Sign-up

ID

VAR-201112-0123


CVE

CVE-2011-5035


TITLE

Hash table implementations vulnerable to algorithmic complexity attacks

Trust: 0.8

sources: CERT/CC: VU#903934

DESCRIPTION

Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869. Some programming language implementations do not sufficiently randomize their hash functions or provide means to limit key collision attacks, which can be leveraged by an unauthenticated attacker to cause a denial-of-service (DoS) condition. Oracle Glassfish Calculates the hash value of the form parameter without restricting the assumption of hash collision. (CPU Resource consumption ) There is a vulnerability that becomes a condition.A third party can send a large amount of crafted parameters to disrupt service operation. (CPU Resource consumption ) There is a possibility of being put into a state. Oracle GlassFish Server is prone to a denial-of-service vulnerability. An attacker can exploit this issue by sending specially crafted forms in HTTP POST requests. Oracle GlassFish Server 3.1.1 and prior versions are vulnerable. Content-Disposition: inline ==========================================================================Ubuntu Security Notice USN-1373-1 February 24, 2012 openjdk-6 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS Summary: Multiple OpenJDK 6 vulnerabilities have been fixed. Software Description: - openjdk-6: Open Source Java implementation Details: It was discovered that the Java HttpServer class did not limit the number of headers read from a HTTP request. A remote attacker could cause a denial of service by sending special requests that trigger hash collisions predictably. (CVE-2011-5035) ATTENTION: this update changes previous Java HttpServer class behavior by limiting the number of request headers to 200. This may be increased by adjusting the sun.net.httpserver.maxReqHeaders property. It was discovered that the Java Sound component did not properly check buffer boundaries. A remote attacker could use this to cause a denial of service or view confidential data. (CVE-2011-3563) It was discovered that the Java2D implementation does not properly check graphics rendering objects before passing them to the native renderer. A remote attacker could use this to cause a denial of service or to bypass Java sandbox restrictions. (CVE-2012-0497) It was discovered that an off-by-one error exists in the Java ZIP file processing code. An attacker could us this to cause a denial of service through a maliciously crafted ZIP file. (CVE-2012-0501) It was discovered that the Java AWT KeyboardFocusManager did not properly enforce keyboard focus security policy. A remote attacker could use this with an untrusted application or applet to grab keyboard focus and possibly expose confidential data. (CVE-2012-0502) It was discovered that the Java TimeZone class did not properly enforce security policy around setting the default time zone. A remote attacker could use this with an untrusted application or applet to set a new default time zone and bypass Java sandbox restrictions. (CVE-2012-0503) It was discovered the Java ObjectStreamClass did not throw an accurately identifiable exception when a deserialization failure occurred. A remote attacker could use this with an untrusted application or applet to bypass Java sandbox restrictions. (CVE-2012-0505) It was discovered that the Java CORBA implementation did not properly protect repository identifiers on certain CORBA objects. A remote attacker could use this to corrupt object data. (CVE-2012-0506) It was discovered that the Java AtomicReferenceArray class implementation did not properly check if an array was of the expected Object[] type. A remote attacker could use this with a malicious application or applet to bypass Java sandbox restrictions. (CVE-2012-0507) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: icedtea-6-jre-cacao 6b23~pre11-0ubuntu1.11.10.2 icedtea-6-jre-jamvm 6b23~pre11-0ubuntu1.11.10.2 openjdk-6-jre 6b23~pre11-0ubuntu1.11.10.2 openjdk-6-jre-headless 6b23~pre11-0ubuntu1.11.10.2 openjdk-6-jre-lib 6b23~pre11-0ubuntu1.11.10.2 openjdk-6-jre-zero 6b23~pre11-0ubuntu1.11.10.2 Ubuntu 11.04: icedtea-6-jre-cacao 6b22-1.10.6-0ubuntu1 icedtea-6-jre-jamvm 6b22-1.10.6-0ubuntu1 openjdk-6-jre 6b22-1.10.6-0ubuntu1 openjdk-6-jre-headless 6b22-1.10.6-0ubuntu1 openjdk-6-jre-lib 6b22-1.10.6-0ubuntu1 openjdk-6-jre-zero 6b22-1.10.6-0ubuntu1 Ubuntu 10.10: icedtea-6-jre-cacao 6b20-1.9.13-0ubuntu1~10.10.1 openjdk-6-jre 6b20-1.9.13-0ubuntu1~10.10.1 openjdk-6-jre-headless 6b20-1.9.13-0ubuntu1~10.10.1 openjdk-6-jre-lib 6b20-1.9.13-0ubuntu1~10.10.1 openjdk-6-jre-zero 6b20-1.9.13-0ubuntu1~10.10.1 Ubuntu 10.04 LTS: icedtea-6-jre-cacao 6b20-1.9.13-0ubuntu1~10.04.1 openjdk-6-jre 6b20-1.9.13-0ubuntu1~10.04.1 openjdk-6-jre-headless 6b20-1.9.13-0ubuntu1~10.04.1 openjdk-6-jre-lib 6b20-1.9.13-0ubuntu1~10.04.1 openjdk-6-jre-zero 6b20-1.9.13-0ubuntu1~10.04.1 After a standard system update you need to restart any Java applications or applets to make all the necessary changes. Release Date: 2012-03-26 Last Updated: 2012-04-02 ------------------------------------------------------------------------------ Potential Security Impact: Remote unauthorized access, disclosure of information, and other vulnerabilities Source: Hewlett-Packard Company, HP Software Security Response Team VULNERABILITY SUMMARY Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, disclosure of information, and other vulnerabilities. SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.11, B.11.23, B.11.31 running HP JDK and JRE 6.0.13 or earlier BACKGROUND CVSS 2.0 Base Metrics =========================================================== Reference Base Vector Base Score CVE-2011-3563 (AV:N/AC:L/Au:N/C:P/I:N/A:P) 6.4 CVE-2011-5035 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-0497 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-0498 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-0499 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-0500 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-0501 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-0502 (AV:N/AC:L/Au:N/C:P/I:N/A:P) 6.4 CVE-2012-0503 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-0504 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3 CVE-2012-0505 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-0506 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2012-0507 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002 RESOLUTION HP has provided the following Java version upgrades to resolve these vulnerabilities. The upgrades are available from the following location http://www.hp.com/go/java HP-UX B.11.11, B.11.23, B.11.31 JDK and JRE v6.0.14 or subsequent MANUAL ACTIONS: Yes - Update For Java v6.0.13 and earlier, update to Java v6.0.14 or subsequent PRODUCT SPECIFIC INFORMATION HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa The following text is for use by the HP-UX Software Assistant. AFFECTED VERSIONS HP-UX B.11.11 HP-UX B.11.23 HP-UX B.11.31 =========== Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS Jre60.JRE60-PA20 Jre60.JRE60-PA20-HS Jre60.JRE60-PA20W Jre60.JRE60-PA20W-HS Jdk60.JDK60-COM Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jdk60.JDK60-PA20 Jdk60.JDK60-PA20W action: install revision 1.6.0.14.00 or subsequent END AFFECTED VERSIONS HISTORY Version:1 (rev.1) 27 March 2012 Initial release Version:2 (rev.2) 2 April 2012 corrected CVE-2012-0507 score Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy. Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com. Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c02964430 Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/ Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB. 3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX Copyright 2012 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. Background ========== IcedTea is a distribution of the Java OpenJDK source code built with free build tools. CVE-2011-3377 The Iced Tea browser plugin included in the openjdk-6 package does not properly enforce the Same Origin Policy on web content served under a domain name which has a common suffix with the required domain name. This could lead to JVM crash or Java sandbox bypass. CVE-2012-0505 The Java serialization code leaked references to serialization exceptions, possibly leaking critical objects to untrusted code in Java applets and applications. This could have been used to perform modification of the data that should have been immutable. For the testing distribution (wheezy) and the unstable distribution (sid), these problems have been fixed in version 6b24-1.11.1-1. We recommend that you upgrade your openjdk-6 packages. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Critical: java-1.6.0-ibm security update Advisory ID: RHSA-2012:0514-01 Product: Red Hat Enterprise Linux Extras Advisory URL: https://rhn.redhat.com/errata/RHSA-2012-0514.html Issue date: 2012-04-24 CVE Names: CVE-2011-3563 CVE-2011-5035 CVE-2012-0497 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507 ===================================================================== 1. Summary: Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, ppc, s390x, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Description: The IBM Java SE version 6 release includes the IBM Java 6 Runtime Environment and the IBM Java 6 Software Development Kit. This update fixes several vulnerabilities in the IBM Java 6 Runtime Environment and the IBM Java 6 Software Development Kit. Detailed vulnerability descriptions are linked from the IBM "Security alerts" page, listed in the References section. (CVE-2011-3563, CVE-2011-5035, CVE-2012-0497, CVE-2012-0498, CVE-2012-0499, CVE-2012-0500, CVE-2012-0501, CVE-2012-0502, CVE-2012-0503, CVE-2012-0505, CVE-2012-0506, CVE-2012-0507) All users of java-1.6.0-ibm are advised to upgrade to these updated packages, containing the IBM Java 6 SR10-FP1 release. All running instances of IBM Java must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 788606 - CVE-2011-5035 OpenJDK: HttpServer no header count limit (Lightweight HTTP Server, 7126960) 788624 - CVE-2012-0501 OpenJDK: off-by-one bug in ZIP reading code (JRE, 7118283) 788976 - CVE-2012-0503 OpenJDK: unrestricted use of TimeZone.setDefault() (i18n, 7110687) 788994 - CVE-2012-0507 OpenJDK: AtomicReferenceArray insufficient array type check (Concurrency, 7082299) 789295 - CVE-2011-3563 OpenJDK: JavaSound incorrect bounds check (Sound, 7088367) 789297 - CVE-2012-0502 OpenJDK: KeyboardFocusManager focus stealing (AWT, 7110683) 789299 - CVE-2012-0505 OpenJDK: incomplete info in the deserialization exception (Serialization, 7110700) 789300 - CVE-2012-0506 OpenJDK: mutable repository identifiers (CORBA, 7110704) 789301 - CVE-2012-0497 OpenJDK: insufficient checking of the graphics rendering object (2D, 7112642) 790720 - CVE-2012-0498 Oracle JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D) 790722 - CVE-2012-0499 Oracle JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D) 790724 - CVE-2012-0500 Oracle JDK: unspecified vulnerability fixed in 6u31 and 7u3 (Deployment) 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-accessibility-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.i386.rpm x86_64: java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-accessibility-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-accessibility-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.i386.rpm ppc: java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.ppc64.rpm java-1.6.0-ibm-accessibility-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.ppc64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.ppc64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.ppc64.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.ppc64.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.ppc.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.ppc64.rpm s390x: java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.s390.rpm java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.s390x.rpm java-1.6.0-ibm-accessibility-1.6.0.10.1-1jpp.1.el5.s390x.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.s390.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.s390x.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.s390.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.s390x.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.s390.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.s390x.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.s390.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.s390x.rpm x86_64: java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-accessibility-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.1.el5.x86_64.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.i386.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.1.el5.x86_64.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.i686.rpm x86_64: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm Red Hat Enterprise Linux HPC Node Supplementary (v. 6): x86_64: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.i686.rpm ppc64: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.ppc64.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.ppc64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.ppc.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.ppc64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.ppc64.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.ppc64.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.ppc64.rpm s390x: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.s390x.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.s390x.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.s390.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.s390x.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.s390x.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.s390x.rpm x86_64: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.i686.rpm x86_64: java-1.6.0-ibm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-demo-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.i686.rpm java-1.6.0-ibm-devel-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-javacomm-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-jdbc-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-plugin-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm java-1.6.0-ibm-src-1.6.0.10.1-1jpp.5.el6_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://www.redhat.com/security/data/cve/CVE-2011-3563.html https://www.redhat.com/security/data/cve/CVE-2011-5035.html https://www.redhat.com/security/data/cve/CVE-2012-0497.html https://www.redhat.com/security/data/cve/CVE-2012-0498.html https://www.redhat.com/security/data/cve/CVE-2012-0499.html https://www.redhat.com/security/data/cve/CVE-2012-0500.html https://www.redhat.com/security/data/cve/CVE-2012-0501.html https://www.redhat.com/security/data/cve/CVE-2012-0502.html https://www.redhat.com/security/data/cve/CVE-2012-0503.html https://www.redhat.com/security/data/cve/CVE-2012-0505.html https://www.redhat.com/security/data/cve/CVE-2012-0506.html https://www.redhat.com/security/data/cve/CVE-2012-0507.html https://access.redhat.com/security/updates/classification/#critical http://www.ibm.com/developerworks/java/jdk/alerts/ 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2012 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFPlw5rXlSAg2UNWIIRAldKAKC7OdjIpVAFu5MrW0lG1jFHFHzI9gCfWzbN SE8HYoxhvF72EszgwBS3Iy8= =WeNz -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201401-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Oracle JRE/JDK: Multiple vulnerabilities Date: January 27, 2014 Bugs: #404071, #421073, #433094, #438706, #451206, #455174, #458444, #460360, #466212, #473830, #473980, #488210, #498148 ID: 201401-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in the Oracle JRE/JDK, allowing attackers to cause unspecified impact. Background ========== The Oracle Java Development Kit (JDK) (formerly known as Sun JDK) and the Oracle Java Runtime Environment (JRE) (formerly known as Sun JRE) provide the Oracle Java platform (formerly known as Sun Java Platform). Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-java/sun-jdk <= 1.6.0.45 Vulnerable! 2 dev-java/oracle-jdk-bin < 1.7.0.51 >= 1.7.0.51 * 3 dev-java/sun-jre-bin <= 1.6.0.45 Vulnerable! 4 dev-java/oracle-jre-bin < 1.7.0.51 >= 1.7.0.51 * 5 app-emulation/emul-linux-x86-java < 1.7.0.51 >= 1.7.0.51 * ------------------------------------------------------------------- NOTE: Certain packages are still vulnerable. Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers. ------------------------------------------------------------------- NOTE: Packages marked with asterisks require manual intervention! ------------------------------------------------------------------- 5 affected packages Description =========== Multiple vulnerabilities have been reported in the Oracle Java implementation. Please review the CVE identifiers referenced below for details. Impact ====== An unauthenticated, remote attacker could exploit these vulnerabilities to execute arbitrary code. Furthermore, a local or remote attacker could exploit these vulnerabilities to cause unspecified impact, possibly including remote execution of arbitrary code. Workaround ========== There is no known workaround at this time. Resolution ========== All Oracle JDK 1.7 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jdk-bin-1.7.0.51" All Oracle JRE 1.7 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jre-bin-1.7.0.51" All users of the precompiled 32-bit Oracle JRE should upgrade to the latest version: # emerge --sync # emerge -a -1 -v ">=app-emulation/emul-linux-x86-java-1.7.0.51" All Sun Microsystems JDK/JRE 1.6 users are suggested to upgrade to one of the newer Oracle packages like dev-java/oracle-jdk-bin or dev-java/oracle-jre-bin or choose another alternative we provide; eg. the IBM JDK/JRE or the open source IcedTea. NOTE: As Oracle has revoked the DLJ license for its Java implementation, the packages can no longer be updated automatically. References ========== [ 1 ] CVE-2011-3563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563 [ 2 ] CVE-2011-5035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035 [ 3 ] CVE-2012-0497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497 [ 4 ] CVE-2012-0498 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0498 [ 5 ] CVE-2012-0499 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0499 [ 6 ] CVE-2012-0500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0500 [ 7 ] CVE-2012-0501 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501 [ 8 ] CVE-2012-0502 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502 [ 9 ] CVE-2012-0503 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503 [ 10 ] CVE-2012-0504 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0504 [ 11 ] CVE-2012-0505 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505 [ 12 ] CVE-2012-0506 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506 [ 13 ] CVE-2012-0507 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0507 [ 14 ] CVE-2012-0547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547 [ 15 ] CVE-2012-1531 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1531 [ 16 ] CVE-2012-1532 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1532 [ 17 ] CVE-2012-1533 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1533 [ 18 ] CVE-2012-1541 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1541 [ 19 ] CVE-2012-1682 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1682 [ 20 ] CVE-2012-1711 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711 [ 21 ] CVE-2012-1713 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713 [ 22 ] CVE-2012-1716 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716 [ 23 ] CVE-2012-1717 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717 [ 24 ] CVE-2012-1718 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718 [ 25 ] CVE-2012-1719 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719 [ 26 ] CVE-2012-1721 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1721 [ 27 ] CVE-2012-1722 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1722 [ 28 ] CVE-2012-1723 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723 [ 29 ] CVE-2012-1724 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724 [ 30 ] CVE-2012-1725 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725 [ 31 ] CVE-2012-1726 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726 [ 32 ] CVE-2012-3136 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3136 [ 33 ] CVE-2012-3143 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3143 [ 34 ] CVE-2012-3159 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3159 [ 35 ] CVE-2012-3174 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3174 [ 36 ] CVE-2012-3213 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3213 [ 37 ] CVE-2012-3216 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216 [ 38 ] CVE-2012-3342 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3342 [ 39 ] CVE-2012-4416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416 [ 40 ] CVE-2012-4681 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4681 [ 41 ] CVE-2012-5067 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5067 [ 42 ] CVE-2012-5068 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068 [ 43 ] CVE-2012-5069 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069 [ 44 ] CVE-2012-5070 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070 [ 45 ] CVE-2012-5071 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071 [ 46 ] CVE-2012-5072 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072 [ 47 ] CVE-2012-5073 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073 [ 48 ] CVE-2012-5074 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074 [ 49 ] CVE-2012-5075 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075 [ 50 ] CVE-2012-5076 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076 [ 51 ] CVE-2012-5077 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077 [ 52 ] CVE-2012-5079 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5079 [ 53 ] CVE-2012-5081 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081 [ 54 ] CVE-2012-5083 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5083 [ 55 ] CVE-2012-5084 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084 [ 56 ] CVE-2012-5085 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085 [ 57 ] CVE-2012-5086 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086 [ 58 ] CVE-2012-5087 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087 [ 59 ] CVE-2012-5088 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5088 [ 60 ] CVE-2012-5089 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089 [ 61 ] CVE-2013-0169 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169 [ 62 ] CVE-2013-0351 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0351 [ 63 ] CVE-2013-0401 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401 [ 64 ] CVE-2013-0402 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0402 [ 65 ] CVE-2013-0409 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0409 [ 66 ] CVE-2013-0419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0419 [ 67 ] CVE-2013-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0422 [ 68 ] CVE-2013-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0423 [ 69 ] CVE-2013-0430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0430 [ 70 ] CVE-2013-0437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0437 [ 71 ] CVE-2013-0438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0438 [ 72 ] CVE-2013-0445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0445 [ 73 ] CVE-2013-0446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0446 [ 74 ] CVE-2013-0448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0448 [ 75 ] CVE-2013-0449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0449 [ 76 ] CVE-2013-0809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809 [ 77 ] CVE-2013-1473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1473 [ 78 ] CVE-2013-1479 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1479 [ 79 ] CVE-2013-1481 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1481 [ 80 ] CVE-2013-1484 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484 [ 81 ] CVE-2013-1485 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485 [ 82 ] CVE-2013-1486 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486 [ 83 ] CVE-2013-1487 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1487 [ 84 ] CVE-2013-1488 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488 [ 85 ] CVE-2013-1491 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1491 [ 86 ] CVE-2013-1493 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493 [ 87 ] CVE-2013-1500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500 [ 88 ] CVE-2013-1518 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518 [ 89 ] CVE-2013-1537 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537 [ 90 ] CVE-2013-1540 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1540 [ 91 ] CVE-2013-1557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557 [ 92 ] CVE-2013-1558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1558 [ 93 ] CVE-2013-1561 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1561 [ 94 ] CVE-2013-1563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1563 [ 95 ] CVE-2013-1564 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1564 [ 96 ] CVE-2013-1569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569 [ 97 ] CVE-2013-1571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571 [ 98 ] CVE-2013-2383 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383 [ 99 ] CVE-2013-2384 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384 [ 100 ] CVE-2013-2394 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2394 [ 101 ] CVE-2013-2400 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2400 [ 102 ] CVE-2013-2407 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407 [ 103 ] CVE-2013-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412 [ 104 ] CVE-2013-2414 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2414 [ 105 ] CVE-2013-2415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415 [ 106 ] CVE-2013-2416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2416 [ 107 ] CVE-2013-2417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417 [ 108 ] CVE-2013-2418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2418 [ 109 ] CVE-2013-2419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419 [ 110 ] CVE-2013-2420 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420 [ 111 ] CVE-2013-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421 [ 112 ] CVE-2013-2422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422 [ 113 ] CVE-2013-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423 [ 114 ] CVE-2013-2424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424 [ 115 ] CVE-2013-2425 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2425 [ 116 ] CVE-2013-2426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426 [ 117 ] CVE-2013-2427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2427 [ 118 ] CVE-2013-2428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2428 [ 119 ] CVE-2013-2429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429 [ 120 ] CVE-2013-2430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430 [ 121 ] CVE-2013-2431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431 [ 122 ] CVE-2013-2432 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2432 [ 123 ] CVE-2013-2433 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2433 [ 124 ] CVE-2013-2434 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2434 [ 125 ] CVE-2013-2435 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2435 [ 126 ] CVE-2013-2436 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436 [ 127 ] CVE-2013-2437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2437 [ 128 ] CVE-2013-2438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2438 [ 129 ] CVE-2013-2439 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2439 [ 130 ] CVE-2013-2440 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2440 [ 131 ] CVE-2013-2442 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2442 [ 132 ] CVE-2013-2443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443 [ 133 ] CVE-2013-2444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444 [ 134 ] CVE-2013-2445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445 [ 135 ] CVE-2013-2446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446 [ 136 ] CVE-2013-2447 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447 [ 137 ] CVE-2013-2448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448 [ 138 ] CVE-2013-2449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449 [ 139 ] CVE-2013-2450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450 [ 140 ] CVE-2013-2451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451 [ 141 ] CVE-2013-2452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452 [ 142 ] CVE-2013-2453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453 [ 143 ] CVE-2013-2454 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454 [ 144 ] CVE-2013-2455 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455 [ 145 ] CVE-2013-2456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456 [ 146 ] CVE-2013-2457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457 [ 147 ] CVE-2013-2458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458 [ 148 ] CVE-2013-2459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459 [ 149 ] CVE-2013-2460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460 [ 150 ] CVE-2013-2461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461 [ 151 ] CVE-2013-2462 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2462 [ 152 ] CVE-2013-2463 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463 [ 153 ] CVE-2013-2464 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2464 [ 154 ] CVE-2013-2465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465 [ 155 ] CVE-2013-2466 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2466 [ 156 ] CVE-2013-2467 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2467 [ 157 ] CVE-2013-2468 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2468 [ 158 ] CVE-2013-2469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469 [ 159 ] CVE-2013-2470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470 [ 160 ] CVE-2013-2471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471 [ 161 ] CVE-2013-2472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472 [ 162 ] CVE-2013-2473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473 [ 163 ] CVE-2013-3743 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3743 [ 164 ] CVE-2013-3744 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3744 [ 165 ] CVE-2013-3829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829 [ 166 ] CVE-2013-5772 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772 [ 167 ] CVE-2013-5774 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774 [ 168 ] CVE-2013-5775 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5775 [ 169 ] CVE-2013-5776 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5776 [ 170 ] CVE-2013-5777 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5777 [ 171 ] CVE-2013-5778 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778 [ 172 ] CVE-2013-5780 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780 [ 173 ] CVE-2013-5782 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782 [ 174 ] CVE-2013-5783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783 [ 175 ] CVE-2013-5784 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784 [ 176 ] CVE-2013-5787 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5787 [ 177 ] CVE-2013-5788 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5788 [ 178 ] CVE-2013-5789 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5789 [ 179 ] CVE-2013-5790 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790 [ 180 ] CVE-2013-5797 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797 [ 181 ] CVE-2013-5800 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800 [ 182 ] CVE-2013-5801 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5801 [ 183 ] CVE-2013-5802 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802 [ 184 ] CVE-2013-5803 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803 [ 185 ] CVE-2013-5804 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804 [ 186 ] CVE-2013-5805 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805 [ 187 ] CVE-2013-5806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806 [ 188 ] CVE-2013-5809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809 [ 189 ] CVE-2013-5810 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5810 [ 190 ] CVE-2013-5812 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5812 [ 191 ] CVE-2013-5814 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814 [ 192 ] CVE-2013-5817 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817 [ 193 ] CVE-2013-5818 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5818 [ 194 ] CVE-2013-5819 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5819 [ 195 ] CVE-2013-5820 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820 [ 196 ] CVE-2013-5823 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823 [ 197 ] CVE-2013-5824 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5824 [ 198 ] CVE-2013-5825 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825 [ 199 ] CVE-2013-5829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829 [ 200 ] CVE-2013-5830 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830 [ 201 ] CVE-2013-5831 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5831 [ 202 ] CVE-2013-5832 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5832 [ 203 ] CVE-2013-5838 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5838 [ 204 ] CVE-2013-5840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840 [ 205 ] CVE-2013-5842 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842 [ 206 ] CVE-2013-5843 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5843 [ 207 ] CVE-2013-5844 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5844 [ 208 ] CVE-2013-5846 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5846 [ 209 ] CVE-2013-5848 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5848 [ 210 ] CVE-2013-5849 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849 [ 211 ] CVE-2013-5850 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850 [ 212 ] CVE-2013-5851 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851 [ 213 ] CVE-2013-5852 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5852 [ 214 ] CVE-2013-5854 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5854 [ 215 ] CVE-2013-5870 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5870 [ 216 ] CVE-2013-5878 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5878 [ 217 ] CVE-2013-5887 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5887 [ 218 ] CVE-2013-5888 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5888 [ 219 ] CVE-2013-5889 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5889 [ 220 ] CVE-2013-5893 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5893 [ 221 ] CVE-2013-5895 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5895 [ 222 ] CVE-2013-5896 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5896 [ 223 ] CVE-2013-5898 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5898 [ 224 ] CVE-2013-5899 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5899 [ 225 ] CVE-2013-5902 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5902 [ 226 ] CVE-2013-5904 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5904 [ 227 ] CVE-2013-5905 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5905 [ 228 ] CVE-2013-5906 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5906 [ 229 ] CVE-2013-5907 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5907 [ 230 ] CVE-2013-5910 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5910 [ 231 ] CVE-2014-0368 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0368 [ 232 ] CVE-2014-0373 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0373 [ 233 ] CVE-2014-0375 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0375 [ 234 ] CVE-2014-0376 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0376 [ 235 ] CVE-2014-0382 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0382 [ 236 ] CVE-2014-0385 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0385 [ 237 ] CVE-2014-0387 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0387 [ 238 ] CVE-2014-0403 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0403 [ 239 ] CVE-2014-0408 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0408 [ 240 ] CVE-2014-0410 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0410 [ 241 ] CVE-2014-0411 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0411 [ 242 ] CVE-2014-0415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0415 [ 243 ] CVE-2014-0416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0416 [ 244 ] CVE-2014-0417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0417 [ 245 ] CVE-2014-0418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0418 [ 246 ] CVE-2014-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0422 [ 247 ] CVE-2014-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0423 [ 248 ] CVE-2014-0424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0424 [ 249 ] CVE-2014-0428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0428 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201401-30.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . ---------------------------------------------------------------------- Secunia is hiring! Find your next job here: http://secunia.com/company/jobs/ ---------------------------------------------------------------------- TITLE: Oracle Multiple Products Web Form Hash Collision Denial of Service Vulnerability SECUNIA ADVISORY ID: SA47819 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/47819/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=47819 RELEASE DATE: 2012-02-01 DISCUSS ADVISORY: http://secunia.com/advisories/47819/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/47819/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=47819 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: A vulnerability has been reported in multiple Oracle products, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within a hash generation function when hashing form posts and updating a hash table. The vulnerability is reported in the following products: * Oracle Application Server 10g Release 3 version 10.1.3.5.0. * Oracle iPlanet Web Server 7.0. * Oracle iPlanet Web Server (formerly Oracle Java System Web Server) 6.1. SOLUTION: Apply patch. Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: http://www.oracle.com/technetwork/topics/security/alert-cve-2011-5035-1506603.html OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ---------------------------------------------------------------------- . HP has updated the Apache Tomcat and Oracle database software to address vulnerabilities affecting confidentiality, availability, and integrity

