Skip to navigation

CVE Database

CVE-2012-5087

Impact: Critical
Public: 2012-10-16
Bugzilla: 865434: CVE-2012-5087 OpenJDK: PropertyElementHandler insufficient access checks (Beans, 7195549)

Details

The MITRE CVE dictionary describes this issue as:

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans.

Find out more about CVE-2012-5087 from the MITRE CVE dictionary and NIST NVD.

CVSS v2 metrics

Base Score: 6.8
Base Metrics: AV:N/AC:M/Au:N/C:P/I:P/A:P
Access Vector: Network
Access Complexity: Medium
Authentication: None
Confidentiality Impact: Partial
Integrity Impact: Partial
Availability Impact: Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux Supplementary version 6 (java-1.7.0-ibm) RHSA-2012:1467 November 15, 2012
Red Hat Enterprise Linux Supplementary version 6 (java-1.7.0-oracle) RHSA-2012:1391 October 18, 2012
Red Hat Enterprise Linux version 6 (java-1.7.0-openjdk) RHSA-2012:1386 October 17, 2012

External References

http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.