Details of VAR-201210-0280

ID

VAR-201210-0280

CVE

CVE-2012-5081

TITLE

TLS implementations may disclose side channel information via discrepancies between valid and invalid PKCS#1 padding

Trust: 0.8

sources: CERT/CC: VU#144389

DESCRIPTION

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect availability, related to JSSE. TLS implementations may disclose side channel information via discrepancies between valid and invalid PKCS#1 padding, and may therefore be vulnerable to Bleichenbacher-style attacks. This attack is known as a "ROBOT attack". The vulnerability can be exploited over the 'SSL/TLS' protocol. This issue affects the 'JSSE' sub-component. This vulnerability affects the following supported versions: 7 Update 7, 6 Update 35, 5.0 Update 36, 1.4.2_38. In a typical operating environment, these are of low security risk as the runtime is not used on untrusted applets. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory and Oracle Security Alert pages, listed in the References section. Customers are advised to migrate to later versions of Java at this time. In cases where it is not feasible to move to a later version of supported Java, customers are advised to contact IBM to evaluate other options. ============================================================================ Ubuntu Security Notice USN-1619-1 October 26, 2012 openjdk-6, openjdk-7 vulnerabilities ============================================================================ A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.10 - Ubuntu 12.04 LTS - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.04 LTS Summary: Several security issues were fixed in OpenJDK. Software Description: - openjdk-7: Open Source Java implementation - openjdk-6: Open Source Java implementation Details: Several information disclosure vulnerabilities were discovered in the OpenJDK JRE. (CVE-2012-3216, CVE-2012-5069, CVE-2012-5072, CVE-2012-5075, CVE-2012-5077, CVE-2012-5085) Vulnerabilities were discovered in the OpenJDK JRE related to information disclosure and data integrity. (CVE-2012-4416, CVE-2012-5071) Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure and data integrity. An attacker could exploit these to cause a denial of service. (CVE-2012-1531, CVE-2012-1532, CVE-2012-1533, CVE-2012-3143, CVE-2012-3159, CVE-2012-5068, CVE-2012-5083, CVE-2012-5084, CVE-2012-5086, CVE-2012-5089) Information disclosure vulnerabilities were discovered in the OpenJDK JRE. These issues only affected Ubuntu 12.10. (CVE-2012-5067, CVE-2012-5070) Vulnerabilities were discovered in the OpenJDK JRE related to data integrity. (CVE-2012-5073, CVE-2012-5079) A vulnerability was discovered in the OpenJDK JRE related to information disclosure and data integrity. (CVE-2012-5074) Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure and data integrity. An attacker could exploit these to cause a denial of service. These issues only affected Ubuntu 12.10. (CVE-2012-5081) Please see the following for more information: http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.10: icedtea-7-jre-cacao 7u9-2.3.3-0ubuntu1~12.10.1 icedtea-7-jre-jamvm 7u9-2.3.3-0ubuntu1~12.10.1 openjdk-7-jre 7u9-2.3.3-0ubuntu1~12.10.1 openjdk-7-jre-headless 7u9-2.3.3-0ubuntu1~12.10.1 openjdk-7-jre-lib 7u9-2.3.3-0ubuntu1~12.10.1 openjdk-7-jre-zero 7u9-2.3.3-0ubuntu1~12.10.1 Ubuntu 12.04 LTS: icedtea-6-jre-cacao 6b24-1.11.5-0ubuntu1~12.04.1 icedtea-6-jre-jamvm 6b24-1.11.5-0ubuntu1~12.04.1 openjdk-6-jre 6b24-1.11.5-0ubuntu1~12.04.1 openjdk-6-jre-headless 6b24-1.11.5-0ubuntu1~12.04.1 openjdk-6-jre-lib 6b24-1.11.5-0ubuntu1~12.04.1 openjdk-6-jre-zero 6b24-1.11.5-0ubuntu1~12.04.1 Ubuntu 11.10: icedtea-6-jre-cacao 6b24-1.11.5-0ubuntu1~11.10.1 icedtea-6-jre-jamvm 6b24-1.11.5-0ubuntu1~11.10.1 openjdk-6-jre 6b24-1.11.5-0ubuntu1~11.10.1 openjdk-6-jre-headless 6b24-1.11.5-0ubuntu1~11.10.1 openjdk-6-jre-lib 6b24-1.11.5-0ubuntu1~11.10.1 openjdk-6-jre-zero 6b24-1.11.5-0ubuntu1~11.10.1 Ubuntu 11.04: icedtea-6-jre-cacao 6b24-1.11.5-0ubuntu1~11.04.1 icedtea-6-jre-jamvm 6b24-1.11.5-0ubuntu1~11.04.1 openjdk-6-jre 6b24-1.11.5-0ubuntu1~11.04.1 openjdk-6-jre-headless 6b24-1.11.5-0ubuntu1~11.04.1 openjdk-6-jre-lib 6b24-1.11.5-0ubuntu1~11.04.1 openjdk-6-jre-zero 6b24-1.11.5-0ubuntu1~11.04.1 Ubuntu 10.04 LTS: icedtea-6-jre-cacao 6b24-1.11.5-0ubuntu1~10.04.2 openjdk-6-jre 6b24-1.11.5-0ubuntu1~10.04.2 openjdk-6-jre-headless 6b24-1.11.5-0ubuntu1~10.04.2 openjdk-6-jre-lib 6b24-1.11.5-0ubuntu1~10.04.2 openjdk-6-jre-zero 6b24-1.11.5-0ubuntu1~10.04.2 This update uses a new upstream release, which includes additional bug fixes. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Important: java-1.7.0-openjdk security update Advisory ID: RHSA-2012:1386-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2012-1386.html Issue date: 2012-10-17 CVE Names: CVE-2012-3216 CVE-2012-4416 CVE-2012-5068 CVE-2012-5069 CVE-2012-5070 CVE-2012-5071 CVE-2012-5072 CVE-2012-5073 CVE-2012-5074 CVE-2012-5075 CVE-2012-5076 CVE-2012-5077 CVE-2012-5079 CVE-2012-5081 CVE-2012-5084 CVE-2012-5085 CVE-2012-5086 CVE-2012-5087 CVE-2012-5088 CVE-2012-5089 ===================================================================== 1. Summary: Updated java-1.7.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, noarch, x86_64 3. Description: These packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Software Development Kit. Multiple improper permission check issues were discovered in the Beans, Libraries, Swing, and JMX components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. (CVE-2012-5086, CVE-2012-5087, CVE-2012-5088, CVE-2012-5084, CVE-2012-5089) The default Java security properties configuration did not restrict access to certain com.sun.org.glassfish packages. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. This update lists those packages as restricted. (CVE-2012-5076, CVE-2012-5074) Multiple improper permission check issues were discovered in the Scripting, JMX, Concurrency, Libraries, and Security components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions. (CVE-2012-5068, CVE-2012-5071, CVE-2012-5069, CVE-2012-5073, CVE-2012-5072) It was discovered that java.util.ServiceLoader could create an instance of an incompatible class while performing provider lookup. An untrusted Java application or applet could use this flaw to bypass certain Java sandbox restrictions. (CVE-2012-5079) It was discovered that the Java Secure Socket Extension (JSSE) SSL/TLS implementation did not properly handle handshake records containing an overly large data length value. An unauthenticated, remote attacker could possibly use this flaw to cause an SSL/TLS server to terminate with an exception. (CVE-2012-5081) It was discovered that the JMX component in OpenJDK could perform certain actions in an insecure manner. An untrusted Java application or applet could possibly use these flaws to disclose sensitive information. (CVE-2012-5070, CVE-2012-5075) A bug in the Java HotSpot Virtual Machine optimization code could cause it to not perform array initialization in certain cases. An untrusted Java application or applet could use this flaw to disclose portions of the virtual machine's memory. (CVE-2012-4416) It was discovered that the SecureRandom class did not properly protect against the creation of multiple seeders. An untrusted Java application or applet could possibly use this flaw to disclose sensitive information. (CVE-2012-5077) It was discovered that the java.io.FilePermission class exposed the hash code of the canonicalized path name. An untrusted Java application or applet could possibly use this flaw to determine certain system paths, such as the current working directory. (CVE-2012-3216) This update disables Gopher protocol support in the java.net package by default. Gopher support can be enabled by setting the newly introduced property, "jdk.net.registerGopherProtocol", to true. (CVE-2012-5085) This erratum also upgrades the OpenJDK package to IcedTea7 2.3.3. Refer to the NEWS file, linked to in the References, for further information. All users of java-1.7.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 856124 - CVE-2012-4416 OpenJDK: uninitialized Array JVM memory disclosure (Hotspot, 7198606) 865346 - CVE-2012-3216 OpenJDK: java.io.FilePermission information leak (Libraries, 6631398) 865348 - CVE-2012-5068 OpenJDK: RhinoScriptEngine security bypass (Scripting, 7143535) 865350 - CVE-2012-5070 OpenJDK: EnvHelp information disclosure (JMX, 7158796) 865352 - CVE-2012-5076 OpenJDK: com.sun.org.glassfish.* not restricted packages (JAX-WS, 7163198) 865354 - CVE-2012-5077 OpenJDK: SecureRandom mulitple seeders information disclosure (Security, 7167656) 865357 - CVE-2012-5073 OpenJDK: LogManager security bypass (Libraries, 7169884) 865359 - CVE-2012-5074 OpenJDK: com.sun.org.glassfish.* not restricted packages (JAX-WS, 7169887) 865363 - CVE-2012-5075 OpenJDK: RMIConnectionImpl information disclosure (JMX, 7169888) 865365 - CVE-2012-5072 OpenJDK: AccessController.doPrivilegedWithCombiner() information disclosure (Security, 7172522) 865370 - CVE-2012-5081 OpenJDK: JSSE denial of service (JSSE, 7186286) 865428 - CVE-2012-5086 OpenJDK: XMLDecoder sandbox restriction bypass (Beans, 7195917) 865434 - CVE-2012-5087 OpenJDK: PropertyElementHandler insufficient access checks (Beans, 7195549) 865471 - CVE-2012-5088 OpenJDK: MethodHandle insufficient access control checks (Libraries, 7196190) 865511 - CVE-2012-5084 OpenJDK: DefaultFormatter insufficient data validation (Swing, 7195194) 865514 - CVE-2012-5089 OpenJDK: RMIConnectionImpl insufficient access control checks (JMX, 7198296) 865519 - CVE-2012-5071 OpenJDK: DescriptorSupport insufficient package access checks (JMX, 7192975) 865531 - CVE-2012-5069 OpenJDK: Executors state handling issues (Concurrency, 7189103) 865541 - CVE-2012-5085 OpenJDK: disable Gopher support by default (Gopher, 7189567) 865568 - CVE-2012-5079 OpenJDK: ServiceLoader reject not subtype classes without instantiating (Libraries, 7195919) 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.src.rpm i386: java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.i686.rpm x86_64: java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.src.rpm i386: java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-demo-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-devel-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-src-1.7.0.9-2.3.3.el6_3.1.i686.rpm noarch: java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.3.el6_3.1.noarch.rpm x86_64: java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.src.rpm noarch: java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.3.el6_3.1.noarch.rpm x86_64: java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.src.rpm i386: java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.i686.rpm x86_64: java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.src.rpm i386: java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-demo-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-devel-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-src-1.7.0.9-2.3.3.el6_3.1.i686.rpm noarch: java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.3.el6_3.1.noarch.rpm x86_64: java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.src.rpm i386: java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.i686.rpm x86_64: java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.9-2.3.3.el6_3.1.src.rpm i386: java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-demo-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-devel-1.7.0.9-2.3.3.el6_3.1.i686.rpm java-1.7.0-openjdk-src-1.7.0.9-2.3.3.el6_3.1.i686.rpm noarch: java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.3.el6_3.1.noarch.rpm x86_64: java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.9-2.3.3.el6_3.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://www.redhat.com/security/data/cve/CVE-2012-3216.html https://www.redhat.com/security/data/cve/CVE-2012-4416.html https://www.redhat.com/security/data/cve/CVE-2012-5068.html https://www.redhat.com/security/data/cve/CVE-2012-5069.html https://www.redhat.com/security/data/cve/CVE-2012-5070.html https://www.redhat.com/security/data/cve/CVE-2012-5071.html https://www.redhat.com/security/data/cve/CVE-2012-5072.html https://www.redhat.com/security/data/cve/CVE-2012-5073.html https://www.redhat.com/security/data/cve/CVE-2012-5074.html https://www.redhat.com/security/data/cve/CVE-2012-5075.html https://www.redhat.com/security/data/cve/CVE-2012-5076.html https://www.redhat.com/security/data/cve/CVE-2012-5077.html https://www.redhat.com/security/data/cve/CVE-2012-5079.html https://www.redhat.com/security/data/cve/CVE-2012-5081.html https://www.redhat.com/security/data/cve/CVE-2012-5084.html https://www.redhat.com/security/data/cve/CVE-2012-5085.html https://www.redhat.com/security/data/cve/CVE-2012-5086.html https://www.redhat.com/security/data/cve/CVE-2012-5087.html https://www.redhat.com/security/data/cve/CVE-2012-5088.html https://www.redhat.com/security/data/cve/CVE-2012-5089.html https://access.redhat.com/security/updates/classification/#important http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.3/NEWS http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2012 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFQftouXlSAg2UNWIIRAu4QAJ9oluAxlU3ZC8CvezRk4Erm08HD+QCeNlqf GG07IH3dgJiG+gj47Cm1WNQ= =8X+P -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 2.7

sources: NVD: CVE-2012-5081 // CERT/CC: VU#144389 // BID: 56071 // VULMON: CVE-2012-5081 // PACKETSTORM: 123734 // PACKETSTORM: 117478 // PACKETSTORM: 118306 // PACKETSTORM: 123735 // PACKETSTORM: 118139 // PACKETSTORM: 117704 // PACKETSTORM: 118142 // PACKETSTORM: 117452

AFFECTED PRODUCTS

vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_36	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_35	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_33	Trust: 1.6
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_18	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_32	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_37	Trust: 1.6
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_17	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_34	Trust: 1.6
vendor:	sun	model:	jdk	scope:	eq	version:	1.6.0.210	Trust: 1.6
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_19	Trust: 1.6
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_25	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_3	Trust: 1.0
vendor:	oracle	model:	jre	scope:	eq	version:	1.7.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_22	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.7.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_13	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_7	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_12	Trust: 1.0
vendor:	oracle	model:	jre	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_30	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_25	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_3	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_19	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_22	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_26	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_30	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.7.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_15	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_27	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_26	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_14	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	eq	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_27	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_34	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_14	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_5	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_18	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_7	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_5	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_17	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.6.0.200	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_2	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_1	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_16	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_4	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_23	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_15	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_2	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_11	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_10	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_29	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_35	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_33	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_23	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_6	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_21	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_13	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_32	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_10	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_29	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_9	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_36	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_28	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_6	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.4.2_38	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_8	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_9	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_20	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_28	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_24	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_31	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_8	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_1	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_16	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.4.2_38	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_37	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_4	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_12	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2_11	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.4.2_31	Trust: 1.0
vendor:	sun	model:	jre 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 08	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	sdk 24	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 10	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 15	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 01	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 16	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 10	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 08	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 22	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 18	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 12	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 22	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 05	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 12	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 24	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 09	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 12	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 02	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 18	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 07	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 03	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 01	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 15	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	sdk 07	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	sdk	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 22	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 03	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 01	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 17	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	sdk 09	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 14	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 02	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 10	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 01	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 18	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.4.2 16	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 06	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk 18	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk	scope:	eq	version:	1.7	Trust: 0.9
