Details of VAR-201110-0395

ID

VAR-201110-0395

CVE

CVE-2011-3548

TITLE

Oracle ‘ Java Runtime Environment ’ Component security vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-201110-490

DESCRIPTION

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT. Oracle Java SE is prone to a remote vulnerability in Java Runtime Environment. The vulnerability can be exploited over multiple protocols. This issue affects the 'AWT' sub-component. This vulnerability affects the following supported versions: JDK and JRE 7, 6 Update 27, 5.0 Update 31, 1.4.2_33. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Critical: java-1.5.0-ibm security update Advisory ID: RHSA-2011:1478-01 Product: Red Hat Enterprise Linux Extras Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-1478.html Issue date: 2011-11-24 CVE Names: CVE-2011-3545 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3552 CVE-2011-3554 CVE-2011-3556 ===================================================================== 1. Summary: Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Desktop version 4 Extras - i386, x86_64 Red Hat Enterprise Linux AS version 4 Extras - i386, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux ES version 4 Extras - i386, x86_64 Red Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, ppc, s390x, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux WS version 4 Extras - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Detailed vulnerability descriptions are linked from the IBM "Security alerts" page, listed in the References section. (CVE-2011-3545, CVE-2011-3547, CVE-2011-3548, CVE-2011-3549, CVE-2011-3552, CVE-2011-3554, CVE-2011-3556) All users of java-1.5.0-ibm are advised to upgrade to these updated packages, containing the IBM 1.5.0 SR13 Java release. All running instances of IBM Java must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 745387 - CVE-2011-3547 OpenJDK: InputStream skip() information leak (Networking/IO, 7000600) 745397 - CVE-2011-3552 OpenJDK: excessive default UDP socket limit under SecurityManager (Networking, 7032417) 745447 - CVE-2011-3554 OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857) 745459 - CVE-2011-3556 OpenJDK: RMI DGC server remote code execution (RMI, 7077466) 745473 - CVE-2011-3548 OpenJDK: mutable static AWTKeyStroke.ctor (AWT, 7019773) 747191 - CVE-2011-3545 Oracle/IBM JDK: unspecified vulnerability fixed in 6u29 (Sound) 747198 - CVE-2011-3549 Oracle/IBM JDK: unspecified vulnerability fixed in 6u29 (Swing) 6. Package List: Red Hat Enterprise Linux AS version 4 Extras: i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.i386.rpm ppc: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.ppc.rpm java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.ppc64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.ppc.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.ppc64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.ppc.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.ppc64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.ppc.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.ppc64.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el4.ppc.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el4.ppc.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.ppc.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.ppc64.rpm s390: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.s390.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.s390.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.s390.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el4.s390.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.s390.rpm s390x: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.s390x.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.s390x.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.s390x.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.s390x.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.x86_64.rpm Red Hat Desktop version 4 Extras: i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.i386.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.x86_64.rpm Red Hat Enterprise Linux ES version 4 Extras: i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.i386.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.x86_64.rpm Red Hat Enterprise Linux WS version 4 Extras: i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el4.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.i386.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el4.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el4.x86_64.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.i386.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.i386.rpm ppc: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.ppc64.rpm java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.ppc64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.ppc64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.ppc64.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.ppc.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.ppc64.rpm s390x: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.s390.rpm java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.s390x.rpm java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.s390x.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.s390.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.s390x.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.s390.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.s390x.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.s390.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.s390.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.s390x.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.x86_64.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.i386.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.x86_64.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.i686.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.x86_64.rpm Red Hat Enterprise Linux HPC Node Supplementary (v. 6): x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.i686.rpm ppc64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.ppc64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.ppc64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.ppc.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.ppc64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.ppc64.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.ppc.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el6.ppc.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.ppc64.rpm s390x: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.s390x.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.s390x.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.s390.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.s390x.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.s390.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.s390x.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.x86_64.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.i686.rpm x86_64: java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://www.redhat.com/security/data/cve/CVE-2011-3545.html https://www.redhat.com/security/data/cve/CVE-2011-3547.html https://www.redhat.com/security/data/cve/CVE-2011-3548.html https://www.redhat.com/security/data/cve/CVE-2011-3549.html https://www.redhat.com/security/data/cve/CVE-2011-3552.html https://www.redhat.com/security/data/cve/CVE-2011-3554.html https://www.redhat.com/security/data/cve/CVE-2011-3556.html https://access.redhat.com/security/updates/classification/#critical http://www.ibm.com/developerworks/java/jdk/alerts/ http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2011 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFOzmt6XlSAg2UNWIIRAi6QAKDBjSeCRF5ohy6oBxvlL2bKiIywSACeKzcH 3KDDc4HKBfG2KfDqGTHcd5E= =Nb9O -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . ---------------------------------------------------------------------- Ovum says ad hoc tools are out-dated. The best practice approach? Fast vulnerability intelligence, threat handling, and setup in one tool. Read the new report on the Secunia VIM: http://secunia.com/products/corporate/vim/ovum_2011_request/ ---------------------------------------------------------------------- TITLE: Hitachi Cosminexus Products Java Multiple Vulnerabilities SECUNIA ADVISORY ID: SA46694 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/46694/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=46694 RELEASE DATE: 2011-11-08 DISCUSS ADVISORY: http://secunia.com/advisories/46694/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/46694/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=46694 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: Hitachi has acknowledged multiple vulnerabilities in Hitachi Cosminexus products, which can be exploited by malicious users to disclose certain information and by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. The vulnerabilities are caused due to vulnerabilities in the bundled version of Cosminexus Developer's Kit for Java. For more information: SA46512 Please see the vendor's advisory for a list of affected products. SOLUTION: Update to a fixed version. Please see the vendor's advisory for details. ORIGINAL ADVISORY: http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-024/index.html OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ---------------------------------------------------------------------- . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201406-32 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: IcedTea JDK: Multiple vulnerabilities Date: June 29, 2014 Bugs: #312297, #330205, #340819, #346799, #352035, #353418, #354231, #355127, #370787, #387637, #404095, #421031, #429522, #433389, #438750, #442478, #457206, #458410, #461714, #466822, #477210, #489570, #508270 ID: 201406-32 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in the IcedTea JDK, the worst of which could lead to arbitrary code execution. Background ========== IcedTea is a distribution of the Java OpenJDK source code built with free build tools. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-java/icedtea-bin < 6.1.13.3 >= 6.1.13.3 Description =========== Multiple vulnerabilities have been discovered in the IcedTea JDK. Please review the CVE identifiers referenced below for details. Workaround ========== There is no known workaround at this time. Resolution ========== All IcedTea JDK users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=dev-java/icedtea-bin-6.1.13.3" References ========== [ 1 ] CVE-2009-3555 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3555 [ 2 ] CVE-2010-2548 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2548 [ 3 ] CVE-2010-2783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2783 [ 4 ] CVE-2010-3541 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3541 [ 5 ] CVE-2010-3548 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3548 [ 6 ] CVE-2010-3549 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3549 [ 7 ] CVE-2010-3551 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3551 [ 8 ] CVE-2010-3553 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3553 [ 9 ] CVE-2010-3554 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3554 [ 10 ] CVE-2010-3557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3557 [ 11 ] CVE-2010-3561 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3561 [ 12 ] CVE-2010-3562 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3562 [ 13 ] CVE-2010-3564 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3564 [ 14 ] CVE-2010-3565 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3565 [ 15 ] CVE-2010-3566 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3566 [ 16 ] CVE-2010-3567 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3567 [ 17 ] CVE-2010-3568 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3568 [ 18 ] CVE-2010-3569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3569 [ 19 ] CVE-2010-3573 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3573 [ 20 ] CVE-2010-3574 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3574 [ 21 ] CVE-2010-3860 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3860 [ 22 ] CVE-2010-4351 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4351 [ 23 ] CVE-2010-4448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4448 [ 24 ] CVE-2010-4450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4450 [ 25 ] CVE-2010-4465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4465 [ 26 ] CVE-2010-4467 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4467 [ 27 ] CVE-2010-4469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4469 [ 28 ] CVE-2010-4470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4470 [ 29 ] CVE-2010-4471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4471 [ 30 ] CVE-2010-4472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4472 [ 31 ] CVE-2010-4476 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4476 [ 32 ] CVE-2011-0025 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0025 [ 33 ] CVE-2011-0706 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0706 [ 34 ] CVE-2011-0815 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0815 [ 35 ] CVE-2011-0822 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0822 [ 36 ] CVE-2011-0862 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0862 [ 37 ] CVE-2011-0864 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0864 [ 38 ] CVE-2011-0865 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0865 [ 39 ] CVE-2011-0868 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0868 [ 40 ] CVE-2011-0869 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0869 [ 41 ] CVE-2011-0870 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0870 [ 42 ] CVE-2011-0871 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0871 [ 43 ] CVE-2011-0872 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0872 [ 44 ] CVE-2011-3389 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3389 [ 45 ] CVE-2011-3521 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3521 [ 46 ] CVE-2011-3544 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3544 [ 47 ] CVE-2011-3547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3547 [ 48 ] CVE-2011-3548 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3548 [ 49 ] CVE-2011-3551 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3551 [ 50 ] CVE-2011-3552 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3552 [ 51 ] CVE-2011-3553 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3553 [ 52 ] CVE-2011-3554 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3554 [ 53 ] CVE-2011-3556 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3556 [ 54 ] CVE-2011-3557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3557 [ 55 ] CVE-2011-3558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3558 [ 56 ] CVE-2011-3560 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3560 [ 57 ] CVE-2011-3563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563 [ 58 ] CVE-2011-3571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3571 [ 59 ] CVE-2011-5035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035 [ 60 ] CVE-2012-0497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497 [ 61 ] CVE-2012-0501 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501 [ 62 ] CVE-2012-0502 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502 [ 63 ] CVE-2012-0503 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503 [ 64 ] CVE-2012-0505 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505 [ 65 ] CVE-2012-0506 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506 [ 66 ] CVE-2012-0547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547 [ 67 ] CVE-2012-1711 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711 [ 68 ] CVE-2012-1713 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713 [ 69 ] CVE-2012-1716 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716 [ 70 ] CVE-2012-1717 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717 [ 71 ] CVE-2012-1718 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718 [ 72 ] CVE-2012-1719 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719 [ 73 ] CVE-2012-1723 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723 [ 74 ] CVE-2012-1724 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724 [ 75 ] CVE-2012-1725 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725 [ 76 ] CVE-2012-1726 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726 [ 77 ] CVE-2012-3216 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216 [ 78 ] CVE-2012-3422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3422 [ 79 ] CVE-2012-3423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3423 [ 80 ] CVE-2012-4416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416 [ 81 ] CVE-2012-4540 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4540 [ 82 ] CVE-2012-5068 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068 [ 83 ] CVE-2012-5069 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069 [ 84 ] CVE-2012-5070 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070 [ 85 ] CVE-2012-5071 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071 [ 86 ] CVE-2012-5072 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072 [ 87 ] CVE-2012-5073 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073 [ 88 ] CVE-2012-5074 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074 [ 89 ] CVE-2012-5075 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075 [ 90 ] CVE-2012-5076 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076 [ 91 ] CVE-2012-5077 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077 [ 92 ] CVE-2012-5081 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081 [ 93 ] CVE-2012-5084 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084 [ 94 ] CVE-2012-5085 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085 [ 95 ] CVE-2012-5086 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086 [ 96 ] CVE-2012-5087 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087 [ 97 ] CVE-2012-5089 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089 [ 98 ] CVE-2012-5979 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5979 [ 99 ] CVE-2013-0169 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169 [ 100 ] CVE-2013-0401 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401 [ 101 ] CVE-2013-0424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0424 [ 102 ] CVE-2013-0425 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0425 [ 103 ] CVE-2013-0426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0426 [ 104 ] CVE-2013-0427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0427 [ 105 ] CVE-2013-0428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0428 [ 106 ] CVE-2013-0429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0429 [ 107 ] CVE-2013-0431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0431 [ 108 ] CVE-2013-0432 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0432 [ 109 ] CVE-2013-0433 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0433 [ 110 ] CVE-2013-0434 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0434 [ 111 ] CVE-2013-0435 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0435 [ 112 ] CVE-2013-0440 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0440 [ 113 ] CVE-2013-0441 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0441 [ 114 ] CVE-2013-0442 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0442 [ 115 ] CVE-2013-0443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0443 [ 116 ] CVE-2013-0444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0444 [ 117 ] CVE-2013-0450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0450 [ 118 ] CVE-2013-0809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809 [ 119 ] CVE-2013-1475 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1475 [ 120 ] CVE-2013-1476 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1476 [ 121 ] CVE-2013-1478 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1478 [ 122 ] CVE-2013-1480 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1480 [ 123 ] CVE-2013-1484 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484 [ 124 ] CVE-2013-1485 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485 [ 125 ] CVE-2013-1486 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486 [ 126 ] CVE-2013-1488 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488 [ 127 ] CVE-2013-1493 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493 [ 128 ] CVE-2013-1500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500 [ 129 ] CVE-2013-1518 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518 [ 130 ] CVE-2013-1537 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537 [ 131 ] CVE-2013-1557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557 [ 132 ] CVE-2013-1569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569 [ 133 ] CVE-2013-1571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571 [ 134 ] CVE-2013-2383 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383 [ 135 ] CVE-2013-2384 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384 [ 136 ] CVE-2013-2407 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407 [ 137 ] CVE-2013-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412 [ 138 ] CVE-2013-2415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415 [ 139 ] CVE-2013-2417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417 [ 140 ] CVE-2013-2419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419 [ 141 ] CVE-2013-2420 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420 [ 142 ] CVE-2013-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421 [ 143 ] CVE-2013-2422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422 [ 144 ] CVE-2013-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423 [ 145 ] CVE-2013-2424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424 [ 146 ] CVE-2013-2426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426 [ 147 ] CVE-2013-2429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429 [ 148 ] CVE-2013-2430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430 [ 149 ] CVE-2013-2431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431 [ 150 ] CVE-2013-2436 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436 [ 151 ] CVE-2013-2443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443 [ 152 ] CVE-2013-2444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444 [ 153 ] CVE-2013-2445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445 [ 154 ] CVE-2013-2446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446 [ 155 ] CVE-2013-2447 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447 [ 156 ] CVE-2013-2448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448 [ 157 ] CVE-2013-2449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449 [ 158 ] CVE-2013-2450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450 [ 159 ] CVE-2013-2451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451 [ 160 ] CVE-2013-2452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452 [ 161 ] CVE-2013-2453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453 [ 162 ] CVE-2013-2454 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454 [ 163 ] CVE-2013-2455 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455 [ 164 ] CVE-2013-2456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456 [ 165 ] CVE-2013-2457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457 [ 166 ] CVE-2013-2458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458 [ 167 ] CVE-2013-2459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459 [ 168 ] CVE-2013-2460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460 [ 169 ] CVE-2013-2461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461 [ 170 ] CVE-2013-2463 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463 [ 171 ] CVE-2013-2465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465 [ 172 ] CVE-2013-2469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469 [ 173 ] CVE-2013-2470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470 [ 174 ] CVE-2013-2471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471 [ 175 ] CVE-2013-2472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472 [ 176 ] CVE-2013-2473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473 [ 177 ] CVE-2013-3829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829 [ 178 ] CVE-2013-4002 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4002 [ 179 ] CVE-2013-5772 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772 [ 180 ] CVE-2013-5774 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774 [ 181 ] CVE-2013-5778 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778 [ 182 ] CVE-2013-5780 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780 [ 183 ] CVE-2013-5782 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782 [ 184 ] CVE-2013-5783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783 [ 185 ] CVE-2013-5784 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784 [ 186 ] CVE-2013-5790 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790 [ 187 ] CVE-2013-5797 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797 [ 188 ] CVE-2013-5800 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800 [ 189 ] CVE-2013-5802 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802 [ 190 ] CVE-2013-5803 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803 [ 191 ] CVE-2013-5804 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804 [ 192 ] CVE-2013-5805 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805 [ 193 ] CVE-2013-5806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806 [ 194 ] CVE-2013-5809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809 [ 195 ] CVE-2013-5814 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814 [ 196 ] CVE-2013-5817 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817 [ 197 ] CVE-2013-5820 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820 [ 198 ] CVE-2013-5823 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823 [ 199 ] CVE-2013-5825 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825 [ 200 ] CVE-2013-5829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829 [ 201 ] CVE-2013-5830 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830 [ 202 ] CVE-2013-5840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840 [ 203 ] CVE-2013-5842 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842 [ 204 ] CVE-2013-5849 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849 [ 205 ] CVE-2013-5850 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850 [ 206 ] CVE-2013-5851 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851 [ 207 ] CVE-2013-6629 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6629 [ 208 ] CVE-2013-6954 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6954 [ 209 ] CVE-2014-0429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0429 [ 210 ] CVE-2014-0446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0446 [ 211 ] CVE-2014-0451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0451 [ 212 ] CVE-2014-0452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0452 [ 213 ] CVE-2014-0453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0453 [ 214 ] CVE-2014-0456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0456 [ 215 ] CVE-2014-0457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0457 [ 216 ] CVE-2014-0458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0458 [ 217 ] CVE-2014-0459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0459 [ 218 ] CVE-2014-0460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0460 [ 219 ] CVE-2014-0461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0461 [ 220 ] CVE-2014-1876 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1876 [ 221 ] CVE-2014-2397 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2397 [ 222 ] CVE-2014-2398 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2398 [ 223 ] CVE-2014-2403 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2403 [ 224 ] CVE-2014-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2412 [ 225 ] CVE-2014-2414 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2414 [ 226 ] CVE-2014-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2421 [ 227 ] CVE-2014-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2423 [ 228 ] CVE-2014-2427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2427 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201406-32.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . ========================================================================== Ubuntu Security Notice USN-1263-1 November 16, 2011 icedtea-web, openjdk-6, openjdk-6b18 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS Summary: Multiple OpenJDK 6 and IcedTea-Web vulnerabilities have been fixed. Software Description: - icedtea-web: A web browser plugin to execute Java applets - openjdk-6: Open Source Java implementation - openjdk-6b18: Open Source Java implementation Details: Deepak Bhole discovered a flaw in the Same Origin Policy (SOP) implementation in the IcedTea web browser plugin. This could allow a remote attacker to open connections to certain hosts that should not be permitted. (CVE-2011-3377) Juliano Rizzo and Thai Duong discovered that the block-wise AES encryption algorithm block-wise as used in TLS/SSL was vulnerable to a chosen-plaintext attack. This could allow a remote attacker to view confidential data. (CVE-2011-3389) It was discovered that a type confusion flaw existed in the in the Internet Inter-Orb Protocol (IIOP) deserialization code. A remote attacker could use this to cause an untrusted application or applet to execute arbitrary code by deserializing malicious input. (CVE-2011-3521) It was discovered that the Java scripting engine did not perform SecurityManager checks. This could allow a remote attacker to cause an untrusted application or applet to execute arbitrary code with the full privileges of the JVM. (CVE-2011-3544) It was discovered that the InputStream class used a global buffer to store input bytes skipped. An attacker could possibly use this to gain access to sensitive information. (CVE-2011-3547) It was discovered that a vulnerability existed in the AWTKeyStroke class. A remote attacker could cause an untrusted application or applet to execute arbitrary code. (CVE-2011-3548) It was discovered that an integer overflow vulnerability existed in the TransformHelper class in the Java2D implementation. A remote attacker could use this cause a denial of service via an application or applet crash or possibly execute arbitrary code. (CVE-2011-3551) It was discovered that the default number of available UDP sockets for applications running under SecurityManager restrictions was set too high. A remote attacker could use this with a malicious application or applet exhaust the number of available UDP sockets to cause a denial of service for other applets or applications running within the same JVM. (CVE-2011-3552) It was discovered that Java API for XML Web Services (JAX-WS) could incorrectly expose a stack trace. A remote attacker could potentially use this to gain access to sensitive information. (CVE-2011-3553) It was discovered that the unpacker for pack200 JAR files did not sufficiently check for errors. An attacker could cause a denial of service or possibly execute arbitrary code through a specially crafted pack200 JAR file. (CVE-2011-3554) It was discovered that the RMI registration implementation did not properly restrict privileges of remotely executed code. A remote attacker could use this to execute code with elevated privileges. (CVE-2011-3556, CVE-2011-3557) It was discovered that the HotSpot VM could be made to crash, allowing an attacker to cause a denial of service or possibly leak sensitive information. (CVE-2011-3558) It was discovered that the HttpsURLConnection class did not properly perform SecurityManager checks in certain situations. This could allow a remote attacker to bypass restrictions on HTTPS connections. (CVE-2011-3560) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: icedtea-6-jre-cacao 6b23~pre11-0ubuntu1.11.10 icedtea-6-jre-jamvm 6b23~pre11-0ubuntu1.11.10 icedtea-netx 1.1.3-1ubuntu1.1 icedtea-plugin 1.1.3-1ubuntu1.1 openjdk-6-jre 6b23~pre11-0ubuntu1.11.10 openjdk-6-jre-headless 6b23~pre11-0ubuntu1.11.10 openjdk-6-jre-lib 6b23~pre11-0ubuntu1.11.10 openjdk-6-jre-zero 6b23~pre11-0ubuntu1.11.10 Ubuntu 11.04: icedtea-6-jre-cacao 6b22-1.10.4-0ubuntu1~11.04.1 icedtea-6-jre-jamvm 6b22-1.10.4-0ubuntu1~11.04.1 icedtea-netx 1.1.1-0ubuntu1~11.04.2 icedtea-plugin 1.1.1-0ubuntu1~11.04.2 openjdk-6-jre 6b22-1.10.4-0ubuntu1~11.04.1 openjdk-6-jre-headless 6b22-1.10.4-0ubuntu1~11.04.1 openjdk-6-jre-lib 6b22-1.10.4-0ubuntu1~11.04.1 openjdk-6-jre-zero 6b22-1.10.4-0ubuntu1~11.04.1 Ubuntu 10.10: icedtea-6-jre-cacao 6b20-1.9.10-0ubuntu1~10.10.2 openjdk-6-demo 6b20-1.9.10-0ubuntu1~10.10.2 openjdk-6-jdk 6b20-1.9.10-0ubuntu1~10.10.2 openjdk-6-jre 6b20-1.9.10-0ubuntu1~10.10.2 openjdk-6-jre-headless 6b20-1.9.10-0ubuntu1~10.10.2 openjdk-6-jre-lib 6b20-1.9.10-0ubuntu1~10.10.2 openjdk-6-jre-zero 6b20-1.9.10-0ubuntu1~10.10.2 Ubuntu 10.04 LTS: icedtea-6-jre-cacao 6b20-1.9.10-0ubuntu1~10.04.2 icedtea6-plugin 6b20-1.9.10-0ubuntu1~10.04.2 openjdk-6-demo 6b20-1.9.10-0ubuntu1~10.04.2 openjdk-6-jre 6b20-1.9.10-0ubuntu1~10.04.2 openjdk-6-jre-headless 6b20-1.9.10-0ubuntu1~10.04.2 openjdk-6-jre-lib 6b20-1.9.10-0ubuntu1~10.04.2 openjdk-6-jre-zero 6b20-1.9.10-0ubuntu1~10.04.2 After a standard system update you need to restart any Java applications or applets to make all the necessary changes. 6) - x86_64 3. Release Date: 2012-04-02 Last Updated: 2012-04-02 ------------------------------------------------------------------------------ Potential Security Impact: Remote unauthorized access, disclosure of information, and other vulnerabilities Source: Hewlett-Packard Company, HP Software Security Response Team VULNERABILITY SUMMARY Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.11, B.11.23, B.11.31 running HP JDK and JRE 5.0.24 or earlier BACKGROUND CVSS 2.0 Base Metrics =========================================================== Reference Base Vector Base Score CVE-2011-3389 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2011-3521 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2011-3545 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2011-3547 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2011-3548 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2011-3549 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2011-3552 (AV:N/AC:H/Au:N/C:N/I:P/A:N) 2.6 CVE-2011-3554 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2011-3556 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2011-3557 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2011-3560 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 CVE-2011-3563 (AV:N/AC:L/Au:N/C:P/I:N/A:P) 6.4 CVE-2012-0498 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-0499 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-0501 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-0502 (AV:N/AC:L/Au:N/C:P/I:N/A:P) 6.4 CVE-2012-0503 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-0505 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-0506 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2012-0507 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002 RESOLUTION HP has provided the following Java version upgrades to resolve these vulnerabilities. The upgrades are available from the following location http://www.hp.com/go/java HP-UX B.11.11, B.11.23, B.11.31 JDK and JRE v5.0.25 or subsequent MANUAL ACTIONS: Yes - Update For Java v5.0.24 and earlier, update to Java v5.0.25 or subsequent PRODUCT SPECIFIC INFORMATION HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa The following text is for use by the HP-UX Software Assistant. AFFECTED VERSIONS HP-UX B.11.11 HP-UX B.11.23 HP-UX B.11.31 =========== Jdk15.JDK15 Jdk15.JDK15-COM Jdk15.JDK15-DEMO Jdk15.JDK15-IPF32 Jdk15.JDK15-IPF64 Jdk15.JDK15-COM Jdk15.JDK15-DEMO Jdk15.JDK15-PA20 Jdk15.JDK15-PA20W Jre15.JRE15 Jre15.JRE15-COM Jre15.JRE15-IPF32 Jre15.JRE15-IPF32-HS Jre15.JRE15-IPF64 Jre15.JRE15-IPF64-HS Jre15.JRE15-PA20 Jre15.JRE15-PA20-HS Jre15.JRE15-PA20W Jre15.JRE15-PA20W-HS action: install revision 1.5.0.25.00 or subsequent END AFFECTED VERSIONS HISTORY Version:1 (rev.1) 2 April 2012 Initial release Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy. Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com. Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c02964430 Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/ Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB. 3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX Copyright 2012 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-11-08-1 Java for Mac OS X 10.7 Update 1 and Java for Mac OS X 10.6 Update 6 Java for Mac OS X 10.7 Update 1 and Java for Mac OS X 10.6 Update 6 are now available and address the following: Java Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, Mac OS X v10.7.2, Mac OS X Server v10.7.2 Impact: Multiple vulnerabilities in Java 1.6.0_26 Description: Multiple vulnerabilities exist in Java 1.6.0_26, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. These issues are addressed by updating to Java version 1.6.0_29. Further information is available via the Java website at http://java.sun.com/javase/6/webnotes/ReleaseNotes.html CVE-ID CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3545 CVE-2011-3546 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560 CVE-2011-3561 Java for Mac OS X 10.7 Update 1 and Java for Mac OS X 10.6 Update 6 may be obtained from the Software Update pane in System Preferences, or Apple's Software Downloads web site: http://www.apple.com/support/downloads/ For Mac OS X v10.6 systems The download file is named: JavaForMacOSX10.6.dmg Its SHA-1 digest is: be0ac75b8bac967f1d39a94ebf9482a61fb7d70b For Mac OS X v10.7 systems The download file is named: JavaForMacOSX10.7.dmg Its SHA-1 digest is: 7768e6aeb5adaa638c74d4c04150517ed99fed20 Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) iQEcBAEBAgAGBQJOuZNKAAoJEGnF2JsdZQeece8H/1I98YQ1LF4iDD442zB+WjZP 2Vxd3euXYwySD6qDCYNLJ0hUKu90c/4nr5d5rRH3xYdBzAHuZG39m069lpN1UZIW t5ube+j9zjiejnXlPbAgq+vIAg22nu0EdxhOOZZeQOoEYqyoKhXNCt3fR+tzo3o4 mN/LWMO1NwrM0sGDPuUGs2TWdPZbC4QJJz4Z4S+FsTlujYh9MRd3dyxLBIg7BKCL wgnFdpFW8bPmVdiTj91pC0Gb3XtolQxexXGHsdI15KeFMbQ06nKV/AyvxMF8O5jS D089GEHE52NAQCZ0YJ6TJsisrGqTZZ77js55cPU259FogxEKKBuwfdFbn4qVeD8= =4KBF -----END PGP SIGNATURE-----

