HP-UX: CVE-2010-4471: Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | February 17, 2011 | August 11, 2017 | September 12, 2017 |
Description
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to 2D. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the exposure of system properties via vectors related to Font.createFont and exception text.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities
References
Solution
hpux-update-jdk15-jdk15-comRelated Vulnerabilities
- SUSE Linux Security Vulnerability: CVE-2010-4471
- RHSA-2011:0282: java-1.6.0-sun security update
- Apple Java security update for CVE-2010-4471
- SUSE Linux Security Advisory: SUSE-SR:2011:008
- USN-1079-1: OpenJDK 6 vulnerabilities
- RHSA-2011:0364: java-1.5.0-ibm security update
- RHSA-2011:0880: Red Hat Network Satellite server IBM Java Runtime security update
- Gentoo Linux: CVE-2010-4471: IcedTea JDK: Multiple vulnerabilities
- USN-1079-2: OpenJDK 6 vulnerabilities
- VMSA-2011-0013: vCenter Server and ESX, Oracle (Sun) JRE update 1.6.0_24 (CVE-2010-4471)
- USN-1079-3: OpenJDK 6 vulnerabilities
- SUSE Linux Security Advisory: SUSE-SA:2011:010
- RHSA-2011:0357: java-1.6.0-ibm security update
- Java CPU February 2011 Java Runtime Environment 2D vulnerability (CVE-2010-4471)