Vulnerability Description
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Glassfish Server | 3.1.1 |
| Oracle | Jdk | <= 1.6.0 |
| Oracle | Jre | <= 1.6.0 |
| Sun | Jdk | 1.6.0 |
| Sun | Jre | 1.6.0 |
References
- http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html
- http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html
- http://marc.info/?l=bugtraq&m=134496371727681&w=2
- http://rhn.redhat.com/errata/RHSA-2012-0734.html
- http://rhn.redhat.com/errata/RHSA-2013-1455.html
- http://rhn.redhat.com/errata/RHSA-2013-1456.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html
- http://www.securityfocus.com/bid/53136
- http://www.securitytracker.com/id?1026941
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html
- http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html
- http://marc.info/?l=bugtraq&m=134496371727681&w=2
FAQ
What is CVE-2012-0551?
CVE-2012-0551 is a vulnerability with a CVSS score of 5.8 (MEDIUM). Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Produc...
How severe is CVE-2012-0551?
CVE-2012-0551 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-0551?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Glassfish Server, Oracle Jdk, Oracle Jre, Sun Jdk, Sun Jre.