Trust: 1.98

sources: NVD: CVE-2011-3548 // BID: 50211 // VULMON: CVE-2011-3548 // PACKETSTORM: 107305 // PACKETSTORM: 106747 // PACKETSTORM: 127267 // PACKETSTORM: 107051 // PACKETSTORM: 110287 // PACKETSTORM: 111633 // PACKETSTORM: 108498 // PACKETSTORM: 106792

AFFECTED PRODUCTS

vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2	Trust: 1.9
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2	Trust: 1.9
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_24	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_22	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_19	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_20	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_31	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_23	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_17	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_16	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_18	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_21	Trust: 1.6
vendor:	sun	model:	jre	scope:	lte	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	lte	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_22	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_26	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_6	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_17	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_6	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_27	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_27	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_1	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_1	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_18	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_7	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_25	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_7	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_25	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_31	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_21	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_4	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_4	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_28	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_28	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_11	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_11	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_2	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_2	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_10	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_10	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_16	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_14	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_14	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_12	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_12	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_29	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_29	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_20	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_24	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_5	Trust: 1.0
vendor:	sun	model:	jre	scope:	lte	version:	1.4.2_33	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_5	Trust: 1.0
vendor:	sun	model:	jdk	scope:	lte	version:	1.4.2_33	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_26	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_8	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_8	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_32	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_32	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_15	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_15	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_30	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_30	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_3	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_3	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_9	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_9	Trust: 1.0
vendor:	sun	model:	jre	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_23	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_19	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_13	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_13	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.7.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.7.0	Trust: 1.0
vendor:	sun	model:	jre 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 32	scope:	ne	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 08	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 30	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 31	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 24	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 28	scope:	ne	version:	-	Trust: 0.9
vendor:	sun	model:	jre 10	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 15	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 30	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 01	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 18	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 16	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 22	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 05	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 10	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 14	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 21	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 08	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 32	scope:	ne	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 07	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 31	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 18	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 22	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 18	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 32	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 28	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 12	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 04	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 29	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 22	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 05	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 12	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 24	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 09	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 16	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 12	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 12	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 02	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 18	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 07	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.7	Trust: 0.9
vendor:	sun	model:	jre 03	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 01	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 15	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 07	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 31	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 06	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 22	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 07	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 03	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 26	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 29	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 28	scope:	ne	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 29	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 01	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 17	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	sdk 09	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 14	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 13	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 02	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 10	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 01	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 33	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 21	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 18	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 22	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 11	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 16	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 06	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 18	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk	scope:	eq	version:	1.7	Trust: 0.9
vendor:	sun	model:	sdk 04	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 16	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 22	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 29	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 31	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 15	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 33	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 02	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 13	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 03	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 32	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk .0 05	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 0 10	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0.0 11	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 09	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 11-b03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.4.2 28	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk .0 04	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 01-b06	scope:	eq	version:	1.6	Trust: 0.6
vendor:	sun	model:	jdk .0 03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 08	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 09	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 07	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.6.0 2	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.6.0 01	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.4.2 27	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 07-b03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 06	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 08	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.6.0 20	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	hitachi	model:	cosminexus server web edition	scope:	eq	version:	0	Trust: 0.3
vendor:	suse	model:	linux enterprise for sap applications sp1	scope:	eq	version:	11	Trust: 0.3
vendor:	ibm	model:	java se sr8 fp1	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux server	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	rational appscan standard	scope:	eq	version:	7.8	Trust: 0.3
vendor:	suse	model:	linux enterprise sdk sp1	scope:	eq	version:	11	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	eq	version:	3.27.0	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.1.1	Trust: 0.3
vendor:	panda	model:	antivirus update19	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	hitachi	model:	processing kit for xml	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.16.01	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.19.00	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	java se sr11 pf1	scope:	eq	version:	5.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux as extras	scope:	eq	version:	4	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.225	Trust: 0.3
vendor:	avaya	model:	voice portal sp1	scope:	eq	version:	4.1	Trust: 0.3
vendor:	ubuntu	model:	linux amd64	scope:	eq	version:	11.10	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	sun	model:	jdk 01	scope:	eq	version:	1.6	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7	Trust: 0.3
vendor:	hp	model:	nonstop server j06.08.02	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio web edition	scope:	eq	version:	-0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.15.02	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	meeting exchange sp1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	voice portal sp2	scope:	eq	version:	4.1	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.06	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	7.0	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	6	Trust: 0.3
vendor:	ubuntu	model:	linux amd64	scope:	eq	version:	10.04	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server standard	scope:	eq	version:	0	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	ne	version:	3.29.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.06.02	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	cms server	scope:	eq	version:	15.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	1.1	Trust: 0.3
