CVE-2012-1713 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C
oracle	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 91%

Vendor	Product	Version
oracle	jdk	𝑥 ≤ 1.7.0
oracle	jre	𝑥 ≤ 1.7.0
oracle	jdk	𝑥 ≤ 1.6.0
oracle	jre	𝑥 ≤ 1.6.0
sun	jdk	𝑥 ≤ 1.5.0
sun	jre	𝑥 ≤ 1.5.0
sun	jdk	𝑥 ≤ 1.4.2_37
sun	jre	𝑥 ≤ 1.4.2_37
oracle	javafx	𝑥 ≤ 2.1

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

icedtea-web

quantal	not-affected
precise	not-affected
oneiric	not-affected
natty	not-affected
lucid	not-affected
hardy	dne

openjdk-6

quantal	not-affected
precise	Fixed 6b24-1.11.3-1ubuntu0.12.04.1 released
oneiric	Fixed 6b24-1.11.3-1ubuntu0.11.10.1 released
natty	Fixed 6b24-1.11.3-1ubuntu0.11.04.1 released
lucid	Fixed 6b24-1.11.3-1ubuntu0.10.04.1 released
hardy	Fixed 6b27-1.12.3-0ubuntu1~08.04.1 released

openjdk-6b18

quantal	dne
precise	dne
oneiric	ignored
natty	ignored
lucid	ignored
hardy	dne

openjdk-7

quantal	not-affected
precise	not-affected
oneiric	Fixed 7u9-2.3.3-0ubuntu1~11.10.1 released
natty	dne
lucid	dne
hardy	dne

sun-java5

quantal	dne
precise	dne
oneiric	dne
natty	dne
lucid	dne
hardy	ignored

sun-java6

quantal	dne
precise	dne
oneiric	dne
natty	dne
lucid	dne
hardy	ignored

References

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00028.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html

http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html

http://marc.info/?l=bugtraq&m=134496371727681&w=2

http://marc.info/?l=bugtraq&m=134496371727681&w=2

http://rhn.redhat.com/errata/RHSA-2012-0734.html

http://rhn.redhat.com/errata/RHSA-2012-1243.html

http://rhn.redhat.com/errata/RHSA-2013-1455.html

http://rhn.redhat.com/errata/RHSA-2013-1456.html

http://secunia.com/advisories/50659

http://secunia.com/advisories/51080

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://www.ibm.com/support/docview.wss?uid=swg21615246

http://www.mandriva.com/security/advisories?name=MDVSA-2012:095

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html

http://www.securityfocus.com/bid/53946

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16502

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00028.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html

http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html

http://marc.info/?l=bugtraq&m=134496371727681&w=2

http://marc.info/?l=bugtraq&m=134496371727681&w=2

http://rhn.redhat.com/errata/RHSA-2012-0734.html

http://rhn.redhat.com/errata/RHSA-2012-1243.html

http://rhn.redhat.com/errata/RHSA-2013-1455.html

http://rhn.redhat.com/errata/RHSA-2013-1456.html

http://secunia.com/advisories/50659

http://secunia.com/advisories/51080

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://www.ibm.com/support/docview.wss?uid=swg21615246

http://www.mandriva.com/security/advisories?name=MDVSA-2012:095

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html

http://www.securityfocus.com/bid/53946

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16502