CVE-2011-3377

The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://dbhole.wordpress.com/2011/11/08/icedtea-web-1-0-6-and-1-1-4-security-releases-released/	Patch Vendor Advisory
http://lists.opensuse.org/opensuse-updates/2012-03/msg00028.html
http://rhn.redhat.com/errata/RHSA-2011-1441.html
http://www.debian.org/security/2012/dsa-2420
http://www.osvdb.org/76940
http://www.securityfocus.com/bid/50610
http://www.ubuntu.com/usn/USN-1263-1
https://bugzilla.redhat.com/show_bug.cgi?id=742515

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:redhat:icedtea-web:1.0:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.1:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.2:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.3:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.4:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.5:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1.1:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1.2:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1.3:::::::*

Configuration 2 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:::::*
	cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:11.04:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::*
	cpe:2.3:o:opensuse:opensuse:12.1:::::::*

History

No history.

Information

Published : 2014-02-05 19:55

Updated : 2018-10-30 16:27

NVD link : CVE-2011-3377

Mitre link : CVE-2011-3377

CVE.ORG link : CVE-2011-3377

JSON object : View

Products Affected

opensuse

opensuse

canonical

ubuntu_linux

redhat

icedtea-web

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2011-3377", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-02-05T19:55:28.607", "references": [{"url": "http://dbhole.wordpress.com/2011/11/08/icedtea-web-1-0-6-and-1-1-4-security-releases-released/", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://lists.opensuse.org/opensuse-updates/2012-03/msg00028.html", "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2011-1441.html", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2012/dsa-2420", "source": "secalert@redhat.com"}, {"url": "http://www.osvdb.org/76940", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/50610", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-1263-1", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=742515", "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain."}, {"lang": "es", "value": "El plug-in de navegador web en IcedTea-Web 1.0.x anterior a 1.0.6 y 1.1.x anterior a 1.1.4, permite a atacantes remotos evadir el Same Origin Policy (SOP) y ejecutar script arbitrario o establecer conexiones de red hacia hosts no deseados a trav\u00e9s de un applet cuyo origen tiene el mismo dominio de segundo nivel, pero un sub-dominio diferente que el dominio objetivo."}], "lastModified": "2018-10-30T16:27:33.653", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "941141AF-7E4A-4302-82A0-410D5694983A"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6B24564-AA45-4A26-BB3D-8C9B8DF8EBD2"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0882F9F6-0C78-472E-82B2-0DCD3909EBAF"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD2BD3A8-D9E9-46E7-AEC9-B5511A10C472"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D8C118E-EF65-448B-940F-9892C59013DC"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "042B0E43-92C9-42F3-B6F3-7AE3F044FB5E"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69F3FB66-F6C8-449C-9650-B0D906E307AA"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FDD91C17-3187-4150-A77A-A012D2A74AA8"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08431724-45B6-48A3-BEA4-94F9BC27B5EB"}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D798F99B-D6C3-48B8-B186-C4B2B542D246"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7118F616-25CA-4E34-AA13-4D14BB62419F"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF49D26F-142E-468B-87C1-BABEA445255C"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4174F4F-149E-41A6-BBCC-D01114C05F38"}, {"criteria": "cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EBB2C482-D2A4-48B3-ACE7-E1DFDCC409B5"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}

4.3 /10