CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
EPSS
Percentile
92.6%
Unspecified vulnerability in the Java Runtime Environment (JRE) component
in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0
Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to
affect confidentiality and availability via unknown vectors related to
Sound.
Author | Note |
---|---|
mdeslaur | in natty+, NetX and the plugin moved to the icedtea-web package |
sbeattie | red hat description: The Java Sound component did not properly check buffer boundaries. Malicious input, or an untrusted Java application or applet could use this flaw to cause the Java Virtual Machine (JVM) to crash or disclose a portion of its memory. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | openjdk-6 | < 6b20-1.9.13-0ubuntu1~10.04.1 | UNKNOWN |
ubuntu | 10.10 | noarch | openjdk-6 | < 6b20-1.9.13-0ubuntu1~10.10.1 | UNKNOWN |
ubuntu | 11.04 | noarch | openjdk-6 | < 6b22-1.10.6-0ubuntu1 | UNKNOWN |
ubuntu | 11.10 | noarch | openjdk-6 | < 6b23~pre11-0ubuntu1.11.10.2 | UNKNOWN |
ubuntu | 10.04 | noarch | openjdk-6b18 | < 6b18-1.8.13-0ubuntu1~10.04.1 | UNKNOWN |
ubuntu | 10.10 | noarch | openjdk-6b18 | < 6b18-1.8.13-0ubuntu1~10.10.1 | UNKNOWN |
ubuntu | 11.04 | noarch | openjdk-6b18 | < 6b18-1.8.13-0ubuntu1~11.04.1 | UNKNOWN |
ubuntu | 11.10 | noarch | openjdk-7 | < 7u9-2.3.3-0ubuntu1~11.10.1 | UNKNOWN |