admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2011/CVE-2011-07xx/CVE-2011-0706.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

140 lines
4.3 KiB
JSON
Raw Blame History

{
"id": "CVE-2011-0706",
"sourceIdentifier": "secalert@redhat.com",
"published": "2011-02-19T01:00:03.277",
"lastModified": "2023-02-13T01:18:26.987",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of \"an inappropriate security descriptor.\""
},
{
"lang": "es",
"value": "La clase JNLPClassLoader en IcedTea-Web anterior a versi\u00f3n 1.0.1, tal y como es usado en OpenJDK Runtime Environment versi\u00f3n 1.6.0, permite a los atacantes remotos alcanzar privilegios por medio de vectores desconocidos relacionados con varios firmantes y la asignaci\u00f3n de \"an inappropriate security descriptor\u201d."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "941141AF-7E4A-4302-82A0-410D5694983A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0:pre:*:*:*:*:*:*",
"matchCriteriaId": "81421B64-64A3-4339-80CB-95BBDFB5C894"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.1:pre:*:*:*:*:*:*",
"matchCriteriaId": "12C72453-AFA2-4AD7-B13F-DF01409B0459"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A3A4FEC7-A4A0-4B5C-A56C-8F80AE19865E"
}
]
}
]
}
],
"references": [
{
"url": "http://dbhole.wordpress.com/2011/02/15/icedtea-web-1-0-1-released/",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.html",
"source": "secalert@redhat.com"
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054134.html",
"source": "secalert@redhat.com"
},
{
"url": "http://security.gentoo.org/glsa/glsa-201406-32.xml",
"source": "secalert@redhat.com"
},
{
"url": "http://www.debian.org/security/2011/dsa-2224",
"source": "secalert@redhat.com"
},
{
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:054",
"source": "secalert@redhat.com"
},
{
"url": "http://www.securityfocus.com/bid/46439",
"source": "secalert@redhat.com"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=677332",
"source": "secalert@redhat.com"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65534",
"source": "secalert@redhat.com"
},
{
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14117",
"source": "secalert@redhat.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink