Описание
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
Релиз | Статус | Примечание |
---|---|---|
devel | released | 1.2-2ubuntu3 |
hardy | DNE | |
lucid | released | 1.2-2ubuntu0.10.04.2 |
natty | released | 1.2-2ubuntu0.11.04.2 |
oneiric | released | 1.2-2ubuntu0.11.10.2 |
precise | released | 1.2-2ubuntu1.1 |
upstream | released | 1.2.1 |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant ...
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
EPSS
7.5 High
CVSS2