Trust: 3.42

sources: NVD: CVE-2011-5035 // CERT/CC: VU#903934 // JVNDB: JVNDB-2011-003567 // BID: 51194 // VULMON: CVE-2011-5035 // PACKETSTORM: 110181 // PACKETSTORM: 111624 // PACKETSTORM: 127267 // PACKETSTORM: 110284 // PACKETSTORM: 112144 // PACKETSTORM: 124943 // PACKETSTORM: 109353 // PACKETSTORM: 125436

AFFECTED PRODUCTS

vendor:oraclemodel:glassfish serverscope:eqversion:3.0.1

Trust: 2.1

vendor:oraclemodel:glassfish serverscope:eqversion:2.1.1

Trust: 2.1

vendor:oraclemodel:glassfish serverscope:eqversion:3.1.1

Trust: 1.1

vendor:oraclemodel:communications serverscope:eqversion:2.0

Trust: 1.1

vendor:oraclemodel:weblogic serverscope:eqversion:10.3.4

Trust: 1.1

vendor:oraclemodel:weblogic serverscope:eqversion:9.2.4

Trust: 1.1

vendor:oraclemodel:weblogic serverscope:eqversion:10.0.2

Trust: 1.1

vendor:oraclemodel:glassfish serverscope:lteversion:3.1.1

Trust: 1.0

vendor:sunmodel:jre 1.6.0 03scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 17scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 30scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 1.6.0 18scope: - version: -

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 22scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 05scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 28scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 14scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jdk 1.6.0 21scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 1.6.0 20scope: - version: -

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 25scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 07scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jdk 1.6.0 18scope: - version: -

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 27scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 1.6.0 19scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 1.6.0 03scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 17scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jre 1.7.0 2scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 10scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jdk 1.7.0 2scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 1.6.0 14scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 04scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jre 04scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 25scope: - version: -

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 27scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 1.6.0 15scope: - version: -

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 30scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 12scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jdkscope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jrescope:eqversion:1.7

Trust: 0.9

vendor:sunmodel:jre 1.6.0 02scope: - version: -

Trust: 0.9

vendor:sunmodel:jrescope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 23scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 1.6.0 01scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 06scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jre 1.6.0 19scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 1.6.0 15scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 07scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 28scope: - version: -

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 23scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 1.6.0 11scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 13scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jdk 1.6.0 02scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 05scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 26scope: - version: -

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 26scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 1.6.0 21scope: - version: -

Trust: 0.9

vendor:oraclemodel:jre 1.6.0 24scope: - version: -

Trust: 0.9

vendor:sunmodel:jre 06scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jdk 11scope:eqversion:1.6

Trust: 0.9

vendor:sunmodel:jdk 10scope:eqversion:1.6

Trust: 0.9

vendor:oraclemodel:jdkscope:eqversion:1.7

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 22scope: - version: -

Trust: 0.9

vendor:oraclemodel:jdk 1.6.0 24scope: - version: -

Trust: 0.9

vendor:sunmodel:jdk 13scope:eqversion:1.6

Trust: 0.9

vendor:apache tomcatmodel: - scope: - version: -

Trust: 0.8

vendor:microsoftmodel: - scope: - version: -

Trust: 0.8

vendor:oraclemodel: - scope: - version: -

Trust: 0.8

vendor:rubymodel: - scope: - version: -

Trust: 0.8

vendor:the php groupmodel: - scope: - version: -

Trust: 0.8

vendor:applemodel:mac os xscope:eqversion:v10.6.8

Trust: 0.8

vendor:applemodel:mac os xscope:eqversion:v10.7.3

Trust: 0.8

vendor:applemodel:mac os x serverscope:eqversion:v10.6.8

Trust: 0.8

vendor:applemodel:mac os x serverscope:eqversion:v10.7.3

Trust: 0.8

vendor:oraclemodel:java system web serverscope:eqversion:6.1

Trust: 0.8

vendor:oraclemodel:application serverscope:eqversion:10g r3 (10.1.3.5.0)

Trust: 0.8

vendor:oraclemodel:iplanet web serverscope:eqversion:7.0

Trust: 0.8

vendor:oraclemodel:jrockitscope:lteversion:27.7.1

Trust: 0.8

vendor:oraclemodel:jrockitscope:lteversion:28.2.2

Trust: 0.8

vendor:oraclemodel:sun java system application serverscope:eqversion:8.1

Trust: 0.8

vendor:oraclemodel:sun java system application serverscope:eqversion:8.2

Trust: 0.8

vendor:oraclemodel:weblogic serverscope:eqversion:11gr1 (10.3.3

Trust: 0.8

vendor:oraclemodel:weblogic serverscope:eqversion:10.3.5)

Trust: 0.8

vendor:oraclemodel:weblogic serverscope:eqversion:12cr1 (12.1.1)

Trust: 0.8

vendor:hewlett packardmodel:hp xp p9000 performance advisor softwarescope:lteversion:5.4.1

Trust: 0.8

vendor:hitachimodel:cosminexus application serverscope:eqversion:enterprise version 6

Trust: 0.8

vendor:hitachimodel:cosminexus application serverscope:eqversion:standard version 6