vendor:	hp	model:	nonstop server j06.14	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	sdk 01	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	ubuntu	model:	linux i386	scope:	eq	version:	10.04	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server standard	scope:	eq	version:	0	Trust: 0.3
vendor:	debian	model:	linux sparc	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.3	Trust: 0.3
vendor:	panda	model:	antivirus update17	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	eq	version:	5.5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server express	scope:	eq	version:	09-70	Trust: 0.3
vendor:	avaya	model:	messaging storage server	scope:	eq	version:	5.2.8	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.09.03	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.26	scope:	-	version:	-	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.06	Trust: 0.3
vendor:	ibm	model:	java se sr10	scope:	eq	version:	5.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.04.02	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura system platform sp2	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ubuntu	model:	linux powerpc	scope:	eq	version:	10.10	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.2	Trust: 0.3
vendor:	hp	model:	nonstop server j06.13	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	java se sr13	scope:	ne	version:	5.0	Trust: 0.3
vendor:	avaya	model:	aura communication manager	scope:	eq	version:	5.1	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	avaya	model:	ip office application server	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ubuntu	model:	linux sparc	scope:	eq	version:	10.04	Trust: 0.3
vendor:	ibm	model:	java se sr12	scope:	eq	version:	5.0.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux extras	scope:	eq	version:	4	Trust: 0.3
vendor:	mandriva	model:	linux mandrake x86 64	scope:	eq	version:	2010.1	Trust: 0.3
vendor:	hp	model:	nonstop server j06.09.04	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	ucosminexus operator	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.2	Trust: 0.3
vendor:	avaya	model:	meeting exchange sp2	scope:	eq	version:	5.0	Trust: 0.3
vendor:	sun	model:	jre 27	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.0.0.52	Trust: 0.3
vendor:	ibm	model:	rational appscan standard	scope:	eq	version:	8.0.0.3	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.2	Trust: 0.3
vendor:	avaya	model:	aura application server sip core	scope:	eq	version:	53002.0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer standard	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.18.00	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server j06.15.01	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.22.00	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	eq	version:	8.0.0.1	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.014	Trust: 0.3
vendor:	hp	model:	nonstop server j06.12.00	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server enterprise	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	ir	scope:	eq	version:	4.0	Trust: 0.3
vendor:	vmware	model:	esx	scope:	eq	version:	3.5	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.05.01	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.011	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.02	Trust: 0.3
vendor:	hp	model:	nonstop server j06.08.00	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	cosminexus server standard edition	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.09.01	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational policy tester	scope:	eq	version:	8.5.0.1	Trust: 0.3
vendor:	avaya	model:	messaging storage server	scope:	eq	version:	5.2	Trust: 0.3
vendor:	sun	model:	jdk update14	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	panda	model:	antivirus update23	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.220	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	sun	model:	jdk update24	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.01	Trust: 0.3
vendor:	hp	model:	nonstop server j06.16	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational policy tester	scope:	eq	version:	8.5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus client for plug-in	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	java se sr6	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	nonstop server j6.0.14.01	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	eq	version:	5.5.2	Trust: 0.3
vendor:	xerox	model:	freeflow print server 73.c0.41	scope:	-	version:	-	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.011	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.2.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	eq	version:	8.0.1.1	Trust: 0.3
vendor:	avaya	model:	meeting exchange sp1	scope:	eq	version:	5.0	Trust: 0.3
vendor:	ibm	model:	websphere multichannel bank transformation toolkit	scope:	eq	version:	8.1	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.3	Trust: 0.3
vendor:	panda	model:	antivirus update14	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer	scope:	eq	version:	010	Trust: 0.3
vendor:	redhat	model:	enterprise linux supplementary server	scope:	eq	version:	5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service architect	scope:	eq	version:	0	Trust: 0.3
vendor:	debian	model:	linux ia-64	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	voice portal sp1	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 11	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer light	scope:	eq	version:	0	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service platform messaging	scope:	eq	version:	-0	Trust: 0.3
vendor:	avaya	model:	voice portal sp2	scope:	eq	version:	5.0	Trust: 0.3
vendor:	panda	model:	antivirus update22	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	panda	model:	antivirus update24	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	ibm	model:	rational appscan standard	scope:	eq	version:	8.0.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.07.02	scope:	-	version:	-	Trust: 0.3
vendor:	mandriva	model:	linux mandrake x86 64	scope:	eq	version:	2011	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation	scope:	eq	version:	6	Trust: 0.3
vendor:	ubuntu	model:	linux i386	scope:	eq	version:	10.10	Trust: 0.3
vendor:	hp	model:	nonstop server j06.09.00	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0.0 04	scope:	-	version:	-	Trust: 0.3
vendor:	vmware	model:	vcenter	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	meeting exchange sp2	scope:	eq	version:	5.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop client	scope:	eq	version:	5	Trust: 0.3
vendor:	hp	model:	nonstop server j06.10.02	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	hp	model:	nonstop server j06.06.00	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.012	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.2	Trust: 0.3
vendor:	hp	model:	nonstop server h06.24.01	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	iq	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0.0 06	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	cms server	scope:	eq	version:	16.0	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.223	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.219	Trust: 0.3
vendor:	hp	model:	nonstop server h06.25	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	messaging storage server sp2	scope:	eq	version:	5.2	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.012	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.04	Trust: 0.3
vendor:	ibm	model:	websphere multichannel bank transformation toolkit	scope:	eq	version:	8.1.0.2	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server light	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.15.00	scope:	-	version:	-	Trust: 0.3
vendor:	xerox	model:	freeflow print server 73.b3.61	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	eq	version:	5.5.3	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.0	Trust: 0.3
vendor:	suse	model:	linux enterprise software development kit sp1 for sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	panda	model:	antivirus update16	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	avaya	model:	voice portal sp1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	0	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.04	Trust: 0.3
vendor:	panda	model:	antivirus update18	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	debian	model:	linux amd64	scope:	eq	version:	6.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux for sap server	scope:	eq	version:	5	Trust: 0.3
vendor:	vmware	model:	virtualcenter update 6b	scope:	ne	version:	2.5	Trust: 0.3
vendor:	ibm	model:	java se sr12-fp5	scope:	eq	version:	5.0	Trust: 0.3
vendor:	openjdk	model:	openjdk	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	security appscan standard	scope:	ne	version:	8.6	Trust: 0.3
vendor:	avaya	model:	meeting exchange sp1	scope:	eq	version:	5.2	Trust: 0.3
vendor:	ubuntu	model:	linux arm	scope:	eq	version:	10.04	Trust: 0.3
vendor:	ubuntu	model:	linux powerpc	scope:	eq	version:	11.04	Trust: 0.3
vendor:	sun	model:	jre 1.5.0 09	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	enterprise linux ws extras	scope:	eq	version:	4	Trust: 0.3
vendor:	ibm	model:	java se sr9	scope:	eq	version:	6.0.0	Trust: 0.3
vendor:	debian	model:	linux mips	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.11	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.5	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6	Trust: 0.3
vendor:	redhat	model:	enterprise linux es extras	scope:	eq	version:	4	Trust: 0.3
vendor:	sun	model:	jre beta	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.07.00	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	message networking sp1	scope:	eq	version:	5.2	Trust: 0.3
vendor:	suse	model:	linux enterprise server for vmware sp1	scope:	eq	version:	11	Trust: 0.3
vendor:	openjdk	model:	openjdk	scope:	eq	version:	1.6	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.010	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.013	Trust: 0.3
vendor:	sun	model:	jdk	scope:	eq	version:	1.5	Trust: 0.3
vendor:	ibm	model:	rational appscan standard	scope:	eq	version:	8.5.0.1	Trust: 0.3
vendor:	hp	model:	nonstop server j06.08.04	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server j06.08.01	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	ip office application server	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.0	Trust: 0.3
vendor:	avaya	model:	aura system manager sp2	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	messaging storage server sp3	scope:	eq	version:	5.2	Trust: 0.3
vendor:	vmware	model:	esx	scope:	eq	version:	4.0	Trust: 0.3
vendor:	mandrakesoft	model:	enterprise server x86 64	scope:	eq	version:	5	Trust: 0.3
vendor:	avaya	model:	aura communication manager	scope:	eq	version:	5.2	Trust: 0.3
vendor:	sun	model:	jdk 07	scope:	eq	version:	1.5	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.3	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.1	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.015	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.010	Trust: 0.3
vendor:	hp	model:	nonstop server h06.15.01	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.24	scope:	-	version:	-	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.013	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.018	Trust: 0.3
vendor:	hitachi	model:	cosminexus primary server base	scope:	eq	version:	0	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.019	Trust: 0.3
vendor:	panda	model:	antivirus update20	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	mandriva	model:	linux mandrake	scope:	eq	version:	2010.1	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.3	Trust: 0.3
vendor:	ibm	model:	java se sr10	scope:	ne	version:	6	Trust: 0.3
vendor:	hp	model:	nonstop server h06.16.00	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer professional for plug-in	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.18.02	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.20.03	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.2	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	1.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node optional	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	java se sr11	scope:	eq	version:	5.0	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.23	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.6	Trust: 0.3
vendor:	redhat	model:	enterprise linux server supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.015	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	5	Trust: 0.3
vendor:	hp	model:	nonstop server j06.13.01	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk update13	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.23	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	iq	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.014	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.3	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.019	Trust: 0.3
