Lucene search

[email protected]NVD:CVE-2012-0547

HistoryAug 30, 2012 - 11:55 p.m.

CVE-2012-0547

2012-08-3023:55:01

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:N/A:N

AI Score

8.7

Confidence

High

EPSS

0.014

Percentile

86.4%

JSON

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and “a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited.” NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of other vulnerabilities. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to “toolkit internals references.”

Affected configurations

NVD

Node

oraclejdkMatch1.7.0

oraclejdkMatch1.7.0update1

oraclejdkMatch1.7.0update2

oraclejdkMatch1.7.0update3

oraclejdkMatch1.7.0update4

oraclejdkMatch1.7.0update5

oraclejdkMatch1.7.0update6

oraclejreRange≤1.7.0update6

oraclejreMatch1.7.0

oraclejreMatch1.7.0update1

oraclejreMatch1.7.0update2

oraclejreMatch1.7.0update3

oraclejreMatch1.7.0update4

oraclejreMatch1.7.0update5

Node

oraclejdkRange≤1.6.0update34

oraclejdkMatch1.6.0update22

oraclejdkMatch1.6.0update23

oraclejdkMatch1.6.0update24

oraclejdkMatch1.6.0update25

oraclejdkMatch1.6.0update26

oraclejdkMatch1.6.0update27

oraclejdkMatch1.6.0update29

oraclejdkMatch1.6.0update30

oraclejdkMatch1.6.0update31

oraclejdkMatch1.6.0update32

oraclejdkMatch1.6.0update33

oraclejreRange≤1.6.0update34

oraclejreMatch1.6.0update22

oraclejreMatch1.6.0update23

oraclejreMatch1.6.0update24

oraclejreMatch1.6.0update25

oraclejreMatch1.6.0update26

oraclejreMatch1.6.0update27

oraclejreMatch1.6.0update29

oraclejreMatch1.6.0update30

oraclejreMatch1.6.0update31

oraclejreMatch1.6.0update32

oraclejreMatch1.6.0update33

oraclejreMatch1.6.0update35

sunjdkMatch1.6.0update_10

sunjdkMatch1.6.0update_11

sunjdkMatch1.6.0update_12

sunjdkMatch1.6.0update_13

sunjdkMatch1.6.0update_14

sunjdkMatch1.6.0update_15

sunjdkMatch1.6.0update_16

sunjdkMatch1.6.0update_17

sunjdkMatch1.6.0update_18

sunjdkMatch1.6.0update_19

sunjdkMatch1.6.0update_20

sunjdkMatch1.6.0update_21

sunjdkMatch1.6.0update_3

sunjdkMatch1.6.0update_4

sunjdkMatch1.6.0update_5

sunjdkMatch1.6.0update_6

sunjdkMatch1.6.0update_7

sunjdkMatch1.6.0update1

sunjdkMatch1.6.0update1_b06

sunjdkMatch1.6.0update2

sunjreMatch1.6.0

sunjreMatch1.6.0update_1

sunjreMatch1.6.0update_10

sunjreMatch1.6.0update_11

sunjreMatch1.6.0update_12

sunjreMatch1.6.0update_13

sunjreMatch1.6.0update_14

sunjreMatch1.6.0update_15

sunjreMatch1.6.0update_16

sunjreMatch1.6.0update_17

sunjreMatch1.6.0update_18

sunjreMatch1.6.0update_19

sunjreMatch1.6.0update_2

sunjreMatch1.6.0update_20

sunjreMatch1.6.0update_21

sunjreMatch1.6.0update_3

sunjreMatch1.6.0update_4

sunjreMatch1.6.0update_5

sunjreMatch1.6.0update_6

sunjreMatch1.6.0update_7

References

lists.opensuse.org/opensuse-security-announce/2012-09/msg00006.html

lists.opensuse.org/opensuse-security-announce/2012-09/msg00019.html

lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html

marc.info/?l=bugtraq&m=135161897205627&w=2

rhn.redhat.com/errata/RHSA-2012-1222.html

rhn.redhat.com/errata/RHSA-2012-1225.html

rhn.redhat.com/errata/RHSA-2012-1392.html

rhn.redhat.com/errata/RHSA-2012-1466.html

rhn.redhat.com/errata/RHSA-2013-1455.html

rhn.redhat.com/errata/RHSA-2013-1456.html

secunia.com/advisories/51044

secunia.com/advisories/51141

secunia.com/advisories/51327

security.gentoo.org/glsa/glsa-201406-32.xml

www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-023/index.html

www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html

www.securityfocus.com/bid/55339

www.ubuntu.com/usn/USN-1553-1

h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03533078

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:N/A:N

AI Score

8.7

Confidence

High

EPSS

0.014

Percentile

86.4%

JSON

Related for NVD:CVE-2012-0547

cvelist1 cve1 ubuntucve1 prion1 securityvulns2 nessus34 oraclelinux3 redhat9 centos3 openvas29 suse4 amazon1 seebug1 ubuntu1 veracode22 gentoo2