CVE-2015-5234
medium
CVSS v3
—
CVSS v2
6.8
VIR risk
6.8
Description
IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2015-5234
Vendor advisory: secalert@redhat.com — http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2015-September/033546.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 1.6.1-1 |
| debian | bullseye | fixed | 1.6.1-1 |
| debian | forky | fixed | 1.6.1-1 |
| debian | sid | fixed | 1.6.1-1 |
| debian | trixie | fixed | 1.6.1-1 |
| suse | 13.1 | affected | |
| suse | 13.2 | affected | |
| fedora | 21 | affected | |
| fedora | 22 | affected | |
| rhel | 6.0 | affected | |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167120.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167130.html
- http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00019.html
- http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2015-September/033546.html
- http://rhn.redhat.com/errata/RHSA-2016-0778.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.securitytracker.com/id/1033780
- http://www.ubuntu.com/usn/USN-2817-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1233667
- https://security-tracker.debian.org/tracker/CVE-2015-5234
CWEs
CWE-20
Verify integrity in audit chain (admin only). AS-IS.