CVE-2012-0502 | Vulnerability Database | Aqua Security

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.

Affected Software

Name	Vendor	Start Version	End Version
Jre	Sun	*	1.4.2_35 (including)
Jre	Sun	1.4.2 (including)	1.4.2 (including)
Jre	Sun	1.4.2_1 (including)	1.4.2_1 (including)
Jre	Sun	1.4.2_2 (including)	1.4.2_2 (including)
Jre	Sun	1.4.2_3 (including)	1.4.2_3 (including)
Jre	Sun	1.4.2_4 (including)	1.4.2_4 (including)
Jre	Sun	1.4.2_5 (including)	1.4.2_5 (including)
Jre	Sun	1.4.2_6 (including)	1.4.2_6 (including)
Jre	Sun	1.4.2_7 (including)	1.4.2_7 (including)
Jre	Sun	1.4.2_8 (including)	1.4.2_8 (including)
Jre	Sun	1.4.2_9 (including)	1.4.2_9 (including)
Jre	Sun	1.4.2_10 (including)	1.4.2_10 (including)
Jre	Sun	1.4.2_11 (including)	1.4.2_11 (including)
Jre	Sun	1.4.2_12 (including)	1.4.2_12 (including)
Jre	Sun	1.4.2_13 (including)	1.4.2_13 (including)
Jre	Sun	1.4.2_14 (including)	1.4.2_14 (including)
Jre	Sun	1.4.2_15 (including)	1.4.2_15 (including)
Jre	Sun	1.4.2_16 (including)	1.4.2_16 (including)
Jre	Sun	1.4.2_17 (including)	1.4.2_17 (including)
Jre	Sun	1.4.2_18 (including)	1.4.2_18 (including)
Jre	Sun	1.4.2_19 (including)	1.4.2_19 (including)
Jre	Sun	1.4.2_20 (including)	1.4.2_20 (including)
Jre	Sun	1.4.2_21 (including)	1.4.2_21 (including)
Jre	Sun	1.4.2_22 (including)	1.4.2_22 (including)
Jre	Sun	1.4.2_23 (including)	1.4.2_23 (including)
Jre	Sun	1.4.2_24 (including)	1.4.2_24 (including)
Jre	Sun	1.4.2_25 (including)	1.4.2_25 (including)
Jre	Sun	1.4.2_26 (including)	1.4.2_26 (including)
Jre	Sun	1.4.2_27 (including)	1.4.2_27 (including)
Jre	Sun	1.4.2_28 (including)	1.4.2_28 (including)
Jre	Sun	1.4.2_29 (including)	1.4.2_29 (including)
Jre	Sun	1.4.2_30 (including)	1.4.2_30 (including)
Jre	Sun	1.4.2_31 (including)	1.4.2_31 (including)
Jre	Sun	1.4.2_32 (including)	1.4.2_32 (including)
Jre	Sun	1.4.2_33 (including)	1.4.2_33 (including)
Jre	Sun	1.4.2_34 (including)	1.4.2_34 (including)
Extras for RHEL 4	RedHat	java-1.6.0-sun-1:1.6.0.31-1jpp.1.el4	*
Red Hat Enterprise Linux 5	RedHat	java-1.6.0-openjdk-1:1.6.0.0-1.25.1.10.6.el5_8	*
Red Hat Enterprise Linux 6	RedHat	java-1.6.0-openjdk-1:1.6.0.0-1.43.1.10.6.el6_2	*
Red Hat Network Satellite Server v 5.4	RedHat	java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9	*
RHEL 5 for SAP	RedHat	java-1.4.2-ibm-sap-0:1.4.2.13.12.sap-1jpp.2.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-sun-1:1.6.0.31-1jpp.1.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.5.0-ibm-1:1.5.0.13.1-1jpp.1.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-ibm-1:1.6.0.10.1-1jpp.1.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.4.2-ibm-0:1.4.2.13.12-1jpp.1.el5_8	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.6.0-sun-1:1.6.0.31-1jpp.1.el6_2	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.5.0-ibm-1:1.5.0.13.1-1jpp.2.el6_2	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.6.0-ibm-1:1.6.0.10.1-1jpp.5.el6_2	*
Openjdk-6	Ubuntu	hardy	*
Openjdk-6	Ubuntu	lucid	*
Openjdk-6	Ubuntu	maverick	*
Openjdk-6	Ubuntu	natty	*
Openjdk-6	Ubuntu	oneiric	*
Openjdk-6b18	Ubuntu	lucid	*
Openjdk-6b18	Ubuntu	maverick	*
Openjdk-6b18	Ubuntu	natty	*
Openjdk-6b18	Ubuntu	oneiric	*
Openjdk-7	Ubuntu	oneiric	*
Sun-java5	Ubuntu	hardy	*
Sun-java6	Ubuntu	hardy	*

References

http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00015.html
http://marc.info/?l=bugtraq\u0026m=133364885411663\u0026w=2
http://marc.info/?l=bugtraq\u0026m=133365109612558\u0026w=2
http://marc.info/?l=bugtraq\u0026m=133728004526190\u0026w=2
http://marc.info/?l=bugtraq\u0026m=133847939902305\u0026w=2
http://marc.info/?l=bugtraq\u0026m=134254866602253\u0026w=2
http://marc.info/?l=bugtraq\u0026m=134254957702612\u0026w=2
http://rhn.redhat.com/errata/RHSA-2012-0508.html
http://rhn.redhat.com/errata/RHSA-2012-0514.html
http://rhn.redhat.com/errata/RHSA-2012-0702.html
http://rhn.redhat.com/errata/RHSA-2012-1080.html
http://rhn.redhat.com/errata/RHSA-2013-1455.html
http://secunia.com/advisories/48073
http://secunia.com/advisories/48074
http://secunia.com/advisories/48589
http://secunia.com/advisories/48692
http://secunia.com/advisories/48915
http://secunia.com/advisories/48948
http://secunia.com/advisories/48950
http://secunia.com/advisories/49198
http://security.gentoo.org/glsa/glsa-201406-32.xml
http://www.debian.org/security/2012/dsa-2420
http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html
http://www.securityfocus.com/bid/52011
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14900

NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-0502
CWE	https://cwe.mitre.org/data/definitions/.html