Описание
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.2-2ubuntu3 |
| hardy | DNE | |
| lucid | released | 1.2-2ubuntu0.10.04.2 |
| natty | released | 1.2-2ubuntu0.11.04.2 |
| oneiric | released | 1.2-2ubuntu0.11.10.2 |
| precise | released | 1.2-2ubuntu1.1 |
| upstream | released | 1.2.1 |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant ...
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
7.5 High
CVSS2