Vulnerability Description
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Jdk | <= 1.6.0 |
| Sun | Jre | <= 1.6.0 |
References
- http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html
- http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00003.html
- http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00009.html
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00022.html
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00025.html
- http://marc.info/?l=bugtraq&m=132439520301822&w=2
- http://marc.info/?l=bugtraq&m=134254866602253&w=2
- http://marc.info/?l=bugtraq&m=134254957702612&w=2
- http://secunia.com/advisories/44930
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://support.avaya.com/css/P8/documents/100147041
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-015/inde
- http://www.ibm.com/developerworks/java/jdk/alerts/
FAQ
What is CVE-2011-0872?
CVE-2011-0872 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO.
How severe is CVE-2011-0872?
CVE-2011-0872 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-0872?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Jdk, Sun Jre.