Trust: 0.8

vendor:hitachimodel:cosminexus application serverscope:eqversion:version 5

Trust: 0.8

vendor:hitachimodel:cosminexus clientscope:eqversion:version 6

Trust: 0.8

vendor:hitachimodel:cosminexus developerscope:eqversion:light version 6

Trust: 0.8

vendor:hitachimodel:cosminexus developerscope:eqversion:professional version 6

Trust: 0.8

vendor:hitachimodel:cosminexus developerscope:eqversion:standard version 6

Trust: 0.8

vendor:hitachimodel:cosminexus developerscope:eqversion:version 5

Trust: 0.8

vendor:hitachimodel:cosminexus developer's kit for javascope: - version: -

Trust: 0.8

vendor:hitachimodel:cosminexus primary serverscope:eqversion:base

Trust: 0.8

vendor:hitachimodel:cosminexus serverscope:eqversion:- standard edition version 4

Trust: 0.8

vendor:hitachimodel:cosminexus serverscope:eqversion:- web edition version 4

Trust: 0.8

vendor:hitachimodel:cosminexus studioscope:eqversion:- standard edition version 4

Trust: 0.8

vendor:hitachimodel:cosminexus studioscope:eqversion:- web edition version 4

Trust: 0.8

vendor:hitachimodel:cosminexus studioscope:eqversion:version 5

Trust: 0.8

vendor:hitachimodel:hirdb for java /xmlscope: - version: -

Trust: 0.8

vendor:hitachimodel:developer's kit for javascope: - version: -

Trust: 0.8

vendor:hitachimodel:processing kit for xmlscope: - version: -

Trust: 0.8

vendor:hitachimodel:ucosminexus application serverscope:eqversion:enterprise

Trust: 0.8

vendor:hitachimodel:ucosminexus application serverscope:eqversion:express

Trust: 0.8

vendor:hitachimodel:ucosminexus application serverscope:eqversion:light

Trust: 0.8

vendor:hitachimodel:ucosminexus application serverscope:eqversion:smart edition

Trust: 0.8

vendor:hitachimodel:ucosminexus application serverscope:eqversion:standard

Trust: 0.8

vendor:hitachimodel:ucosminexus application serverscope:eqversion:standard-r

Trust: 0.8

vendor:hitachimodel:ucosminexus clientscope:eqversion:none

Trust: 0.8

vendor:hitachimodel:ucosminexus clientscope:eqversion:for plug-in

Trust: 0.8

vendor:hitachimodel:ucosminexus developerscope:eqversion:01

Trust: 0.8

vendor:hitachimodel:ucosminexus developerscope:eqversion:light

Trust: 0.8

vendor:hitachimodel:ucosminexus developerscope:eqversion:professional

Trust: 0.8

vendor:hitachimodel:ucosminexus developerscope:eqversion:professional for plug-in

Trust: 0.8

vendor:hitachimodel:ucosminexus developerscope:eqversion:standard

Trust: 0.8

vendor:hitachimodel:ucosminexus operatorscope: - version: -

Trust: 0.8

vendor:hitachimodel:ucosminexus portal frameworkscope:eqversion:entry set

Trust: 0.8

vendor:hitachimodel:ucosminexus primary serverscope:eqversion:base

Trust: 0.8

vendor:hitachimodel:ucosminexus servicescope:eqversion:architect

Trust: 0.8

vendor:hitachimodel:ucosminexus servicescope:eqversion:platform

Trust: 0.8

vendor:hitachimodel:ucosminexus servicescope:eqversion:platform - messaging

Trust: 0.8

vendor:fujitsumodel:internet navigware serverscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage application development cycle managerscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage application framework suitescope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage application serverscope:eqversion:none

Trust: 0.8

vendor:fujitsumodel:interstage application serverscope:eqversion:plus developer / apworks / studio

Trust: 0.8

vendor:fujitsumodel:interstage business application serverscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage form coordinator workflowscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage job workload serverscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage list managerscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage list worksscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage service integratorscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage shunsaku data managerscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage web serverscope: - version: -

Trust: 0.8

vendor:fujitsumodel:interstage xml business activity recorderscope: - version: -

Trust: 0.8

vendor:fujitsumodel:serverviewscope:eqversion:resource orchestrator cloud edition

Trust: 0.8

vendor:fujitsumodel:success serverscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker availability viewscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker desktop inspectionscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker it change managerscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker it process masterscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker operation managerscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker runbook automationscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker service catalog managerscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker service quality coordinatorscope: - version: -

Trust: 0.8

vendor:fujitsumodel:systemwalker software configuration managerscope: - version: -

Trust: 0.8

vendor:sunmodel:jdk 01-b06scope:eqversion:1.6

Trust: 0.6

vendor:sunmodel:jre 1.6.0 2scope: - version: -

Trust: 0.6

vendor:sunmodel:jdk 1.6.0 01scope: - version: -

Trust: 0.6

vendor:sunmodel:jre 1.6.0 20scope: - version: -

Trust: 0.6

vendor:oraclemodel:weblogic serverscope:eqversion:10.3.5.0

Trust: 0.3

vendor:oraclemodel:jrockit r28.2.2scope: - version: -

Trust: 0.3

vendor:ibmmodel:java se sr8 fp1scope:eqversion:6

Trust: 0.3

vendor:sunmodel:java system web server sp9scope:eqversion:6.1

Trust: 0.3

vendor:redhatmodel:enterprise linux serverscope:eqversion:6

Trust: 0.3

vendor:susemodel:linux enterprise sdk sp1scope:eqversion:11

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.0-50scope:eqversion:1.5.015

Trust: 0.3

vendor:hitachimodel:processing kit for xmlscope:eqversion:0

Trust: 0.3

vendor:hpmodel:nonstop server h06.16.01scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.19.00scope: - version: -

Trust: 0.3

vendor:redhatmodel:enterprise linux as extrasscope:eqversion:4

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.7

Trust: 0.3

vendor:avayamodel:aura application enablement servicesscope:eqversion:6.1

Trust: 0.3

vendor:ubuntumodel:linux amd64scope:eqversion:11.10

Trust: 0.3

vendor:sunmodel:jdk 01scope:eqversion:1.6

Trust: 0.3

vendor:hitachimodel:cosminexus studio web editionscope:eqversion:-0

Trust: 0.3

vendor:hpmodel:nonstop server j06.08.02scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.15.02scope: - version: -

Trust: 0.3

vendor:avayamodel:meeting exchange sp1scope:eqversion:5.1

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.06

Trust: 0.3

vendor:ibmmodel:java sescope:eqversion:7.0

Trust: 0.3

vendor:ibmmodel:java sescope:eqversion:6

Trust: 0.3

vendor:ubuntumodel:linux amd64scope:eqversion:10.04

Trust: 0.3

vendor:hitachimodel:cosminexus application server standardscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:java ibm 64-bit sdk for z/osscope:eqversion:6.0

Trust: 0.3

vendor:hpmodel:nonstop server j06.06.02scope: - version: -

Trust: 0.3

vendor:hpmodel:jdk and jrescope:eqversion:7.0

Trust: 0.3

vendor:avayamodel:aura session managerscope:eqversion:1.1

Trust: 0.3

vendor:sunmodel:java system web server sp7scope:eqversion:6.1

Trust: 0.3

vendor:hpmodel:nonstop server j06.14scope: - version: -

Trust: 0.3

vendor:avayamodel:communication managerscope:eqversion:5.2

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.2scope: - version: -

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.5scope: - version: -

Trust: 0.3

vendor:ubuntumodel:linux i386scope:eqversion:10.04

Trust: 0.3

vendor:hitachimodel:ucosminexus application server standardscope:eqversion:0

Trust: 0.3

vendor:debianmodel:linux sparcscope:eqversion:6.0

Trust: 0.3

vendor:avayamodel:aura system managerscope:eqversion:6.1.3

Trust: 0.3

vendor:avayamodel:aura system platformscope:eqversion:6.0

Trust: 0.3

vendor:avayamodel:messaging storage serverscope:eqversion:5.2.8

Trust: 0.3

vendor:hpmodel:nonstop server j06.09.03scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.26scope: - version: -

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:1.0

Trust: 0.3

vendor:hpmodel:nonstop server j06.04.02scope: - version: -

Trust: 0.3

vendor:avayamodel:aura system platform sp2scope:eqversion:6.0

Trust: 0.3

vendor:ubuntumodel:linux powerpcscope:eqversion:10.10

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.7.2

Trust: 0.3

vendor:hpmodel:nonstop server j06.13scope: - version: -

Trust: 0.3

vendor:avayamodel:aura session manager sp1scope:eqversion:5.2

Trust: 0.3

vendor:susemodel:linux enterprise server sp4scope:eqversion:10

Trust: 0.3

vendor:avayamodel:ip office application serverscope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:weblogic serverscope:eqversion:12.1.10

Trust: 0.3

vendor:ubuntumodel:linux sparcscope:eqversion:10.04

Trust: 0.3

vendor:redhatmodel:enterprise linux extrasscope:eqversion:4

Trust: 0.3

vendor:mandrivamodel:linux mandrake x86 64scope:eqversion:2010.1

Trust: 0.3

vendor:hpmodel:nonstop server j06.09.04scope: - version: -

Trust: 0.3

vendor:sunmodel:iplanet web serverscope:eqversion:7.0

Trust: 0.3

vendor:hitachimodel:ucosminexus operatorscope:eqversion:0

Trust: 0.3

vendor:susemodel:linux enterprise server sp2scope:eqversion:11

Trust: 0.3

vendor:avayamodel:voice portalscope:eqversion:5.1.2

Trust: 0.3

vendor:avayamodel:meeting exchange sp2scope:eqversion:5.0

Trust: 0.3

vendor:avayamodel:aura application server sip corescope:eqversion:53002.0

Trust: 0.3

vendor:avayamodel:meeting exchangescope:eqversion:5.0.0.52

Trust: 0.3

vendor:avayamodel:voice portalscope:eqversion:5.0

Trust: 0.3

vendor:sunmodel:java system application serverscope:eqversion:8.2

Trust: 0.3

vendor:hitachimodel:cosminexus developer standardscope:eqversion:0

Trust: 0.3

vendor:avayamodel:ip office application serverscope:eqversion:8.0

Trust: 0.3

vendor:avayamodel:aura sip enablement servicesscope:eqversion:5.0

Trust: 0.3

vendor:hpmodel:nonstop server h06.18.00scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server j06.15.01scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.22.00scope: - version: -

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.014

Trust: 0.3

vendor:hitachimodel:cosminexus application server enterprisescope:eqversion:0

Trust: 0.3

vendor:hpmodel:nonstop server j06.12.00scope: - version: -

Trust: 0.3

vendor:avayamodel:irscope:eqversion:4.0

Trust: 0.3

vendor:avayamodel:aura messagingscope:eqversion:6.0

Trust: 0.3

vendor:avayamodel:aura session managerscope:eqversion:6.1.2

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.9scope: - version: -

Trust: 0.3

vendor:avayamodel:aura system managerscope:eqversion:5.2

Trust: 0.3

vendor:avayamodel:aura session managerscope:eqversion:6.0

Trust: 0.3

vendor:hpmodel:nonstop server j06.05.01scope: - version: -

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.011

Trust: 0.3

vendor:hpmodel:nonstop server j06.08.00scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server j06.09.01scope: - version: -

