

9

Confidence

High

EPSS

0.014

Percentile

86.2%

The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of “an inappropriate security descriptor.”

References

dbhole.wordpress.com/2011/02/15/icedtea-web-1-0-1-released/

lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.html

lists.fedoraproject.org/pipermail/package-announce/2011-February/054134.html

secunia.com/advisories/43350

security.gentoo.org/glsa/glsa-201406-32.xml

www.debian.org/security/2011/dsa-2224

www.mandriva.com/security/advisories?name=MDVSA-2011:054

www.securityfocus.com/bid/46439

bugzilla.redhat.com/show_bug.cgi?id=677332

exchange.xforce.ibmcloud.com/vulnerabilities/65534

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14117

AI Score

9

Confidence

High

EPSS

0.014

Percentile

86.2%

Related for CVELIST:CVE-2011-0706

prion1 ubuntucve1 cve1 nvd1 nessus10 openvas21 ubuntu3 fedora6 osv1 debian1 securityvulns1 gentoo1