CVE-2012-5075

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 16-10-2012 02:00

Last modified: - 16-10-2012 02:00

Total changes: - 107

Description

CVE-2012-5075 OpenJDK: RMIConnectionImpl information disclosure (JMX, 7169888)

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:P/I:N/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

Low

Confidentiality

None

Integrity

Privileges required

Scope

User interaction

5.0

Base score

Exploitability score

Impact score

Verification logic

AND

product=java-1.6.0-openjdk-1 AND versionEndExcluding=1.6.0.0-1.28.1.10.10.el5_8

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=java-1.6.0-openjdk-1 AND versionEndExcluding=1.6.0.0-1.50.1.11.5.el6_3

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=6

AND

product=java-1.7.0-openjdk-1 AND versionEndExcluding=1.7.0.9-2.3.3.el6_3.1

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=6

AND

product=java-1.6.0-ibm-1 AND versionEndExcluding=1.6.0.14.0-1jpp.1.el5_9

vendor=Red Hat Enterprise Linux AND product=network_satellite AND version=5.4

AND

product=java-1.6.0-ibm-1 AND versionEndExcluding=1.6.0.14.0-1jpp.1.el5_9

vendor=Red Hat Enterprise Linux AND product=network_satellite AND version=5.5

AND

product=java-1.6.0-sun-1 AND versionEndExcluding=1.6.0.37-1jpp.1.el5_8

vendor=Red Hat Enterprise Linux AND product=rhel_extras AND version=5

AND

product=java-1.5.0-ibm-1 AND versionEndExcluding=1.5.0.15.0-1jpp.1.el5_8

vendor=Red Hat Enterprise Linux AND product=rhel_extras AND version=5

AND

product=java-1.6.0-ibm-1 AND versionEndExcluding=1.6.0.12.0-1jpp.1.el5_8

vendor=Red Hat Enterprise Linux AND product=rhel_extras AND version=5

AND

product=java-1.7.0-oracle-1 AND versionEndExcluding=1.7.0.9-1jpp.3.el6_3