vendor:	mandrakesoft	model:	enterprise server	scope:	eq	version:	5	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 11-b03	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.19.02	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.1	Trust: 0.3
vendor:	ibm	model:	java se sr7	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	java se sr13-fp10	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.5	Trust: 0.3
vendor:	vmware	model:	esx	scope:	eq	version:	4.1	Trust: 0.3
vendor:	panda	model:	antivirus update21	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	sun	model:	jdk update16	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	sun	model:	jdk update19	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	ne	version:	6.2.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	hp	model:	nonstop server h06.22.01	scope:	-	version:	-	Trust: 0.3
vendor:	ubuntu	model:	linux amd64	scope:	eq	version:	11.04	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation optional	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.1	Trust: 0.3
vendor:	ubuntu	model:	linux amd64	scope:	eq	version:	10.10	Trust: 0.3
vendor:	ubuntu	model:	linux i386	scope:	eq	version:	11.04	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.020	Trust: 0.3
vendor:	redhat	model:	enterprise linux as for sap	scope:	eq	version:	4	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio standard edition	scope:	eq	version:	-0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.19.03	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk update23	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp1	scope:	eq	version:	11	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.3	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.03	Trust: 0.3
vendor:	ubuntu	model:	linux arm	scope:	eq	version:	10.10	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	6.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.6	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.7	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.05	Trust: 0.3
vendor:	avaya	model:	cms server	scope:	eq	version:	16.1	Trust: 0.3
vendor:	sun	model:	jre 28	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.020	Trust: 0.3
vendor:	ibm	model:	websphere multichannel bank transformation toolkit	scope:	eq	version:	8.0	Trust: 0.3
vendor:	avaya	model:	interactive response	scope:	eq	version:	4.0	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.2.1	Trust: 0.3
vendor:	hp	model:	nonstop server j06.11.01	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	java se sr9-fp2	scope:	eq	version:	6.0.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.15	scope:	-	version:	-	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.03	Trust: 0.3
vendor:	mandriva	model:	linux mandrake	scope:	eq	version:	2011	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	2008	Trust: 0.3
vendor:	avaya	model:	messaging application server	scope:	eq	version:	5.2	Trust: 0.3
vendor:	vmware	model:	update manager update	scope:	ne	version:	5.01	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer professional	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.0	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.226	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer standard	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.21.02	scope:	-	version:	-	Trust: 0.3
vendor:	vmware	model:	virtualcenter	scope:	eq	version:	2.5	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	eq	version:	8.0.1	Trust: 0.3
vendor:	panda	model:	antivirus update25	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.8	Trust: 0.3
vendor:	hp	model:	nonstop server h06.20.00	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.4	Trust: 0.3
vendor:	vmware	model:	vcenter	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sun	model:	jre 10-b03	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	avaya	model:	aura system manager sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.31	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura communication manager	scope:	eq	version:	4.0	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server enterprise )	scope:	eq	version:	09-80	Trust: 0.3
vendor:	hitachi	model:	cosminexus client	scope:	eq	version:	0	Trust: 0.3
vendor:	debian	model:	linux s/390	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	eq	version:	8.0.0	Trust: 0.3
vendor:	avaya	model:	messaging storage server sp1	scope:	eq	version:	5.2	Trust: 0.3
vendor:	hp	model:	nonstop server j06.05.02	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jre 07	scope:	eq	version:	1.5	Trust: 0.3
vendor:	hp	model:	nonstop server j06.07.01	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	cms server aux	scope:	eq	version:	15.0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.21.01	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.19.01	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk 0 09	scope:	eq	version:	1.5	Trust: 0.3
vendor:	suse	model:	linux enterprise java sp1	scope:	eq	version:	11	Trust: 0.3
vendor:	sun	model:	jre 1.5.0 08	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	hirdb for java	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.1.2	Trust: 0.3
vendor:	ubuntu	model:	linux i386	scope:	eq	version:	11.10	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server smart edition	scope:	eq	version:	0	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.227	Trust: 0.3
vendor:	avaya	model:	aura session manager sp2	scope:	eq	version:	6.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.7	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.224	Trust: 0.3
vendor:	hp	model:	nonstop server j06.11.00	scope:	-	version:	-	Trust: 0.3
vendor:	vmware	model:	vcenter	scope:	eq	version:	4.1	Trust: 0.3
vendor:	hp	model:	nonstop server h06.26.01	scope:	-	version:	-	Trust: 0.3
vendor:	debian	model:	linux arm	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer professional	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	5.0	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp1 for sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.221	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.021	Trust: 0.3
vendor:	ibm	model:	rational policy tester	scope:	eq	version:	8.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux server optional	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	desktop extras	scope:	eq	version:	4	Trust: 0.3
vendor:	hp	model:	nonstop server j06.04.01	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	java se sr5	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	hp	model:	nonstop server j06.04.00	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.2	Trust: 0.3
vendor:	hp	model:	nonstop server j06.06.01	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	ucosminexus primary server base	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.016	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.8	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.4	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	eq	version:	5.0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.21.00	scope:	-	version:	-	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.021	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	7	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.07	Trust: 0.3
vendor:	hp	model:	nonstop server j06.06.03	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.17.01	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 07-b03	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.1	Trust: 0.3
vendor:	sun	model:	jdk update25	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	sun	model:	jdk update21	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.016	Trust: 0.3
vendor:	suse	model:	linux enterprise software development kit sp1	scope:	eq	version:	11	Trust: 0.3
vendor:	ibm	model:	java se sr13-fp11	scope:	ne	version:	1.4.2	Trust: 0.3
vendor:	hp	model:	network node manager i	scope:	eq	version:	9.1	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.018	Trust: 0.3
vendor:	vmware	model:	update manager	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	4.0	Trust: 0.3
vendor:	avaya	model:	aura system platform sp3	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service platform	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	4.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.2	Trust: 0.3
vendor:	sun	model:	jdk 1.6.0 01-b06	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer light	scope:	eq	version:	0	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.07	Trust: 0.3
vendor:	redhat	model:	enterprise linux sap	scope:	eq	version:	6	Trust: 0.3
vendor:	hp	model:	nonstop server h06.20.01	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	ucosminexus client	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	eq	version:	8.5.0.1	Trust: 0.3
vendor:	hp	model:	nonstop server j06.10.00	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	websphere multichannel bank transformation toolkit	scope:	eq	version:	8.0.1	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop optional	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.17.03	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk update	scope:	eq	version:	1.6.017	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary client	scope:	eq	version:	5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server standard-r	scope:	eq	version:	0	Trust: 0.3
vendor:	gentoo	model:	linux	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	ip office application server	scope:	eq	version:	7.0	Trust: 0.3
vendor:	ubuntu	model:	linux powerpc	scope:	eq	version:	10.04	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node	scope:	eq	version:	6	Trust: 0.3
vendor:	hp	model:	nonstop server h06.16.02	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk update17	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0.0 03	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.4	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	5.2	Trust: 0.3
vendor:	panda	model:	antivirus update15	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	eq	version:	8.6	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.2	Trust: 0.3
vendor:	avaya	model:	cms server	scope:	eq	version:	16.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux server	scope:	eq	version:	5	Trust: 0.3
vendor:	hp	model:	nonstop server j06.05.00	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7	Trust: 0.3
vendor:	suse	model:	linux enterprise java sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	4.1	Trust: 0.3
vendor:	sun	model:	sdk 02	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	debian	model:	linux ia-32	scope:	eq	version:	6.0	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.017	Trust: 0.3
vendor:	ubuntu	model:	linux arm	scope:	eq	version:	11.04	Trust: 0.3
vendor:	sun	model:	jdk update22	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	panda	model:	antivirus	scope:	eq	version:	1.4.222	Trust: 0.3
vendor:	ibm	model:	java se sr1	scope:	ne	version:	7	Trust: 0.3
vendor:	hp	model:	nonstop server h06.20.02	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk update15	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer no version	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	iq	scope:	eq	version:	5	Trust: 0.3
vendor:	sun	model:	jdk 0 03	scope:	eq	version:	1.5	Trust: 0.3
vendor:	sun	model:	jdk update18	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.1	Trust: 0.3
vendor:	sun	model:	jdk update20	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.09.02	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	suse	model:	linux enterprise desktop sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	debian	model:	linux powerpc	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.17.02	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server j06.08.03	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	iq	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	aura conferencing standard	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	nonstop server j06.10.01	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	messaging storage server	scope:	eq	version:	5.2.2	Trust: 0.3
vendor:	hp	model:	nonstop server h06.25.01	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server h06.18.01	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server no version	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	nonstop server h06.27	scope:	-	version:	-	Trust: 0.3
vendor:	panda	model:	antivirus update	scope:	eq	version:	1.6.05	Trust: 0.3
vendor:	hp	model:	nonstop server h06.17.00	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop server j06.14.02	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.2	Trust: 0.3

