CVE-2011-3516

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.6 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
Affected Products (NVD)
VendorProductVersion
sunjdk
𝑥
≤ 1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjre
𝑥
≤ 1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjdk
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
sunjre
1.6.0
𝑥
= Vulnerable software versions
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
java-1.6.0-ibm
RHEL 6
1:1.6.0.10.0-1jpp.2.el6
fixed
java-1.6.0-ibm-demo
RHEL 6
1:1.6.0.10.0-1jpp.2.el6
fixed
java-1.6.0-ibm-devel
RHEL 6
1:1.6.0.10.0-1jpp.2.el6
fixed
java-1.6.0-ibm-javacomm
RHEL 6
1:1.6.0.10.0-1jpp.2.el6
fixed
java-1.6.0-ibm-jdbc
RHEL 6
1:1.6.0.10.0-1jpp.2.el6
fixed
java-1.6.0-ibm-plugin
RHEL 6
1:1.6.0.10.0-1jpp.2.el6
fixed
java-1.6.0-ibm-src
RHEL 6
1:1.6.0.10.0-1jpp.2.el6
fixed
java-1.6.0-sun
RHEL 6
1:1.6.0.29-1jpp.1.el6
fixed
java-1.6.0-sun-demo
RHEL 6
1:1.6.0.29-1jpp.1.el6
fixed
java-1.6.0-sun-devel
RHEL 6
1:1.6.0.29-1jpp.1.el6
fixed
java-1.6.0-sun-jdbc
RHEL 6
1:1.6.0.29-1jpp.1.el6
fixed
java-1.6.0-sun-plugin
RHEL 6
1:1.6.0.29-1jpp.1.el6
fixed
java-1.6.0-sun-src
RHEL 6
1:1.6.0.29-1jpp.1.el6
fixed
References
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html
http://marc.info/?l=bugtraq&m=132750579901589&w=2
http://marc.info/?l=bugtraq&m=134254866602253&w=2
http://marc.info/?l=bugtraq&m=134254957702612&w=2
http://rhn.redhat.com/errata/RHSA-2013-1455.html
http://secunia.com/advisories/48308
http://www.ibm.com/developerworks/java/jdk/alerts/
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
http://www.redhat.com/support/errata/RHSA-2011-1384.html
http://www.securityfocus.com/bid/50229
http://www.securitytracker.com/id?1026215
https://exchange.xforce.ibmcloud.com/vulnerabilities/70851
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14273
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html
http://marc.info/?l=bugtraq&m=132750579901589&w=2
http://marc.info/?l=bugtraq&m=134254866602253&w=2
http://marc.info/?l=bugtraq&m=134254957702612&w=2
http://rhn.redhat.com/errata/RHSA-2013-1455.html
http://secunia.com/advisories/48308
http://www.ibm.com/developerworks/java/jdk/alerts/
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
http://www.redhat.com/support/errata/RHSA-2011-1384.html
http://www.securityfocus.com/bid/50229
http://www.securitytracker.com/id?1026215
https://exchange.xforce.ibmcloud.com/vulnerabilities/70851
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14273