CVE-2011-3547

Oracle JDK and JRE - Information Disclosure via Networking

Title source: llm

Description

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.

References (23)

Core 23

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1455.html

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=134254866602253&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/70846

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=133365109612558&w=2

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=132750579901589&w=2

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2011-1478.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/76511

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2011-1384.html

Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=134254957702612&w=2

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2012-0006.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=133728004526190&w=2

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1263-1

Various Sources x_refsource_confirm

http://www.ibm.com/developerworks/java/jdk/alerts/

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14339

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-201406-32.xml

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/48692

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/48308

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/49198

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/50243

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1026215

Scores

EPSS 0.0152

EPSS Percentile 81.5%

Details

Status published

Products (8)

oracle/jdk 1.6.0 update22 (5 CPE variants)

oracle/jdk 1.7.0

oracle/jdk < 1.6.0

oracle/jre 1.6.0 update22 (5 CPE variants)

oracle/jre 1.7.0

oracle/jre < 1.6.0

sun/jdk 1.6.0 (22 CPE variants)

sun/jdk 1.5.0 (14 CPE variants)

Published Oct 19, 2011

Tracked Since Feb 18, 2026