9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.949 High
EPSS
Percentile
99.3%
Stack-based buffer overflow in the setDiffICM function in the Abstract
Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in
JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and
JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows
remote attackers to execute arbitrary code via a crafted argument, aka Bug
Id 6872357.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | openjdk-6 | < 6b18-1.8.2-4ubuntu1~8.04.1 | UNKNOWN |
ubuntu | 8.10 | noarch | openjdk-6 | < 6b12-0ubuntu6.6 | UNKNOWN |
ubuntu | 9.04 | noarch | openjdk-6 | < 6b14-1.4.1-0ubuntu12 | UNKNOWN |
ubuntu | 9.10 | noarch | openjdk-6 | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
ubuntu | 8.04 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.8.04 | UNKNOWN |
ubuntu | 9.04 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.9.04 | UNKNOWN |
ubuntu | 9.10 | noarch | sun-java6 | < 6.20dlj-0ubuntu1.9.10 | UNKNOWN |
ubuntu | 10.04 | noarch | sun-java6 | < 6.20dlj-1ubuntu3 | UNKNOWN |