sources: BID: 50211 // CNNVD: CNNVD-201110-490 // NVD: CVE-2011-3548

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2011-3548
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-201110-490
value:	CRITICAL
Trust: 0.6
VULMON:	CVE-2011-3548
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2011-3548
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.1

sources: VULMON: CVE-2011-3548 // CNNVD: CNNVD-201110-490 // NVD: CVE-2011-3548

PROBLEMTYPE DATA

problemtype:

NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2011-3548

THREAT TYPE

remote

Trust: 0.8

sources: PACKETSTORM: 107051 // PACKETSTORM: 111633 // CNNVD: CNNVD-201110-490

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201110-490

PATCH

title:	Red Hat: Critical: java-1.4.2-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20120006 - Security Advisory	Trust: 0.1
title:	Red Hat: Moderate: java-1.4.2-ibm-sap security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20120343 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.5.0-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20111478 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.6.0-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20120034 - Security Advisory	Trust: 0.1
title:	Ubuntu Security Notice: openjdk-6, openjdk-6b18 regression	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-1263-2	Trust: 0.1
title:	Ubuntu Security Notice: icedtea-web, openjdk-6, openjdk-6b18 vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-1263-1	Trust: 0.1
title:	Debian Security Advisories: DSA-2356-1 openjdk-6 -- several vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories&qid=a48d7ee302b835c97c950b74a371fcfe	Trust: 0.1
title:	Amazon Linux AMI: ALAS-2011-010	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2011-010	Trust: 0.1
title:	Red Hat: Low: Red Hat Network Satellite server IBM Java Runtime security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20131455 - Security Advisory	Trust: 0.1

sources: VULMON: CVE-2011-3548

EXTERNAL IDS

db:	NVD	id:	CVE-2011-3548	Trust: 2.7
db:	BID	id:	50211	Trust: 2.0
db:	OSVDB	id:	76495	Trust: 1.1
db:	SECUNIA	id:	48308	Trust: 1.1
db:	SECUNIA	id:	49198	Trust: 1.1
db:	SECUNIA	id:	48692	Trust: 1.1
db:	SECTRACK	id:	1026215	Trust: 1.0
db:	NSFOCUS	id:	17989	Trust: 0.6
db:	NSFOCUS	id:	20539	Trust: 0.6
db:	NSFOCUS	id:	19032	Trust: 0.6
db:	NSFOCUS	id:	19819	Trust: 0.6
db:	NSFOCUS	id:	19096	Trust: 0.6
db:	CNNVD	id:	CNNVD-201110-490	Trust: 0.6
db:	HITACHI	id:	HS11-024	Trust: 0.4
db:	ICS CERT	id:	ICSA-17-213-02	Trust: 0.3
db:	SECUNIA	id:	46694	Trust: 0.2
db:	VULMON	id:	CVE-2011-3548	Trust: 0.1
db:	PACKETSTORM	id:	107305	Trust: 0.1
db:	PACKETSTORM	id:	106747	Trust: 0.1
db:	PACKETSTORM	id:	127267	Trust: 0.1
db:	PACKETSTORM	id:	107051	Trust: 0.1
db:	PACKETSTORM	id:	110287	Trust: 0.1
db:	PACKETSTORM	id:	111633	Trust: 0.1
db:	PACKETSTORM	id:	108498	Trust: 0.1
db:	PACKETSTORM	id:	106792	Trust: 0.1

sources: VULMON: CVE-2011-3548 // BID: 50211 // PACKETSTORM: 107305 // PACKETSTORM: 106747 // PACKETSTORM: 127267 // PACKETSTORM: 107051 // PACKETSTORM: 110287 // PACKETSTORM: 111633 // PACKETSTORM: 108498 // PACKETSTORM: 106792 // CNNVD: CNNVD-201110-490 // NVD: CVE-2011-3548

