Skip to navigation

CVE Database

CVE-2011-0869

Impact: Moderate
Public: 2011-06-02
Bugzilla: 706234: CVE-2011-0869 OpenJDK: unprivileged proxy settings change via SOAPConnection (SAAJ, 7013971)
IAVA: 2012-B-0048

Details

The MITRE CVE dictionary describes this issue as:

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 26 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to SAAJ.

Find out more about CVE-2011-0869 from the MITRE CVE dictionary and NIST NVD.

CVSS v2 metrics

Base Score: 4.3
Base Metrics: AV:N/AC:M/Au:N/C:P/I:N/A:N
Access Vector: Network
Access Complexity: Medium
Authentication: None
Confidentiality Impact: Partial
Integrity Impact: None
Availability Impact: None

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.6.0-ibm) RHSA-2011:0938 July 15, 2011
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.6.0-sun) RHSA-2011:0860 June 08, 2011
Red Hat Enterprise Linux Supplementary version 6 (java-1.6.0-ibm) RHSA-2011:0938 July 15, 2011
Red Hat Enterprise Linux Supplementary version 6 (java-1.6.0-sun) RHSA-2011:0860 June 08, 2011
Red Hat Enterprise Linux version 4 Extras (java-1.6.0-ibm) RHSA-2011:0938 July 15, 2011
Red Hat Enterprise Linux version 4 Extras (java-1.6.0-sun) RHSA-2011:0860 June 08, 2011
Red Hat Enterprise Linux version 5 (java-1.6.0-openjdk) RHSA-2011:0857 June 08, 2011
Red Hat Enterprise Linux version 6 (java-1.6.0-openjdk) RHSA-2011:0856 June 08, 2011
Red Hat Satellite 5.4 (RHEL v.5) (java-1.6.0-ibm) RHSA-2013:1455 October 23, 2013
Red Hat Satellite 5.4 (RHEL v.6) (java-1.6.0-ibm) RHSA-2013:1455 October 23, 2013

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.