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.3scope: - version: -

Trust: 0.3

vendor:avayamodel:messaging storage serverscope:eqversion:5.2

Trust: 0.3

vendor:avayamodel:aura system managerscope:eqversion:6.1.1

Trust: 0.3

vendor:hpmodel:nonstop server j06.16scope: - version: -

Trust: 0.3

vendor:hitachimodel:ucosminexus client for plug-inscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:java se sr6scope:eqversion:6.0

Trust: 0.3

vendor:hpmodel:nonstop server j6.0.14.01scope: - version: -

Trust: 0.3

vendor:redhatmodel:enterprise linux desktopscope:eqversion:6

Trust: 0.3

vendor:avayamodel:proactive contactscope:eqversion:4.2.2

Trust: 0.3

vendor:redhatmodel:enterprise linux desktop supplementaryscope:eqversion:6

Trust: 0.3

vendor:avayamodel:meeting exchange sp1scope:eqversion:5.0

Trust: 0.3

vendor:oraclemodel:jrockit r27.1.0scope: - version: -

Trust: 0.3

vendor:avayamodel:message networkingscope:eqversion:5.2.3

Trust: 0.3

vendor:hitachimodel:ucosminexus developerscope:eqversion:010

Trust: 0.3

vendor:redhatmodel:enterprise linux supplementary serverscope:eqversion:5

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:2.0

Trust: 0.3

vendor:hitachimodel:ucosminexus service architectscope:eqversion:0

Trust: 0.3

vendor:debianmodel:linux ia-64scope:eqversion:6.0

Trust: 0.3

vendor:oraclemodel:enterprise linuxscope:eqversion:6.2

Trust: 0.3

vendor:avayamodel:voice portal sp1scope:eqversion:5.0

Trust: 0.3

vendor:avayamodel:voice portalscope:eqversion:5.1

Trust: 0.3

vendor:oraclemodel:jrockit r28.1.4scope: - version: -

Trust: 0.3

vendor:avayamodel:aura sip enablement servicesscope:eqversion:5.1

Trust: 0.3

vendor:hitachimodel:ucosminexus developer lightscope:eqversion:0

Trust: 0.3

vendor:hitachimodel:ucosminexus service platform messagingscope:eqversion:-0

Trust: 0.3

vendor:avayamodel:voice portal sp2scope:eqversion:5.0

Trust: 0.3

vendor:hpmodel:nonstop server j06.07.02scope: - version: -

Trust: 0.3

vendor:mandrivamodel:linux mandrake x86 64scope:eqversion:2011

Trust: 0.3

vendor:redhatmodel:enterprise linux workstationscope:eqversion:6

Trust: 0.3

vendor:ubuntumodel:linux i386scope:eqversion:10.10

Trust: 0.3

vendor:hpmodel:nonstop server j06.09.00scope: - version: -

Trust: 0.3

vendor:sunmodel:java system web server sp5scope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:jrockit r28.0.0scope: - version: -

Trust: 0.3

vendor:avayamodel:meeting exchange sp2scope:eqversion:5.2

Trust: 0.3

vendor:hpmodel:nonstop server j06.10.02scope: - version: -

Trust: 0.3

vendor:redhatmodel:enterprise linux desktop clientscope:eqversion:5

Trust: 0.3

vendor:avayamodel:aura messagingscope:eqversion:6.0.1

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.6scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server j06.06.00scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.012

Trust: 0.3

vendor:avayamodel:aura session manager sp1scope:eqversion:6.1

Trust: 0.3

vendor:avayamodel:aura sip enablement servicesscope:eqversion:5.2

Trust: 0.3

vendor:hpmodel:nonstop server h06.24.01scope: - version: -

Trust: 0.3

vendor:avayamodel:iqscope:eqversion:5.2

Trust: 0.3

vendor:s u s emodel:opensusescope:eqversion:11.4

Trust: 0.3

vendor:avayamodel:aura presence servicesscope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.8scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.25scope: - version: -

Trust: 0.3

vendor:sunmodel:java system web server sp8scope:eqversion:6.1

Trust: 0.3

vendor:avayamodel:messaging storage server sp2scope:eqversion:5.2

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.04

Trust: 0.3

vendor:hitachimodel:ucosminexus application server lightscope:eqversion:0

Trust: 0.3

vendor:hpmodel:nonstop server h06.15.00scope: - version: -

Trust: 0.3

vendor:sunmodel:java system web server sp4scope:eqversion:6.1

Trust: 0.3

vendor:avayamodel:meeting exchangescope:eqversion:5.0

Trust: 0.3

vendor:avayamodel:voice portal sp1scope:eqversion:5.1

Trust: 0.3

vendor:oraclemodel:jrockit r27.7.1scope: - version: -

Trust: 0.3

vendor:hitachimodel:cosminexus studioscope:eqversion:0

Trust: 0.3

vendor:debianmodel:linux amd64scope:eqversion:6.0

Trust: 0.3

vendor:sunmodel:java system web server sp10scope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:3.1

Trust: 0.3

vendor:avayamodel:meeting exchange sp1scope:eqversion:5.2

Trust: 0.3

vendor:ubuntumodel:linux armscope:eqversion:10.04

Trust: 0.3

vendor:ubuntumodel:linux powerpcscope:eqversion:11.04

Trust: 0.3

vendor:redhatmodel:enterprise linux ws extrasscope:eqversion:4

Trust: 0.3

vendor:ibmmodel:java se sr9scope:eqversion:6.0.0

Trust: 0.3

vendor:oraclemodel:jrockit r28.1.1scope: - version: -

Trust: 0.3

vendor:debianmodel:linux mipsscope:eqversion:6.0

Trust: 0.3

vendor:avayamodel:aura sip enablement servicesscope:eqversion:5.2.1

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.5

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11scope: - version: -

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6

Trust: 0.3

vendor:hpmodel:nonstop server j06.07.00scope: - version: -

Trust: 0.3

vendor:redhatmodel:enterprise linux es extrasscope:eqversion:4

Trust: 0.3

vendor:avayamodel:message networking sp1scope:eqversion:5.2

Trust: 0.3

vendor:susemodel:linux enterprise server for vmware sp1scope:eqversion:11

Trust: 0.3

vendor:hpmodel:xp p9000 performance advisorscope:neversion:5.5.1

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.010

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.013

Trust: 0.3

vendor:sunmodel:java system web server sp2scope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.4scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server j06.08.04scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server j06.08.01scope: - version: -

Trust: 0.3

vendor:avayamodel:aura system managerscope:eqversion:6.1

Trust: 0.3

vendor:avayamodel:aura system manager sp2scope:eqversion:6.1

Trust: 0.3

vendor:avayamodel:messaging storage server sp3scope:eqversion:5.2

Trust: 0.3

vendor:mandrakesoftmodel:enterprise server x86 64scope:eqversion:5

Trust: 0.3

vendor:avayamodel:aura session managerscope:eqversion:6.1.3

Trust: 0.3

vendor:avayamodel:aura session manager sp2scope:eqversion:5.2

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.015

Trust: 0.3

vendor:hpmodel:nonstop server h06.15.01scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.24scope: - version: -

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.018

Trust: 0.3

vendor:hitachimodel:cosminexus primary server basescope:eqversion:0

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.019

Trust: 0.3

vendor:avayamodel:message networkingscope:eqversion:5.2

Trust: 0.3

vendor:mandrivamodel:linux mandrakescope:eqversion:2010.1

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.3

Trust: 0.3

vendor:hpmodel:nonstop server h06.16.00scope: - version: -

Trust: 0.3

vendor:hitachimodel:ucosminexus developer professional for plug-inscope:eqversion:0

Trust: 0.3

vendor:hpmodel:nonstop server h06.18.02scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.20.03scope: - version: -

Trust: 0.3

vendor:avayamodel:proactive contactscope:eqversion:4.2

Trust: 0.3

vendor:avayamodel:meeting exchangescope:eqversion:5.1

Trust: 0.3

vendor:avayamodel:aura system platformscope:eqversion:1.0

Trust: 0.3

vendor:redhatmodel:enterprise linux hpc node optionalscope:eqversion:6

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.6

Trust: 0.3

vendor:redhatmodel:enterprise linux server supplementaryscope:eqversion:6

Trust: 0.3

vendor:ibmmodel:java ibm 31-bit sdk for z/osscope:eqversion:6.0

Trust: 0.3

vendor:oraclemodel:enterprise linuxscope:eqversion:5

Trust: 0.3

vendor:hpmodel:nonstop server j06.13.01scope: - version: -

Trust: 0.3

vendor:avayamodel:iqscope:eqversion:5.1.1

Trust: 0.3

vendor:hpmodel:nonstop server h06.23scope: - version: -

Trust: 0.3

vendor:avayamodel:aura application enablement servicesscope:eqversion:5.2.3

Trust: 0.3

vendor:mandrakesoftmodel:enterprise serverscope:eqversion:5

Trust: 0.3

vendor:hpmodel:nonstop server h06.19.02scope: - version: -

Trust: 0.3

vendor:ibmmodel:java se sr7scope:eqversion:6.0

Trust: 0.3

vendor:avayamodel:meeting exchangescope:eqversion:5.2

Trust: 0.3

vendor:avayamodel:communication manager sp3scope:eqversion:5.0

Trust: 0.3

vendor:avayamodel:aura communication manager utility servicesscope:eqversion:6.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.5

Trust: 0.3

vendor:vmwaremodel:esxscope:eqversion:4.1

Trust: 0.3

vendor:hpmodel:nonstop serverscope:eqversion:6

Trust: 0.3

vendor:oraclemodel:jrockit r28.0.1scope: - version: -

Trust: 0.3

vendor:avayamodel:call management system rscope:eqversion:15.0

Trust: 0.3

vendor:oraclemodel:glassfish server ur1 po1scope:eqversion:1.0

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.7.3

Trust: 0.3

vendor:redhatmodel:enterprise linux workstation supplementaryscope:eqversion:6

Trust: 0.3

vendor:oraclemodel:weblogic serverscope:eqversion:10.3.3

Trust: 0.3

vendor:hpmodel:nonstop server h06.22.01scope: - version: -

Trust: 0.3

vendor:ubuntumodel:linux amd64scope:eqversion:11.04

Trust: 0.3

vendor:redhatmodel:enterprise linux workstation optionalscope:eqversion:6

Trust: 0.3

vendor:avayamodel:message networkingscope:eqversion:5.2.2

Trust: 0.3

vendor:oraclemodel:jrockit r28.1.3scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.7.1

Trust: 0.3

vendor:avayamodel:communication managerscope:eqversion:5.1.2

Trust: 0.3

vendor:ubuntumodel:linux amd64scope:eqversion:10.10

Trust: 0.3

vendor:oraclemodel:weblogic server 11gr1scope: - version: -

Trust: 0.3

vendor:ubuntumodel:linux i386scope:eqversion:11.04

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.020

Trust: 0.3

vendor:oraclemodel:iplanet webserverscope:eqversion:7.0

Trust: 0.3

vendor:avayamodel:message networkingscope:eqversion:5.2.1

Trust: 0.3

vendor:hitachimodel:cosminexus studio standard editionscope:eqversion:-0

Trust: 0.3

vendor:hpmodel:nonstop server h06.19.03scope: - version: -

Trust: 0.3

vendor:avayamodel:aura session managerscope:eqversion:6.1.1

Trust: 0.3

vendor:susemodel:linux enterprise server sp1scope:eqversion:11

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.3

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.03

Trust: 0.3

vendor:ubuntumodel:linux armscope:eqversion:10.10

Trust: 0.3

vendor:oraclemodel:enterprise linuxscope:eqversion:6

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:2.1

Trust: 0.3

vendor:ibmmodel:java sescope:eqversion:6.0

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.6

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.7

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.05

Trust: 0.3

vendor:susemodel:linux enterprise sdk sp2scope:eqversion:11

Trust: 0.3

vendor:avayamodel:proactive contactscope:eqversion:4.2.1

Trust: 0.3

vendor:hpmodel:nonstop server j06.11.01scope: - version: -

Trust: 0.3

vendor:ibmmodel:java se sr9-fp2scope:eqversion:6.0.0

Trust: 0.3

vendor:sunmodel:java system web serverscope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:virtual desktop infrastructurescope:eqversion:3.2

Trust: 0.3

vendor:hpmodel:nonstop server j06.15scope: - version: -

Trust: 0.3

vendor:mandrivamodel:linux mandrakescope:eqversion:2011

Trust: 0.3

vendor:avayamodel:messaging application serverscope:eqversion:5.2

Trust: 0.3

vendor:oraclemodel:glassfish server ur1scope:eqversion:1.0

Trust: 0.3

vendor:hitachimodel:ucosminexus developer professionalscope:eqversion:0

Trust: 0.3

vendor:avayamodel:aura presence servicesscope:eqversion:6.0

Trust: 0.3

vendor:hitachimodel:ucosminexus developer standardscope:eqversion:0

Trust: 0.3

vendor:hpmodel:nonstop server h06.21.02scope: - version: -

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.7scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.8

Trust: 0.3

vendor:hpmodel:nonstop server h06.20.00scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.4

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.7.3

Trust: 0.3

vendor:avayamodel:aura system manager sp1scope:eqversion:6.0

Trust: 0.3

vendor:ibmmodel:rational synergyscope:neversion:7.2.0.3

Trust: 0.3

vendor:avayamodel:aura system manager sp1scope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:jrockit r27.6.0scope: - version: -

Trust: 0.3

vendor:hpmodel:hp-ux b.11.31scope: - version: -

Trust: 0.3

vendor:hitachimodel:ucosminexus application server enterprise )scope:eqversion:09-80

Trust: 0.3

vendor:avayamodel:aura system platformscope:eqversion:6.0.2

Trust: 0.3

vendor:hitachimodel:cosminexus clientscope:eqversion:0

Trust: 0.3

vendor:debianmodel:linux s/390scope:eqversion:6.0

Trust: 0.3

vendor:avayamodel:aura experience portalscope:eqversion:6.0

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:3.0

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.7.1

Trust: 0.3

vendor:avayamodel:messaging storage server sp1scope:eqversion:5.2

Trust: 0.3

vendor:hpmodel:nonstop server j06.05.02scope: - version: -

Trust: 0.3

vendor:sunmodel:java system web server sp3scope:eqversion:6.1

Trust: 0.3

vendor:oraclemodel:application server 10g r3scope:eqversion:10.1.3.5.0

Trust: 0.3

vendor:hpmodel:nonstop server j06.07.01scope: - version: -

Trust: 0.3

vendor:avayamodel:communication managerscope:eqversion:5.1

Trust: 0.3

vendor:sunmodel:java system application serverscope:eqversion:8.1

Trust: 0.3

vendor:hpmodel:nonstop server h06.21.01scope: - version: -

Trust: 0.3

vendor:avayamodel:aura session manager sp1scope:eqversion:6.0

Trust: 0.3

vendor:hpmodel:nonstop server h06.19.01scope: - version: -

Trust: 0.3

vendor:susemodel:linux enterprise java sp1scope:eqversion:11

Trust: 0.3

vendor:ubuntumodel:linux i386scope:eqversion:11.10

Trust: 0.3

vendor:hpmodel:xp p9000 performance advisorscope:eqversion:5.4.1

Trust: 0.3

vendor:hitachimodel:ucosminexus application server smart editionscope:eqversion:0

Trust: 0.3

vendor:avayamodel:aura session manager sp2scope:eqversion:6.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.7

Trust: 0.3

vendor:hpmodel:nonstop server j06.11.00scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.26.01scope: - version: -

Trust: 0.3

vendor:debianmodel:linux armscope:eqversion:6.0

Trust: 0.3

vendor:hitachimodel:cosminexus developer professionalscope:eqversion:0

Trust: 0.3

vendor:avayamodel:aura presence servicesscope:eqversion:6.1.1

Trust: 0.3

vendor:avayamodel:proactive contactscope:eqversion:5.0

Trust: 0.3

vendor:avayamodel:aura application enablement servicesscope:eqversion:5.2

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.021

Trust: 0.3

vendor:hpmodel:jdk and jrescope:neversion:7.0.1

Trust: 0.3

vendor:redhatmodel:enterprise linux server optionalscope:eqversion:6

Trust: 0.3

vendor:redhatmodel:desktop extrasscope:eqversion:4

Trust: 0.3

vendor:hpmodel:nonstop server j06.04.01scope: - version: -

Trust: 0.3

vendor:avayamodel:aura conferencing sp1 standardscope:eqversion:6.0

Trust: 0.3

vendor:ibmmodel:java se sr5scope:eqversion:6.0

Trust: 0.3

vendor:avayamodel:aura system managerscope:eqversion:6.1.2

Trust: 0.3

vendor:hpmodel:nonstop server j06.04.00scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.2

Trust: 0.3

vendor:hpmodel:nonstop server j06.06.01scope: - version: -

Trust: 0.3

vendor:hitachimodel:ucosminexus primary server basescope:eqversion:0

Trust: 0.3

vendor:avayamodel:aura application enablement servicesscope:eqversion:6.1.1

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.016

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.8

Trust: 0.3

vendor:avayamodel:aura system managerscope:eqversion:6.0

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.4

Trust: 0.3

vendor:hpmodel:nonstop server h06.21.00scope: - version: -

Trust: 0.3

vendor:ibmmodel:java sescope:eqversion:7

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.07

Trust: 0.3

vendor:hpmodel:nonstop server j06.06.03scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.17.01scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.6.1

Trust: 0.3

vendor:avayamodel:call management system rscope:eqversion:16.0

Trust: 0.3

vendor:avayamodel:voice portalscope:eqversion:5.1.1

Trust: 0.3

vendor:avayamodel:aura messagingscope:eqversion:6.1

Trust: 0.3

vendor:hpmodel:network node manager iscope:eqversion:9.1

Trust: 0.3

vendor:avayamodel:aura system platform sp3scope:eqversion:6.0

Trust: 0.3

vendor:susemodel:linux enterprise desktop sp1scope:eqversion:11

Trust: 0.3

vendor:hitachimodel:ucosminexus service platformscope:eqversion:0

Trust: 0.3

vendor:avayamodel:aura sip enablement servicesscope:eqversion:4.0

Trust: 0.3

vendor:avayamodel:aura session managerscope:eqversion:6.1

Trust: 0.3

vendor:avayamodel:aura application enablement servicesscope:eqversion:5.2.2

Trust: 0.3

vendor:sunmodel:jdk 1.6.0 01-b06scope: - version: -

Trust: 0.3

vendor:hitachimodel:cosminexus developer lightscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:rational synergyscope:eqversion:7.2.0.2

Trust: 0.3

vendor:oraclemodel:virtual desktop infrastructurescope:eqversion:3.3

Trust: 0.3

vendor:hpmodel:nonstop server h06.20.01scope: - version: -

Trust: 0.3

vendor:hitachimodel:ucosminexus clientscope:eqversion:0

Trust: 0.3

vendor:avayamodel:conferencing standard editionscope:neversion:7.0

Trust: 0.3

vendor:hpmodel:nonstop server j06.10.00scope: - version: -

Trust: 0.3

vendor:avayamodel:aura application enablement servicesscope:eqversion:5.2.1

Trust: 0.3

vendor:redhatmodel:enterprise linux desktop optionalscope:eqversion:6

Trust: 0.3

vendor:hpmodel:nonstop server h06.17.03scope: - version: -

Trust: 0.3

vendor:sunmodel:jdk updatescope:eqversion:1.6.017

Trust: 0.3

vendor:redhatmodel:enterprise linux hpc node supplementaryscope:eqversion:6

Trust: 0.3

vendor:redhatmodel:enterprise linux desktop supplementary clientscope:eqversion:5

Trust: 0.3

vendor:hitachimodel:ucosminexus application server standard-rscope:eqversion:0

Trust: 0.3

vendor:avayamodel:ip office application serverscope:eqversion:7.0

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

vendor:ubuntumodel:linux powerpcscope:eqversion:10.04

Trust: 0.3

vendor:sunmodel:java system web server sp11scope:eqversion:6.1

Trust: 0.3

vendor:redhatmodel:enterprise linux hpc nodescope:eqversion:6

Trust: 0.3

vendor:hpmodel:nonstop server h06.16.02scope: - version: -

Trust: 0.3

vendor:ibmmodel:rational synergyscope:eqversion:7.1.0.5

Trust: 0.3

vendor:avayamodel:message networkingscope:eqversion:5.2.4

Trust: 0.3

vendor:avayamodel:aura session managerscope:eqversion:5.2

Trust: 0.3

vendor:avayamodel:aura system platformscope:eqversion:6.0.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.2

Trust: 0.3

vendor:sunmodel:java system web server sp1scope:eqversion:6.1

Trust: 0.3

vendor:redhatmodel:enterprise linux serverscope:eqversion:5

Trust: 0.3

vendor:avayamodel:communication managerscope:eqversion:5.0

Trust: 0.3

vendor:hpmodel:nonstop server j06.05.00scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.7

Trust: 0.3

vendor:susemodel:linux enterprise java sp4scope:eqversion:10

Trust: 0.3

vendor:debianmodel:linux ia-32scope:eqversion:6.0

Trust: 0.3

vendor:ubuntumodel:linux armscope:eqversion:11.04

Trust: 0.3

vendor:ibmmodel:java se sr1scope:neversion:7

Trust: 0.3

vendor:hpmodel:nonstop server h06.20.02scope: - version: -

Trust: 0.3

vendor:hitachimodel:cosminexus developer no versionscope:eqversion:0

Trust: 0.3

vendor:avayamodel:iqscope:eqversion:5

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.6.1

Trust: 0.3

vendor:hpmodel:nonstop server j06.09.02scope: - version: -

Trust: 0.3

vendor:avayamodel:aura communication manager utility servicesscope:eqversion:6.2

Trust: 0.3

vendor:susemodel:linux enterprise desktop sp1 for sp2scope:eqversion:11

Trust: 0.3

vendor:debianmodel:linux powerpcscope:eqversion:6.0

Trust: 0.3

vendor:hpmodel:nonstop server h06.17.02scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server j06.08.03scope: - version: -

Trust: 0.3

vendor:avayamodel:iqscope:eqversion:5.1

Trust: 0.3

vendor:avayamodel:aura conferencing standardscope:eqversion:6.0

Trust: 0.3

vendor:ibmmodel:rational synergyscope:neversion:7.1.0.6

Trust: 0.3

vendor:hpmodel:nonstop server j06.10.01scope: - version: -

Trust: 0.3

vendor:sunmodel:java system web server sp6scope:eqversion:6.1

Trust: 0.3

vendor:avayamodel:messaging storage serverscope:eqversion:5.2.2

Trust: 0.3

vendor:hpmodel:nonstop server h06.25.01scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server h06.18.01scope: - version: -

