CVE-2014-0387

high

Description

Unspecified vulnerability in Oracle Java SE 6u65 and Java SE 7u45, when running on Firefox, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

References

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

http://www.securityfocus.com/bid/64758

http://www.securitytracker.com/id/1029608

http://www.securityfocus.com/bid/64882

http://secunia.com/advisories/56485

http://secunia.com/advisories/56535

http://osvdb.org/102002

http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html

http://rhn.redhat.com/errata/RHSA-2014-0135.html

http://rhn.redhat.com/errata/RHSA-2014-0030.html

http://rhn.redhat.com/errata/RHSA-2014-0134.html

http://marc.info/?l=bugtraq&m=139402697611681&w=2

http://marc.info/?l=bugtraq&m=139402749111889&w=2

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00024.html

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777

https://access.redhat.com/errata/RHSA-2014:0414

Details

Source: MITRE

Published: 2014-01-15

Updated: 2022-05-13

Risk Information

CVSS v2

Base Score: 7.6

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 4.9

Severity: HIGH