Language:
Severity: Critical
ID: 62709
File Name: ubuntu_USN-1619-1.nasl
Version: 1.23
Type: local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 10/26/2012
Updated: 3/29/2022
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Factor: Critical
Score: 9.8
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CPE: p-cpe:/a:canonical:ubuntu_linux:openjdk-7-jre-lib, p-cpe:/a:canonical:ubuntu_linux:openjdk-7-jre-zero, cpe:/o:canonical:ubuntu_linux:10.04:-:lts, cpe:/o:canonical:ubuntu_linux:11.10, p-cpe:/a:canonical:ubuntu_linux:icedtea-7-jre-jamvm, cpe:/o:canonical:ubuntu_linux:12.04:-:lts, p-cpe:/a:canonical:ubuntu_linux:openjdk-7-jre, p-cpe:/a:canonical:ubuntu_linux:openjdk-6-jre-lib, p-cpe:/a:canonical:ubuntu_linux:openjdk-6-jre-headless, p-cpe:/a:canonical:ubuntu_linux:openjdk-6-jre, p-cpe:/a:canonical:ubuntu_linux:openjdk-6-jre-zero, cpe:/o:canonical:ubuntu_linux:12.10, p-cpe:/a:canonical:ubuntu_linux:icedtea-6-jre-cacao, p-cpe:/a:canonical:ubuntu_linux:openjdk-7-jre-headless, cpe:/o:canonical:ubuntu_linux:11.04, p-cpe:/a:canonical:ubuntu_linux:icedtea-6-jre-jamvm, p-cpe:/a:canonical:ubuntu_linux:icedtea-7-jre-cacao
Required KB Items: Host/cpu, Host/Ubuntu, Host/Ubuntu/release, Host/Debian/dpkg-l
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/26/2012
Vulnerability Publication Date: 10/16/2012
CISA Known Exploited Vulnerability Due Dates: 4/18/2022
CANVAS (CANVAS)
Core Impact
Metasploit (Java Applet Method Handle Remote Code Execution)
CVE: CVE-2012-1531, CVE-2012-1532, CVE-2012-1533, CVE-2012-3143, CVE-2012-3159, CVE-2012-3216, CVE-2012-4416, CVE-2012-5067, CVE-2012-5068, CVE-2012-5069, CVE-2012-5070, CVE-2012-5071, CVE-2012-5072, CVE-2012-5073, CVE-2012-5074, CVE-2012-5075, CVE-2012-5076, CVE-2012-5077, CVE-2012-5079, CVE-2012-5081, CVE-2012-5083, CVE-2012-5084, CVE-2012-5085, CVE-2012-5086, CVE-2012-5087, CVE-2012-5088, CVE-2012-5089
BID: 55501, 56025, 56033, 56039, 56046, 56051, 56055, 56056, 56058, 56059, 56061, 56065, 56067, 56070, 56072, 56075, 56076, 56079, 56080, 56081, 56082, 56083
USN: 1619-1