Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.8
CVSSv2

CVE-2016-0475

Published: 21/01/2016 Updated: 13/05/2022
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
VMScore: 516
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Subscribe to Oracle

Vulnerability Summary

Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote malicious users to affect confidentiality and integrity via unknown vectors related to Libraries.

Vulnerable Product Search on Vulmon Subscribe to Product

oracle jrockit r28.3.8

oracle jdk 1.8.0

oracle jre 1.8.0

Vendor Advisories

Amazon Linux AMI: ALAS-2016-647
An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code An untrusted Java application or applet could use this flaw to bypass Java sandbox restrictions (CVE-2016-0483) A flaw was found in the w ...
Red Hat: CVE-2016-0475
It was discovered that the password-based encryption (PBE) implementation in the Libraries component in OpenJDK used an incorrect key length This could, in certain cases, lead to generation of keys that were weaker than expected ...

References

NVD-CWE-noinfohttp://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlhttp://www.securitytracker.com/id/1034715http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.htmlhttp://rhn.redhat.com/errata/RHSA-2016-0055.htmlhttp://rhn.redhat.com/errata/RHSA-2016-0050.htmlhttp://rhn.redhat.com/errata/RHSA-2016-0049.htmlhttps://kc.mcafee.com/corporate/index?page=content&id=SB10148http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00038.htmlhttps://security.gentoo.org/glsa/201610-08https://nvd.nist.govhttps://alas.aws.amazon.com/ALAS-2016-647.htmlhttps://access.redhat.com/security/cve/cve-2016-0475
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook