CVE-2011-0866 — HIGH (7.6) — White Hats Nepal

Q: How severe is CVE-2011-0866?

CVE-2011-0866 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2011-0866?

Check the references section above for vendor advisories and patch information. Affected products include: Sun Jdk, Sun Jre.

Vulnerability Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Java Runtime Environment.

CVSS Score

7.6

HIGH

AV:N/AC:H/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Sun	Jdk	<= 1.4.2_31
Sun	Jre	<= 1.4.2_31

References

FAQ

What is CVE-2011-0866?

CVE-2011-0866 is a vulnerability with a CVSS score of 7.6 (HIGH). Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier, when running on Windows, allow...

How severe is CVE-2011-0866?

CVE-2011-0866 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-0866?

Check the references section above for vendor advisories and patch information. Affected products include: Sun Jdk, Sun Jre.