CVE-2011-3555 - Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, a

CVE-2011-3555

Summary

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, and 7 allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity and availability via unknown vectors.

References

Vulnerable Configurations

cpe:2.3:a:sun:jdk:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.7.0:*:*:*:*:*:*:*

CVSS

Base:	6.1 (as of 22-12-2017 - 02:29)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	COMPLETE

cvss-vector via4

AV:N/AC:H/Au:N/C:N/I:P/A:C

oval via4

accepted

2014-08-18T04:01:02.647-04:00

class

vulnerability

contributors

name Scott Quint
organization DTCC
name Dragos Prisaca
organization G2, Inc.
name Maria Mikhno
organization ALTX-SOFT

definition_extensions

comment Java SE Development Kit 7 is installed
oval oval:org.mitre.oval:def:16278
comment Java SE Runtime Environment 7 is installed
oval oval:org.mitre.oval:def:16050

description

family

windows

oval:org.mitre.oval:def:14400

status

accepted

submitted

2011-11-25T18:05:07.000-05:00

title

version

redhat via4

advisories

rhsa

id	RHSA-2011:1384

refmap via4

bid	50237
confirm	http://www.ibm.com/developerworks/java/jdk/alerts/ http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
hp	HPSBMU02797 HPSBMU02799 SSRT100867
osvdb	76508
sectrack	1026215
xf	oracle-jre-dos(70838)

Last major update

22-12-2017 - 02:29

Published

19-10-2011 - 21:55

Last modified

22-12-2017 - 02:29