Описание
IcedTea6 before 1.7.4 does not properly check property access, which allows unsigned apps to read and write arbitrary files.
Отчет
This issue does not affect the version of the java-1.6.0-openjdk package, as shipped with Red Hat Enterprise Linux 5.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | java-1.6.0-openjdk | Affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=616893IcedTea Incomplete property access check for unsigned applications
5 Medium
CVSS2
Связанные уязвимости
CVSS3: 9.1
ubuntu
около 6 лет назад
IcedTea6 before 1.7.4 does not properly check property access, which allows unsigned apps to read and write arbitrary files.
CVSS3: 9.1
nvd
около 6 лет назад
IcedTea6 before 1.7.4 does not properly check property access, which allows unsigned apps to read and write arbitrary files.
CVSS3: 9.1
debian
около 6 лет назад
IcedTea6 before 1.7.4 does not properly check property access, which a ...
CVSS3: 9.1
github
больше 3 лет назад
IcedTea6 before 1.7.4 does not properly check property access, which allows unsigned apps to read and write arbitrary files.
5 Medium
CVSS2