Trust: 0.3

vendor:hitachimodel:cosminexus application server no versionscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:weblogic serverscope:eqversion:10.3.60

Trust: 0.3

vendor:hpmodel:nonstop server h06.27scope: - version: -

Trust: 0.3

vendor:ibmmodel:java se sr10scope:eqversion:6

Trust: 0.3

vendor:hpmodel:nonstop server h06.17.00scope: - version: -

Trust: 0.3

vendor:hpmodel:nonstop server j06.14.02scope: - version: -

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.7.2

Trust: 0.3

sources: CERT/CC: VU#903934 // BID: 51194 // JVNDB: JVNDB-2011-003567 // NVD: CVE-2011-5035

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2011-5035
value: MEDIUM

Trust: 1.0

CARNEGIE MELLON: VU#903934
value: 10.80

Trust: 0.8

NVD: CVE-2011-5035
value: MEDIUM

Trust: 0.8

VULMON: CVE-2011-5035
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2011-5035
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

sources: CERT/CC: VU#903934 // VULMON: CVE-2011-5035 // JVNDB: JVNDB-2011-003567 // NVD: CVE-2011-5035

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.8

sources: JVNDB: JVNDB-2011-003567 // NVD: CVE-2011-5035

THREAT TYPE

network

Trust: 0.3

sources: BID: 51194

TYPE

Failure to Handle Exceptional Conditions

Trust: 0.3

sources: BID: 51194

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2011-003567

EXPLOIT AVAILABILITY
sources:
            
            
            VULMON: CVE-2011-5035

PATCH
title:HT5228url:http://support.apple.com/kb/HT5228
Trust: 0.8
title:HT1338url:http://support.apple.com/kb/HT1338?viewlocale=ja_JP
Trust: 0.8
title:HT5228url:http://support.apple.com/kb/HT5228?viewlocale=ja_JP
Trust: 0.8
title:HS12-007url:http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-007/index.html
Trust: 0.8
title:HPSBST02955 SSRT101157url:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c04047415
Trust: 0.8
title:Text Form of Oracle Critical Patch Update - January 2013 Risk Matricesurl:http://www.oracle.com/technetwork/topics/security/cpujan2013verbose-1897756.html
Trust: 0.8
title:Oracle Critical Patch Update Advisory - April 2012url:http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html
Trust: 0.8
title:Oracle Critical Patch Update Advisory - January 2012url:http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
Trust: 0.8
title:Oracle Critical Patch Update Advisory - January 2013url:http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
Trust: 0.8
title:Oracle Security Alert for CVE-2011-5035url:http://www.oracle.com/technetwork/topics/security/alert-cve-2011-5035-1506603.html
Trust: 0.8
title:RHSA-2013:1455url:http://rhn.redhat.com/errata/RHSA-2013-1455.html
Trust: 0.8
title:January 2012 Critical Patch Update Releasedurl:http://blogs.oracle.com/security/entry/january_2012_critical_patch_update
Trust: 0.8
title:January 2013 Critical Patch Update Releasedurl:https://blogs.oracle.com/security/entry/january_2013_critical_patch_update
Trust: 0.8
title:interstage_as_201201url:http://software.fujitsu.com/jp/security/products-fujitsu/solution/interstage_as_201201.html
Trust: 0.8
title:HS12-007url:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-007/index.html
Trust: 0.8
title:Red Hat: Important: java-1.6.0-openjdk security updateurl:https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20120322 - Security Advisory
Trust: 0.1
title:Red Hat: Critical: java-1.6.0-openjdk security updateurl:https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20120135 - Security Advisory
Trust: 0.1
title:Red Hat: Critical: java-1.6.0-sun security updateurl:https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20120139 - Security Advisory
Trust: 0.1
title:Red Hat: Critical: java-1.6.0-ibm security updateurl:https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20120514 - Security Advisory
Trust: 0.1
title:Ubuntu Security Notice: openjdk-6b18 vulnerabilitiesurl:https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-1373-2
Trust: 0.1
title:Ubuntu Security Notice: openjdk-6 vulnerabilitiesurl:https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-1373-1
Trust: 0.1
title:Amazon Linux AMI: ALAS-2012-043url:https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2012-043
Trust: 0.1
title:Red Hat: Low: Red Hat Network Satellite server IBM Java Runtime security updateurl:https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20131455 - Security Advisory
Trust: 0.1
title:Threatposturl:https://threatpost.com/oracle-patches-88-vulnerabilities-including-some-allow-remote-exploits-without-authentication/76457/
Trust: 0.1
title:welivesecurityurl:https://www.welivesecurity.com/2012/04/05/mac-flashback-trojan-java-update/
Trust: 0.1
sources:
            
            
            VULMON: CVE-2011-5035 // 
            
            
            
            JVNDB: JVNDB-2011-003567

EXTERNAL IDS
db:NVDid:CVE-2011-5035
Trust: 3.0
db:CERT/CCid:VU#903934
Trust: 2.7
db:OCERTid:OCERT-2011-003
Trust: 2.2
db:SECUNIAid:48589
Trust: 1.1
db:SECUNIAid:57126
Trust: 1.1
db:SECUNIAid:48073
Trust: 1.1
db:SECUNIAid:48074
Trust: 1.1
db:SECUNIAid:48950
Trust: 1.1
db:JVNDBid:JVNDB-2011-003567
Trust: 0.8
db:BIDid:51194
Trust: 0.4
db:HITACHIid:HS12-007
Trust: 0.3
db:SECUNIAid:47819
Trust: 0.2
db:EXPLOIT-DBid:2012
Trust: 0.1
db:VULMONid:CVE-2011-5035
Trust: 0.1
db:PACKETSTORMid:110181
Trust: 0.1
db:PACKETSTORMid:111624
Trust: 0.1
db:PACKETSTORMid:127267
Trust: 0.1
db:PACKETSTORMid:110284
Trust: 0.1
db:PACKETSTORMid:112144
Trust: 0.1
db:PACKETSTORMid:124943
Trust: 0.1
db:PACKETSTORMid:109353
Trust: 0.1
db:PACKETSTORMid:125436
Trust: 0.1
sources:
            
            
            CERT/CC: VU#903934 // 
            
            
            
            VULMON: CVE-2011-5035 // 
            
            
            
            BID: 51194 // 
            
            
            
            JVNDB: JVNDB-2011-003567 // 
            
            
            
            PACKETSTORM: 110181 // 
            
            
            
            PACKETSTORM: 111624 // 
            
            
            
            PACKETSTORM: 127267 // 
            
            
            
            PACKETSTORM: 110284 // 
            
            
            
            PACKETSTORM: 112144 // 
            
            
            
            PACKETSTORM: 124943 // 
            
            
            
            PACKETSTORM: 109353 // 
            
            
            
            PACKETSTORM: 125436 // 
            
            
            
