exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 11

ELSA-2012-1132

около 13 лет назад

ELSA-2012-1132: icedtea-web security update (IMPORTANT)

EPSS: Низкий

CVE-2012-3423

около 13 лет назад

The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.

CVSS2: 7.5

EPSS: Низкий

CVE-2012-3423

около 13 лет назад

CVSS2: 5.1

EPSS: Низкий

CVE-2012-3423

около 13 лет назад

CVSS2: 7.5

EPSS: Низкий

CVE-2012-3423

около 13 лет назад

The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant ...

CVSS2: 7.5

EPSS: Низкий

CVE-2012-3422

около 13 лет назад

The getFirstInTableInstance function in the IcedTea-Web plugin before 1.2.1 returns an uninitialized pointer when the instance_to_id_map hash is empty, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted web page, which causes an uninitialized memory location to be read.

CVSS2: 6.8

EPSS: Низкий

CVE-2012-3422

около 13 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2012-3422

около 13 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2012-3422

около 13 лет назад

The getFirstInTableInstance function in the IcedTea-Web plugin before ...

CVSS2: 6.8

EPSS: Низкий

GHSA-wg7g-m9g6-qcmw

больше 3 лет назад

EPSS: Низкий

GHSA-qwm3-gpj3-x6c9

больше 3 лет назад

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
ELSA-2012-1132 ELSA-2012-1132: icedtea-web security update (IMPORTANT)			около 13 лет назад
CVE-2012-3423 The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.	CVSS2: 7.5	2% Низкий	около 13 лет назад
CVE-2012-3423 The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.	CVSS2: 5.1	2% Низкий	около 13 лет назад
CVE-2012-3423 The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.	CVSS2: 7.5	2% Низкий	около 13 лет назад
CVE-2012-3423 The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant ...	CVSS2: 7.5	2% Низкий	около 13 лет назад
CVE-2012-3422 The getFirstInTableInstance function in the IcedTea-Web plugin before 1.2.1 returns an uninitialized pointer when the instance_to_id_map hash is empty, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted web page, which causes an uninitialized memory location to be read.	CVSS2: 6.8	1% Низкий	около 13 лет назад
CVE-2012-3422 The getFirstInTableInstance function in the IcedTea-Web plugin before 1.2.1 returns an uninitialized pointer when the instance_to_id_map hash is empty, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted web page, which causes an uninitialized memory location to be read.	CVSS2: 6.8	1% Низкий	около 13 лет назад
CVE-2012-3422 The getFirstInTableInstance function in the IcedTea-Web plugin before 1.2.1 returns an uninitialized pointer when the instance_to_id_map hash is empty, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted web page, which causes an uninitialized memory location to be read.	CVSS2: 6.8	1% Низкий	около 13 лет назад
CVE-2012-3422 The getFirstInTableInstance function in the IcedTea-Web plugin before ...	CVSS2: 6.8	1% Низкий	около 13 лет назад
GHSA-wg7g-m9g6-qcmw The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.		2% Низкий	больше 3 лет назад
GHSA-qwm3-gpj3-x6c9 The getFirstInTableInstance function in the IcedTea-Web plugin before 1.2.1 returns an uninitialized pointer when the instance_to_id_map hash is empty, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted web page, which causes an uninitialized memory location to be read.		1% Низкий	больше 3 лет назад

Уязвимостей на страницу