7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
AI Score
Confidence
High
0.224 Low
EPSS
Percentile
96.5%
It was discovered that ICU did not properly handle invalid locale data
during Unicode conversion. If an application using ICU processed crafted
data, an attacker could cause it to crash or potentially execute arbitrary
code with the privileges of the user invoking the program.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 11.10 | noarch | libicu44 | < 4.4.2-2ubuntu0.11.10.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | lib32icu-dev | < 4.4.2-2ubuntu0.11.10.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | lib32icu44 | < 4.4.2-2ubuntu0.11.10.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | libicu-dev | < 4.4.2-2ubuntu0.11.10.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | libicu44-dbg | < 4.4.2-2ubuntu0.11.10.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | libicu44 | < 4.4.2-2ubuntu0.11.04.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | lib32icu-dev | < 4.4.2-2ubuntu0.11.04.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | lib32icu44 | < 4.4.2-2ubuntu0.11.04.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | libicu-dev | < 4.4.2-2ubuntu0.11.04.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | libicu44-dbg | < 4.4.2-2ubuntu0.11.04.1 | UNKNOWN |