            NVD: CVE-2011-5035

REFERENCES
url:http://www.ocert.org/advisories/ocert-2011-003.html
Trust: 2.2
url:http://www.nruns.com/_downloads/advisory28122011.pdf
Trust: 2.2
url:http://www.kb.cert.org/vuls/id/903934
Trust: 1.9
url:http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
Trust: 1.4
url:http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html
Trust: 1.4
url:http://security.gentoo.org/glsa/glsa-201406-32.xml
Trust: 1.2
url:http://rhn.redhat.com/errata/rhsa-2012-0514.html
Trust: 1.2
url:https://github.com/firefart/hashcollision-dos-poc/blob/master/hashtablepoc.py
Trust: 1.1
url:http://secunia.com/advisories/48589
Trust: 1.1
url:http://archives.neohapsis.com/archives/bugtraq/2011-12/0181.html
Trust: 1.1
url:http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
Trust: 1.1
url:http://secunia.com/advisories/48950
Trust: 1.1
url:http://www.mandriva.com/security/advisories?name=mdvsa-2013:150
Trust: 1.1
url:http://rhn.redhat.com/errata/rhsa-2013-1455.html
Trust: 1.1
url:http://www.debian.org/security/2012/dsa-2420
Trust: 1.1
url:http://marc.info/?l=bugtraq&m=139344343412337&w=2
Trust: 1.1
url:http://secunia.com/advisories/57126
Trust: 1.1
url:http://marc.info/?l=bugtraq&m=134254957702612&w=2
Trust: 1.1
url:http://marc.info/?l=bugtraq&m=133364885411663&w=2
Trust: 1.1
url:http://marc.info/?l=bugtraq&m=133847939902305&w=2
Trust: 1.1
url:https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16908
Trust: 1.1
url:http://marc.info/?l=bugtraq&m=134254866602253&w=2
Trust: 1.1
url:http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00010.html
Trust: 1.1
url:http://secunia.com/advisories/48073
Trust: 1.1
url:http://secunia.com/advisories/48074
Trust: 1.1
url:http://www.cs.rice.edu/~scrosby/hash/crosbywallach_usenixsec2003.pdf
Trust: 0.8
url:http://technet.microsoft.com/en-us/security/bulletin/ms11-100.mspx
Trust: 0.8
url:http://blogs.technet.com/b/srd/archive/2011/12/27/more-information-about-the-december-2011-asp-net-vulnerability.aspx
Trust: 0.8
url:http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-talk/391606
Trust: 0.8
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-5035
Trust: 0.8
url:http://www.ipa.go.jp/security/ciadr/vul/20120106-web.html
Trust: 0.8
url:http://jvn.jp/cert/jvnvu903934
Trust: 0.8
url:http://jvn.jp/cert/jvnvu514315/
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-5035
Trust: 0.8
url:http://www.ibm.com/developerworks/java/jdk/alerts/
Trust: 0.7
url:https://nvd.nist.gov/vuln/detail/cve-2011-5035
Trust: 0.6
url:https://nvd.nist.gov/vuln/detail/cve-2012-0505
Trust: 0.5
url:https://nvd.nist.gov/vuln/detail/cve-2012-0497
Trust: 0.5
url:https://nvd.nist.gov/vuln/detail/cve-2012-0507
Trust: 0.5
url:https://nvd.nist.gov/vuln/detail/cve-2012-0503
Trust: 0.5
url:https://nvd.nist.gov/vuln/detail/cve-2012-0501
Trust: 0.5
url:https://nvd.nist.gov/vuln/detail/cve-2011-3563
Trust: 0.5
url:https://nvd.nist.gov/vuln/detail/cve-2012-0506
Trust: 0.5
url:https://nvd.nist.gov/vuln/detail/cve-2012-0502
Trust: 0.5
url:http://www.oracle.com/technetwork/topics/security/alert-cve-2011-5035-1506603.html
Trust: 0.4
url:https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03350339
Trust: 0.3
url:http://www.oracle.com/us/products/middleware/application-server/oracle-glassfish-server/index.html
Trust: 0.3
url:http://www-01.ibm.com/support/docview.wss?uid=swg1pm59971
Trust: 0.3
url:http://www-01.ibm.com/support/docview.wss?uid=swg1pm59978
Trust: 0.3
url:http://support.avaya.com/css/p8/documents/100159245
Trust: 0.3
url:http://downloads.avaya.com/css/p8/documents/100160575
Trust: 0.3
url:https://downloads.avaya.com/css/p8/documents/100160941
Trust: 0.3
url:http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c03254184&ac.admitted=1332960372864.876444892.199480143
Trust: 0.3
url:http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c03254184&ac.admitted=1333452463922.876444892.492883150
Trust: 0.3
url:http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs12-007/index.html
Trust: 0.3
url:http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html
Trust: 0.3
url:https://nvd.nist.gov/vuln/detail/cve-2012-0499
Trust: 0.3
url:https://nvd.nist.gov/vuln/detail/cve-2012-0500
Trust: 0.3
url:https://nvd.nist.gov/vuln/detail/cve-2012-0498
Trust: 0.3
url:http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Trust: 0.2
url:https://nvd.nist.gov/vuln/detail/cve-2012-0504
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2469
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2443
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1717
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1716
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0505
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1518
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2419
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3829
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5829
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5804
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1485
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5806
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5087
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2422
Trust: 0.2
url:http://creativecommons.org/licenses/by-sa/2.5
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5075
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2426
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5084
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1711
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2461
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5820
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2470
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0547
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2451
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2459
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5823
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2460
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1713
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5784
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5830
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5800
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2456
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5803
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5086
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2383
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2423
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2447
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2452
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2445
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2450
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5778
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5780
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5073
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1493
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2446
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5069
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-5035
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1500
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5850
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2384
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1557
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2453
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0401
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5085
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2407
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2421
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2429
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5068
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5071
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0497
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5774
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5782
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1725
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5790
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5805
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5802
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5849
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1719
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2448
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2458
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5825
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0506
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1484
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2430
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2415
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3216
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1718
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5772
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5074
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2454
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2444
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5072
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2436
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4416
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1537
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2449
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0503
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2457
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0169
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3563
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0809
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5077
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1723
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1726
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1571
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5081
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5840
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5851
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2465
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2431
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2473
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5783
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2463
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2412
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5809
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2420
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0501
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2417
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2471
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2424
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5076
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5842
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1569
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1724
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5797
Trust: 0.2
url:http://security.gentoo.org/
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5070
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1486
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2472
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1488
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0502
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5814
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5817
Trust: 0.2
url:https://bugs.gentoo.org.
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2455
Trust: 0.2
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5089
Trust: 0.2
url:https://cwe.mitre.org/data/definitions/20.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://www.securityfocus.com/bid/51194
Trust: 0.1
url:https://access.redhat.com/errata/rhsa-2012:0322
Trust: 0.1
url:https://usn.ubuntu.com/1373-2/
Trust: 0.1
url:https://www.exploit-db.com/exploits/2012/
Trust: 0.1
url:http://tools.cisco.com/security/center/viewalert.x?alertid=25553
Trust: 0.1
url:https://launchpad.net/ubuntu/+source/openjdk-6/6b23~pre11-0ubuntu1.11.10.2
Trust: 0.1
url:http://www.ubuntu.com/usn/usn-1373-1
Trust: 0.1
url:https://launchpad.net/ubuntu/+source/openjdk-6/6b22-1.10.6-0ubuntu1
Trust: 0.1
url:https://launchpad.net/ubuntu/+source/openjdk-6/6b20-1.9.13-0ubuntu1~10.10.1
Trust: 0.1
url:https://launchpad.net/ubuntu/+source/openjdk-6/6b20-1.9.13-0ubuntu1~10.04.1
Trust: 0.1
url:http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/
Trust: 0.1
url:https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c02964430
Trust: 0.1
url:https://www.hp.com/go/swa
Trust: 0.1
url:http://www.hp.com/go/java
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4470
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3574
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3423
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3548
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3565
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0864
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3553
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2412
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3557
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2414
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4450
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0865
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4471
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3557
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3562
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3567
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-4002
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1478
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5979
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6954
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4476
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4540
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0429
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0441
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2421
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0870
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3554
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0862
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0706
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0434
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3568
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3561
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4467
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3567
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4465
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4472
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3556
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0425
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3568
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3548
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3541
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3566
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3549
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3562
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3571
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-3555
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0426
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0457
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-2783
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3573
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3552
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0451
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0459
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2423
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1876
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4469
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0431
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0458
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2548
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4448
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3521
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3564
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4465
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3569
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2403
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-2548
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0871
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2398
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0432
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0815
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0444
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1475
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3554
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4469
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3564
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3569
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3573
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0461
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0442
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0427
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3548
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2427
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3541
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3549
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3565
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0872
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0429
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3860
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3422
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0433
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3554
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3574
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4470
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0822
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3553
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2009-3555
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3551
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0025
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1476
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0424
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0435
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3544
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0456
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4450
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0450
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4467
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0460
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3547
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6629
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4448
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2783
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3560
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1480
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4351
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0428
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0869
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3566
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3551
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2397
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0452
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3553
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3558
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0446
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0453
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3860
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3561
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0868
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0440
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0443
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3389
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4351
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3551
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3557
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-3377
Trust: 0.1
url:http://www.debian.org/security/faq
Trust: 0.1
url:http://www.debian.org/security/
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0503.html
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0502.html
Trust: 0.1
url:https://access.redhat.com/security/updates/classification/#critical
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0498.html
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2011-3563.html
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0497.html
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0500.html
Trust: 0.1
url:https://access.redhat.com/security/team/contact/
Trust: 0.1
url:https://www.redhat.com/mailman/listinfo/rhsa-announce
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2011-5035.html
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0499.html
Trust: 0.1
url:https://access.redhat.com/knowledge/articles/11258
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0505.html
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0507.html
Trust: 0.1
url:https://access.redhat.com/security/team/key/#package
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0506.html
Trust: 0.1
url:http://bugzilla.redhat.com/):
Trust: 0.1
url:https://www.redhat.com/security/data/cve/cve-2012-0501.html
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0507
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5870
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0419
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1558
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5818
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1541
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5889
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0449
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2440
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1540
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0385
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2427
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2437
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0445
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0500
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2468
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3743
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0422
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5893
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3159
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3174
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5888
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0437
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1541
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0373
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0351
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1563
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5789
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0504
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1682
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5899
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5801
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0423
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5832
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5848
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0428
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0415
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1719
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1533
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2400
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1564
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3143
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0448
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0438
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5810
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5905
Trust: 0.1
url:http://security.gentoo.org/glsa/glsa-201401-30.xml
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5904
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5831
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0422
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3744
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5854
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2394
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0498
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5852
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5777
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-0547
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0499
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0409
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1532
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2428
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4681
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2462
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0423
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5083
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0375
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2439
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2416
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3136
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0376
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5824
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3342
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5776
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1531
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0417
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1723
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5819
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1722
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5895
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2466
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0403
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0446
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2418
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5788
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0416
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0424
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1473
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5887
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0418
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0410
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0368
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1717
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2425
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1722
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5902
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2432
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0387
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1716
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1533
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2438
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1721
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0382
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5812
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3213
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5846
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1718
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5775
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5787
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5898
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1531
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1481
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2433
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5844
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5906
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1711
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1532
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1561
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2435
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1491
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5910
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1487
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1713
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5907
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5896
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5843
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5067
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1682
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2414
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2467
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5079
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0411
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2012-1721
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1479
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2434
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2442
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2464
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5878
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0408
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0402
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5838
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0430
Trust: 0.1
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5088
Trust: 0.1
url:http://secunia.com/company/jobs/
Trust: 0.1
url:http://secunia.com/vulnerability_intelligence/
Trust: 0.1
url:http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
Trust: 0.1
url:http://secunia.com/advisories/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/vulnerability_scanning/personal/
Trust: 0.1
url:http://secunia.com/advisories/47819/
Trust: 0.1
url:https://ca.secunia.com/?page=viewadvisory&vuln_id=47819
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/advisories/47819/#comments
Trust: 0.1
url:http://secunia.com/advisories/about_secunia_advisories/
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-2204
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2008-2370
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2008-0002
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2009-3548
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-2526
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2009-2902
Trust: 0.1
url:http://www.hp.com
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-0534
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-3718
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2007-6286
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2007-5333
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-3190
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2007-5342
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2009-2693
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2007-5461
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-2227
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2008-1232
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-5063
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2008-1947
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-1184
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-5064
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-4172
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-2481
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-5062
Trust: 0.1
url:https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
Trust: 0.1
url:https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-0013
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2010-1157
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2011-2729
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2009-2901
Trust: 0.1
sources:
            
            
            CERT/CC: VU#903934 // 
            
            
            
            VULMON: CVE-2011-5035 // 
            
            
            
            BID: 51194 // 
            
            
            
            JVNDB: JVNDB-2011-003567 // 
            
            
            
            PACKETSTORM: 110181 // 
            
            
            
            PACKETSTORM: 111624 // 
            
            
            
            PACKETSTORM: 127267 // 
            
            
            
            PACKETSTORM: 110284 // 
            
            
            
            PACKETSTORM: 112144 // 
            
            
            
            PACKETSTORM: 124943 // 
            
            
            
            PACKETSTORM: 109353 // 
            
            
            
            PACKETSTORM: 125436 // 
            
            
            
            NVD: CVE-2011-5035

CREDITS
Alexander Klink, n.runs AG and Julian Waumllde, Technische Universit Darmstadt
Trust: 0.3
sources:
            
            
            BID: 51194

SOURCES
db:CERT/CCid:VU#903934
db:VULMONid:CVE-2011-5035
db:BIDid:51194
db:JVNDBid:JVNDB-2011-003567
db:PACKETSTORMid:110181
db:PACKETSTORMid:111624
db:PACKETSTORMid:127267
db:PACKETSTORMid:110284
db:PACKETSTORMid:112144
db:PACKETSTORMid:124943
db:PACKETSTORMid:109353
db:PACKETSTORMid:125436
db:NVDid:CVE-2011-5035

LAST UPDATE DATE
2025-03-02T19:51:48.997000+00:00

SOURCES UPDATE DATE
db:CERT/CCid:VU#903934date:2016-02-15T00:00:00
db:VULMONid:CVE-2011-5035date:2018-01-06T00:00:00
db:BIDid:51194date:2015-04-13T21:24:00
db:JVNDBid:JVNDB-2011-003567date:2015-03-06T00:00:00
db:NVDid:CVE-2011-5035date:2024-11-21T01:33:28.300

SOURCES RELEASE DATE
db:CERT/CCid:VU#903934date:2011-12-28T00:00:00
db:VULMONid:CVE-2011-5035date:2011-12-30T00:00:00
db:BIDid:51194date:2011-12-29T00:00:00
db:JVNDBid:JVNDB-2011-003567date:2012-01-04T00:00:00
db:PACKETSTORMid:110181date:2012-02-24T22:58:36
db:PACKETSTORMid:111624date:2012-04-06T02:06:18
db:PACKETSTORMid:127267date:2014-06-30T23:39:28
db:PACKETSTORMid:110284date:2012-02-29T16:03:17
db:PACKETSTORMid:112144date:2012-04-25T02:09:03
db:PACKETSTORMid:124943date:2014-01-27T18:30:13
db:PACKETSTORMid:109353date:2012-02-02T03:30:52
db:PACKETSTORMid:125436date:2014-02-26T22:39:24
db:NVDid:CVE-2011-5035date:2011-12-30T01:55:01.640