CVE-2011-0872 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:N/I:N/A:P
oracle	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 91%

Vendor	Product	Version
sun	jdk	𝑥 ≤ 1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jdk	1.6.0
sun	jre	𝑥 ≤ 1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0
sun	jre	1.6.0

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

icedtea-web

oneiric	not-affected
natty	not-affected
maverick	dne
lucid	not-affected
hardy	dne

openjdk-6

oneiric	not-affected
natty	Fixed 6b22-1.10.2-0ubuntu1~11.04.1 released
maverick	Fixed 6b20-1.9.8-0ubuntu1~10.10.1 released
lucid	Fixed 6b20-1.9.8-0ubuntu1~10.04.1 released
hardy	Fixed 6b27-1.12.3-0ubuntu1~08.04.1 released

openjdk-6b18

oneiric	Fixed 6b18-1.8.8-0ubuntu1~11.04.1 released
natty	Fixed 6b18-1.8.8-0ubuntu1~11.04.1 released
maverick	Fixed 6b18-1.8.8-0ubuntu1~10.10.1 released
lucid	Fixed 6b18-1.8.8-0ubuntu1~10.04.1 released
hardy	dne

sun-java5

oneiric	dne
natty	dne
maverick	dne
lucid	dne
hardy	ignored

sun-java6

oneiric	dne
natty	Fixed 6.26-1natty released
maverick	Fixed 6.26-1maverick1 released
lucid	Fixed 6.26-1lucid1 released
hardy	ignored

References

http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00002.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00025.html

http://marc.info/?l=bugtraq&m=132439520301822&w=2

http://marc.info/?l=bugtraq&m=132439520301822&w=2

http://marc.info/?l=bugtraq&m=134254866602253&w=2

http://marc.info/?l=bugtraq&m=134254957702612&w=2

http://marc.info/?l=bugtraq&m=134254957702612&w=2

http://secunia.com/advisories/44930

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://support.avaya.com/css/P8/documents/100147041

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-015/index.html

http://www.ibm.com/developerworks/java/jdk/alerts/

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

http://www.oracle.com/technetwork/topics/security/javacpujune2011-313339.html

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14241

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14915

http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00002.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00025.html

http://marc.info/?l=bugtraq&m=132439520301822&w=2

http://marc.info/?l=bugtraq&m=132439520301822&w=2

http://marc.info/?l=bugtraq&m=134254866602253&w=2

http://marc.info/?l=bugtraq&m=134254957702612&w=2

http://marc.info/?l=bugtraq&m=134254957702612&w=2

http://secunia.com/advisories/44930

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://support.avaya.com/css/P8/documents/100147041

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-015/index.html

http://www.ibm.com/developerworks/java/jdk/alerts/

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

http://www.oracle.com/technetwork/topics/security/javacpujune2011-313339.html

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14241

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14915