Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2011-0025

IcedTea 1.7 before 1.7.8, 1.8 before 1.8.5, and 1.9 before 1.9.5 does not properly verify signatures for JAR files that (1) are "partially signed" or (2) signed by multiple entities, which allows remote attackers to trick users into executing code that appears to come from a trusted source.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.025
EPSS Ranking 84.6%
CVSS Severity
CVSS v2 Score 6.8
References
Products affected by CVE-2011-0025
  • Redhat » Icedtea » Version: 1.7
    cpe:2.3:a:redhat:icedtea:1.7
  • Redhat » Icedtea » Version: 1.7.1
    cpe:2.3:a:redhat:icedtea:1.7.1
  • Redhat » Icedtea » Version: 1.7.2
    cpe:2.3:a:redhat:icedtea:1.7.2
  • Redhat » Icedtea » Version: 1.7.3
    cpe:2.3:a:redhat:icedtea:1.7.3
  • Redhat » Icedtea » Version: 1.7.4
    cpe:2.3:a:redhat:icedtea:1.7.4
  • Redhat » Icedtea » Version: 1.7.5
    cpe:2.3:a:redhat:icedtea:1.7.5
  • Redhat » Icedtea » Version: 1.7.6
    cpe:2.3:a:redhat:icedtea:1.7.6
  • Redhat » Icedtea » Version: 1.7.7
    cpe:2.3:a:redhat:icedtea:1.7.7
  • Redhat » Icedtea » Version: 1.8
    cpe:2.3:a:redhat:icedtea:1.8
  • Redhat » Icedtea » Version: 1.8.1
    cpe:2.3:a:redhat:icedtea:1.8.1
  • Redhat » Icedtea » Version: 1.8.2
    cpe:2.3:a:redhat:icedtea:1.8.2
  • Redhat » Icedtea » Version: 1.8.3
    cpe:2.3:a:redhat:icedtea:1.8.3
  • Redhat » Icedtea » Version: 1.8.4
    cpe:2.3:a:redhat:icedtea:1.8.4
  • Redhat » Icedtea » Version: 1.9
    cpe:2.3:a:redhat:icedtea:1.9
  • Redhat » Icedtea » Version: 1.9.1
    cpe:2.3:a:redhat:icedtea:1.9.1
  • Redhat » Icedtea » Version: 1.9.2
    cpe:2.3:a:redhat:icedtea:1.9.2
  • Redhat » Icedtea » Version: 1.9.3
    cpe:2.3:a:redhat:icedtea:1.9.3
  • Redhat » Icedtea » Version: 1.9.4
    cpe:2.3:a:redhat:icedtea:1.9.4


Products
Pricing
Contact Us

Shodan ® - All rights reserved