Published: 19/10/2011 Updated: 06/01/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and previous versions, 5.0 Update 31 and previous versions, and 1.4.2_33 and previous versions allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun jre 1.6.0
sun jdk 1.6.0
sun jdk
sun jre
sun jre 1.5.0
sun jdk 1.5.0
sun jre 1.4.2_29
sun jre 1.4.2_28
sun jre 1.4.2_21
sun jre 1.4.2_20
sun jre 1.4.2_12
sun jre 1.4.2_11
sun jre 1.4.2_4
sun jre 1.4.2_3
sun jdk 1.4.2_30
sun jdk 1.4.2_29
sun jdk 1.4.2_21
sun jdk 1.4.2_20
sun jdk 1.4.2_13
sun jdk 1.4.2_12
sun jdk 1.4.2_5
sun jdk 1.4.2_4
sun jdk 1.4.2_3
sun jre 1.4.2_27
sun jre 1.4.2_26
sun jre 1.4.2_19
sun jre 1.4.2_18
sun jre 1.4.2_17
sun jre 1.4.2_10
sun jre 1.4.2_9
sun jre 1.4.2_2
sun jre 1.4.2_32
sun jre 1.4.2_25
sun jre 1.4.2_24
sun jre 1.4.2_16
sun jre 1.4.2_15
sun jre 1.4.2_8
sun jre 1.4.2_7
sun jre 1.4.2
sun jdk 1.4.2_25
sun jdk 1.4.2_24
sun jdk 1.4.2_17
sun jdk 1.4.2_16
sun jdk 1.4.2_9
sun jdk 1.4.2_8
sun jdk 1.4.2
sun jre 1.4.2_1
sun jdk 1.4.2_28
sun jdk 1.4.2_27
sun jdk 1.4.2_26
sun jdk 1.4.2_19
sun jdk 1.4.2_18
sun jdk 1.4.2_11
sun jdk 1.4.2_10
sun jdk 1.4.2_2
sun jdk 1.4.2_1
sun jre 1.4.2_31
sun jre 1.4.2_30
sun jre 1.4.2_23
sun jre 1.4.2_22
sun jre 1.4.2_14
sun jre 1.4.2_13
sun jre 1.4.2_6
sun jre 1.4.2_5
sun jdk 1.4.2_32
sun jdk 1.4.2_31
sun jdk 1.4.2_23
sun jdk 1.4.2_22
sun jdk 1.4.2_15
sun jdk 1.4.2_14
sun jdk 1.4.2_7
sun jdk 1.4.2_6
sun jdk 1.7.0
sun jre 1.7.0

Synopsis Critical: java-142-ibm security update Type/Severity Security Advisory: Critical Topic Updated java-142-ibm packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 4 Extras and Red Hat EnterpriseLinux 5 SupplementaryThe Red Hat Security Response Team has rated t ...

Synopsis Critical: java-150-ibm security update Type/Severity Security Advisory: Critical Topic Updated java-150-ibm packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 4 Extras, and Red Hat EnterpriseLinux 5 and 6 SupplementaryThe Red Hat Security Response Team has ...

Synopsis Moderate: java-142-ibm-sap security update Type/Severity Security Advisory: Moderate Topic Updated java-142-ibm-sap packages that fix several security issues arenow available for Red Hat Enterprise Linux 4, 5 and 6 for SAPThe Red Hat Security Response Team has rated this update as having moder ...

Synopsis Critical: java-160-ibm security update Type/Severity Security Advisory: Critical Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 4 Extras, and Red Hat EnterpriseLinux 5 and 6 SupplementaryThe Red Hat Security Response Team has ...

Synopsis Low: Red Hat Network Satellite server IBM Java Runtime security update Type/Severity Security Advisory: Low Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Network Satellite Server 54The Red Hat Security Response Team has rated this update as ha ...

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java platform: CVE-2011-3389 The TLS implementation does not guard properly against certain chosen-plaintext attacks when block ciphers are used in CBC mode CVE-2011-3521 The CORBA implementation contains a deserialization vulnerability in the IIOP implementati ...

USN-1263-1 caused a regression when using OpenJDK 6’s SSL/TLS implementation ...

Multiple OpenJDK 6 and IcedTea-Web vulnerabilities have been fixed ...

A flaw was found in the Java RMI (Remote Method Invocation) registry implementation A remote RMI client could use this flaw to execute arbitrary code on the RMI server running the registry (CVE-2011-3556) A flaw was found in the Java RMI registry implementation A remote RMI client could use this flaw to execute code on the RMI server with unrest ...

NVD-CWE-noinfo http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html http://www.redhat.com/support/errata/RHSA-2011-1384.html http://www.securityfocus.com/bid/50211 http://www.ibm.com/developerworks/java/jdk/alerts/http://www.redhat.com/support/errata/RHSA-2011-1478.html http://www.redhat.com/support/errata/RHSA-2012-0006.html http://secunia.com/advisories/49198 http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html http://www.securitytracker.com/id?1026215 http://marc.info/?l=bugtraq&m=132750579901589&w=2 http://osvdb.org/76495 http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html http://secunia.com/advisories/48692 http://rhn.redhat.com/errata/RHSA-2013-1455.html http://www.ubuntu.com/usn/USN-1263-1 http://security.gentoo.org/glsa/glsa-201406-32.xml http://marc.info/?l=bugtraq&m=134254957702612&w=2 http://marc.info/?l=bugtraq&m=133728004526190&w=2 http://marc.info/?l=bugtraq&m=133365109612558&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/70845 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14492 http://marc.info/?l=bugtraq&m=134254866602253&w=2 http://secunia.com/advisories/48308 https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2012:0006 https://usn.ubuntu.com/1263-2/https://www.debian.org/security/./dsa-2356

CVE-2011-3548

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect