CVE-2012-0508

Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX, 1.3.0 and earlier, and 1.2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://marc.info/?l=bugtraq&m=134254866602253&w=2	Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=134254957702612&w=2	Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=134496371727681&w=2	Mailing List Third Party Advisory
http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:javafx::::::::
	cpe:2.3:a:oracle:javafx:1.3.0:::::::*

History

No history.

Information

Published : 2012-02-15 22:55

Updated : 2023-12-10 11:03

NVD link : CVE-2012-0508

Mitre link : CVE-2012-0508

CVE.ORG link : CVE-2012-0508

JSON object : View

Products Affected

oracle

javafx

CWE

NVD-CWE-noinfo

{"id": "CVE-2012-0508", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-02-15T22:55:01.550", "references": [{"url": "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://marc.info/?l=bugtraq&m=134496371727681&w=2", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX, 1.3.0 and earlier, and 1.2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente JavaFX en Oracle Java SE JavaFX v1.3.0 y anteriores, y v1.2.2 y anteriores, permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos."}], "lastModified": "2019-10-09T23:04:19.900", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:javafx:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EB723C0-5F15-47DE-89C2-8529398A741A", "versionEndIncluding": "1.2.2"}, {"criteria": "cpe:2.3:a:oracle:javafx:1.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FC888EE-3C31-403A-B91B-1F7502900AF1"}], "operator": "OR"}]}], "evaluatorImpact": "Per: http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html\r\n\r\n'Applies to client deployments of Java.'", "sourceIdentifier": "secalert_us@oracle.com"}