CVE-2010-3860
Published Dec 8, 2010
Last updated 10 years ago
Overview
- Description
- IcedTea 1.7.x before 1.7.6, 1.8.x before 1.8.3, and 1.9.x before 1.9.2, as based on OpenJDK 6, declares multiple sensitive variables as public, which allows remote attackers to obtain sensitive information including (1) user.name, (2) user.home, and (3) java.home system properties, and other sensitive information such as installation directories.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:icedtea:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B92BB0F-7A23-43D6-94EB-A7CDCB067D49",
"versionEndIncluding": "1.9.1"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.5:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55935550-05A5-4A7A-A4C4-6FFC902944EA"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.5:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "620D7177-4DC8-4B26-92CF-36CDB26EE655"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.5:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4C9ABE9A-B40A-4C0E-8EDC-C8CEDC7815FB"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "28570EF8-C777-4AA9-BD96-ADA1D4B09B91"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4833BFF6-1B29-4455-BA90-A11DE1F6D008"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "68D8D8B4-8E82-4D08-9D39-2D94418D06E4"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C3AD9684-D2D7-496B-B77A-2798244CB112"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.8.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C6D37313-09D9-4726-B083-1FD83A602DE3"
},
{
"criteria": "cpe:2.3:a:redhat:icedtea:1.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3303605E-F164-4B9F-90E5-55E47C1C568B"
}
],
"operator": "OR"
}
]
}
]