CVE-2012-3136 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C
oracle	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 76%

Vendor	Product	Version
oracle	jdk	𝑥 ≤ 1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jdk	1.7.0
oracle	jre	𝑥 ≤ 1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0
oracle	jre	1.7.0

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

icedtea-web

quantal	not-affected
precise	not-affected
oneiric	not-affected
natty	not-affected
lucid	not-affected
hardy	dne

openjdk-6

quantal	not-affected
precise	not-affected
oneiric	not-affected
natty	not-affected
lucid	not-affected
hardy	not-affected

openjdk-6b18

quantal	dne
precise	dne
oneiric	not-affected
natty	not-affected
lucid	not-affected
hardy	dne

openjdk-7

quantal	not-affected
precise	not-affected
oneiric	Fixed 7u9-2.3.3-0ubuntu1~11.10.1 released
natty	dne
lucid	dne
hardy	dne

sun-java5

quantal	dne
precise	dne
oneiric	dne
natty	dne
lucid	dne
hardy	ignored

sun-java6

quantal	dne
precise	dne
oneiric	dne
natty	dne
lucid	dne
hardy	ignored

References

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html

http://marc.info/?l=bugtraq&m=135109152819176&w=2

http://rhn.redhat.com/errata/RHSA-2012-1225.html

http://secunia.com/advisories/51044

http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html

http://marc.info/?l=bugtraq&m=135109152819176&w=2

http://rhn.redhat.com/errata/RHSA-2012-1225.html

http://secunia.com/advisories/51044

http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html