REFERENCES

url:	http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html	Trust: 2.1
url:	http://www.ibm.com/developerworks/java/jdk/alerts/	Trust: 2.0
url:	http://www.securityfocus.com/bid/50211	Trust: 1.8
url:	http://www.ubuntu.com/usn/usn-1263-1	Trust: 1.2
url:	http://security.gentoo.org/glsa/glsa-201406-32.xml	Trust: 1.2
url:	http://www.redhat.com/support/errata/rhsa-2011-1384.html	Trust: 1.1
url:	http://www.redhat.com/support/errata/rhsa-2011-1478.html	Trust: 1.1
url:	http://www.redhat.com/support/errata/rhsa-2012-0006.html	Trust: 1.1
url:	http://secunia.com/advisories/49198	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html	Trust: 1.1
url:	http://www.securitytracker.com/id?1026215	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=132750579901589&w=2	Trust: 1.1
url:	http://osvdb.org/76495	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html	Trust: 1.1
url:	http://secunia.com/advisories/48692	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2013-1455.html	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=134254957702612&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=133728004526190&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=133365109612558&w=2	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/70845	Trust: 1.1
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a14492	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=134254866602253&w=2	Trust: 1.1
url:	http://secunia.com/advisories/48308	Trust: 1.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3552	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3556	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3548	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3547	Trust: 0.6
url:	http://www.nsfocus.net/vulndb/17989	Trust: 0.6
url:	http://www.nsfocus.net/vulndb/19096	Trust: 0.6
url:	http://www.nsfocus.net/vulndb/19032	Trust: 0.6
url:	http://www.nsfocus.net/vulndb/19819	Trust: 0.6
url:	http://www.nsfocus.net/vulndb/20539	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3549	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3545	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3560	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3389	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3557	Trust: 0.5
url:	http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs11-024/index.html	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3554	Trust: 0.4
url:	https://ics-cert.us-cert.gov/advisories/icsa-17-213-02	Trust: 0.3
url:	http://support.avaya.com/css/p8/documents/100151219	Trust: 0.3
url:	http://support.avaya.com/css/p8/documents/100150852	Trust: 0.3
url:	http://support.avaya.com/css/p8/documents/100154049	Trust: 0.3
url:	http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03358587	Trust: 0.3
url:	http://h20565.www2.hp.com/portal/site/hpsc/template.page/public/kb/docdisplay/?docid=emr_na-c03909126-1&ac.admitted=1378134276525.876444892.492883150	Trust: 0.3
url:	http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c03266681&ac.admitted=1333452464452.876444892.492883150	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21643845	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21641966	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21609004	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21609022	Trust: 0.3
url:	http://lists.vmware.com/pipermail/security-announce/2012/000162.html	Trust: 0.3
url:	http://www.vmware.com/security/advisories/vmsa-2012-0005.html	Trust: 0.3
url:	http://www.xerox.com/download/security/security-bulletin/1284333-14afb-4baadb5bccb00/cert_xrx12-002_v1.1.pdf	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2011-3547.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2011-3548.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2011-3556.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2011-3549.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2011-3545.html	Trust: 0.3
url:	https://access.redhat.com/security/team/contact/	Trust: 0.3
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2011-3552.html	Trust: 0.3
url:	https://access.redhat.com/security/team/key/#package	Trust: 0.3
url:	http://bugzilla.redhat.com/):	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3521	Trust: 0.3
url:	https://access.redhat.com/kb/docs/doc-11259	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#critical	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3553	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3558	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3544	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3551	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2011-3560.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2011-3557.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2011-3389.html	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2012:0006	Trust: 0.1
url:	https://usn.ubuntu.com/1263-2/	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3554.html	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2011-1478.html	Trust: 0.1
url:	http://secunia.com/advisories/46694/#comments	Trust: 0.1
url:	http://secunia.com/vulnerability_intelligence/	Trust: 0.1
url:	http://secunia.com/advisories/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/personal/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/products/corporate/vim/ovum_2011_request/	Trust: 0.1
url:	https://ca.secunia.com/?page=viewadvisory&vuln_id=46694	Trust: 0.1
url:	http://secunia.com/advisories/46694/	Trust: 0.1
url:	http://secunia.com/advisories/about_secunia_advisories/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-4470	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3574	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3423	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3548	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3565	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2469	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0864	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3553	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2443	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1717	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2412	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1716	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0505	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1518	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2419	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3557	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2414	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4450	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3829	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5829	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5804	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1485	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5806	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5087	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2422	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0865	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4471	Trust: 0.1
url:	http://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5075	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3557	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3562	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2426	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3567	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-4002	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5084	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1711	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1478	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2461	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5820	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5979	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6954	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2470	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4476	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0547	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4540	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0429	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0441	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2451	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2459	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5823	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2421	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0870	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3554	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0862	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2460	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1713	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0706	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0434	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5784	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3568	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5830	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3561	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5800	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4467	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3567	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2456	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5803	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4465	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4472	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5086	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3556	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0425	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2383	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2423	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2447	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2452	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2445	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2450	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5778	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5780	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5073	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3568	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3548	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1493	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2446	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5069	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-5035	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3541	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3566	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3549	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1500	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3562	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3571	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-3555	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0426	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0457	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5850	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-2783	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3573	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3552	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0451	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0459	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2423	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1876	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2384	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4469	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0431	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1557	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0458	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2548	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2453	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4448	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3521	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0401	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5085	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2407	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2421	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3564	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2429	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-4465	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3569	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2403	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5068	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-2548	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0871	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5071	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2398	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0432	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0815	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0444	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1475	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0497	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5774	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5782	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3554	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-4469	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1725	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5790	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5805	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3564	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5802	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5849	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1719	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3569	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3573	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0461	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0442	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2448	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2458	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0427	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3548	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2427	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5825	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0506	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1484	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2430	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3541	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2415	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3549	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3565	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0872	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3216	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0429	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1718	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5772	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3860	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3422	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0433	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5074	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3554	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3574	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2454	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2444	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5072	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4470	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2436	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4416	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0822	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1537	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3553	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2009-3555	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3551	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2449	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0503	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0025	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2457	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1476	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0169	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0424	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3563	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0809	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5077	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0435	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3544	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0456	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-4450	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1723	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1726	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0450	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1571	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-4467	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0460	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5081	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3547	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5840	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5851	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2465	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2431	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2473	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6629	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5783	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-4448	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2783	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2463	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3560	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2412	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5809	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1480	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4351	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2420	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0501	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0428	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0869	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2417	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2471	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3566	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3551	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2424	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5076	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5842	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2397	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0452	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3553	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1569	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1724	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3558	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5797	Trust: 0.1
url:	http://security.gentoo.org/	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5070	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1486	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2472	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0446	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0453	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3860	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1488	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0502	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3561	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0868	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0440	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0443	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3389	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5814	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5817	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-4351	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3551	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2455	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2010-3557	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5089	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6b18/6b18-1.8.10-0ubuntu1~10.10.2	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b20-1.9.10-0ubuntu1~10.04.2	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/icedtea-web/1.1.1-0ubuntu1~11.04.2	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b23~pre11-0ubuntu1.11.10	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6b18/6b18-1.8.10-0ubuntu1~11.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b22-1.10.4-0ubuntu1~11.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6b18/6b18-1.8.10-0ubuntu1~10.04.2	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3377	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b20-1.9.10-0ubuntu1~10.10.2	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/icedtea-web/1.1.3-1ubuntu1.1	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#moderate	Trust: 0.1
url:	https://access.redhat.com/knowledge/articles/11258	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2012-0343.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0507	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0503	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3563	Trust: 0.1
url:	http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/	Trust: 0.1
url:	http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins	Trust: 0.1
url:	http://www.hp.com/go/java	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0499	Trust: 0.1
url:	https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c02964430	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0501	Trust: 0.1
url:	https://www.hp.com/go/swa	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0498	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0502	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0505	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0506	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2012-0006.html	Trust: 0.1
url:	http://support.apple.com/kb/ht1222	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3546	Trust: 0.1
url:	http://www.apple.com/support/downloads/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3561	Trust: 0.1
url:	https://www.apple.com/support/security/pgp/	Trust: 0.1
url:	http://java.sun.com/javase/6/webnotes/releasenotes.html	Trust: 0.1

CREDITS

Oracle

Trust: 0.6

sources: CNNVD: CNNVD-201110-490

SOURCES

db:	VULMON	id:	CVE-2011-3548
db:	BID	id:	50211
db:	PACKETSTORM	id:	107305
db:	PACKETSTORM	id:	106747
db:	PACKETSTORM	id:	127267
db:	PACKETSTORM	id:	107051
db:	PACKETSTORM	id:	110287
db:	PACKETSTORM	id:	111633
db:	PACKETSTORM	id:	108498
db:	PACKETSTORM	id:	106792
db:	CNNVD	id:	CNNVD-201110-490
db:	NVD	id:	CVE-2011-3548

LAST UPDATE DATE

2024-11-21T20:03:31.977000+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2011-3548	date:	2018-01-06T00:00:00
db:	BID	id:	50211	date:	2017-08-02T18:09:00
db:	CNNVD	id:	CNNVD-201110-490	date:	2011-10-20T00:00:00
db:	NVD	id:	CVE-2011-3548	date:	2018-01-06T02:29:19.910

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2011-3548	date:	2011-10-19T00:00:00
db:	BID	id:	50211	date:	2011-10-18T00:00:00
db:	PACKETSTORM	id:	107305	date:	2011-11-24T19:22:00
db:	PACKETSTORM	id:	106747	date:	2011-11-08T04:55:18
db:	PACKETSTORM	id:	127267	date:	2014-06-30T23:39:28
db:	PACKETSTORM	id:	107051	date:	2011-11-17T02:34:27
db:	PACKETSTORM	id:	110287	date:	2012-02-29T16:04:30
db:	PACKETSTORM	id:	111633	date:	2012-04-06T02:42:03
db:	PACKETSTORM	id:	108498	date:	2012-01-09T22:38:38
db:	PACKETSTORM	id:	106792	date:	2011-11-09T18:31:22
db:	CNNVD	id:	CNNVD-201110-490	date:	1900-01-01T00:00:00
db:	NVD	id:	CVE-2011-3548	date:	2011-10-19T21:55:01.283