vendor:	sun	model:	sdk 04	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 16	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	sdk 1.4.2 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 15	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 02	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	sdk 03	scope:	eq	version:	1.4.2	Trust: 0.9
vendor:	sun	model:	jdk .0 05	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 0 10	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	cisco	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	citrix	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	erlang	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	legion of the bouncy castle	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	matrixssl	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	micro focus	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	wolfssl	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sun	model:	jre 1.5.0.0 09	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 11-b03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk .0 04	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 01-b06	scope:	eq	version:	1.6	Trust: 0.6
vendor:	sun	model:	jdk .0 03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 08	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 09	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 07	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.6.0 2	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.6.0 01	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 07-b03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 06	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 22	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 08	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	icedtea	model:	icedtea	scope:	ne	version:	1.10.10	Trust: 0.3
vendor:	juniper	model:	nsm3000	scope:	eq	version:	-	Trust: 0.3
vendor:	ibm	model:	tivoli storage manager administration center	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	rational team concert	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	icedtea	model:	icedtea	scope:	ne	version:	1.11.5	Trust: 0.3
vendor:	ibm	model:	infosphere streams	scope:	eq	version:	1.2	Trust: 0.3
vendor:	redhat	model:	network satellite (for rhel	scope:	eq	version:	6)5.5	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	eq	version:	3.27.0	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0.0 11	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk 01	scope:	eq	version:	1.6	Trust: 0.3
vendor:	icedtea	model:	icedtea	scope:	ne	version:	2.3.3	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	ne	version:	3.29.0	Trust: 0.3
vendor:	ibm	model:	rational team concert	scope:	eq	version:	3.0	Trust: 0.3
vendor:	ibm	model:	rational build forge	scope:	eq	version:	7.1.3	Trust: 0.3
vendor:	sun	model:	sdk 01	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura system platform sp2	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	tivoli federated identity manager business gateway	scope:	eq	version:	6.2	Trust: 0.3
vendor:	q1	model:	labs qradar siem mr2	scope:	ne	version:	7.1	Trust: 0.3
vendor:	redhat	model:	network satellite (for rhel	scope:	eq	version:	5)5.5	Trust: 0.3
vendor:	juniper	model:	network and security manager software	scope:	eq	version:	2012.2-	Trust: 0.3
vendor:	ibm	model:	db2 performance expert	scope:	eq	version:	3.1	Trust: 0.3
vendor:	hitachi	model:	ucosminexus operator	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	infosphere streams	scope:	eq	version:	2.0	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.2	Trust: 0.3
vendor:	openjdk	model:	openjdk	scope:	eq	version:	7	Trust: 0.3
vendor:	vmware	model:	esx	scope:	eq	version:	3.5	Trust: 0.3
vendor:	oracle	model:	solaris	scope:	eq	version:	11.1	Trust: 0.3
vendor:	ibm	model:	tivoli netcool/omnibus web gui	scope:	eq	version:	7.4	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	4.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	8.0	Trust: 0.3
vendor:	ibm	model:	rational performance tester	scope:	ne	version:	8.3.0.1	Trust: 0.3
vendor:	vmware	model:	vcenter server	scope:	eq	version:	5.0	Trust: 0.3
vendor:	ibm	model:	optim performance manager	scope:	eq	version:	4.1.0.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	juniper	model:	nsmexpress	scope:	eq	version:	-	Trust: 0.3
vendor:	ibm	model:	security siteprotector system	scope:	eq	version:	2.9	Trust: 0.3
vendor:	juniper	model:	network and security manager software 2012.2r9	scope:	ne	version:	-	Trust: 0.3
vendor:	redhat	model:	enterprise linux supplementary server	scope:	eq	version:	5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service architect	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	6.2	Trust: 0.3
vendor:	icedtea	model:	icedtea	scope:	ne	version:	2.1.3	Trust: 0.3
vendor:	ibm	model:	rational team concert	scope:	eq	version:	4.0.0.1	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 11	scope:	-	version:	-	Trust: 0.3
vendor:	vmware	model:	vcenter server update	scope:	ne	version:	5.11	Trust: 0.3
vendor:	ibm	model:	infosphere master data management server	scope:	eq	version:	10.1	Trust: 0.3
vendor:	hp	model:	jdk and jre for openvms integrity servers	scope:	ne	version:	6.0-4	Trust: 0.3
vendor:	ibm	model:	infosphere information server	scope:	eq	version:	8.0	Trust: 0.3
vendor:	juniper	model:	network and security manager software r7	scope:	eq	version:	2012.2	Trust: 0.3
vendor:	ibm	model:	infosphere information server	scope:	eq	version:	8.5	Trust: 0.3
vendor:	ibm	model:	db2 performance expert	scope:	eq	version:	3.2	Trust: 0.3
vendor:	ibm	model:	rational requirements composer	scope:	ne	version:	4.0.3	Trust: 0.3
vendor:	icedtea	model:	icedtea	scope:	eq	version:	2.2.2	Trust: 0.3
vendor:	ibm	model:	tivoli storage manager administration center	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	rational service tester	scope:	eq	version:	8.3	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	7	Trust: 0.3
vendor:	openjdk	model:	openjdk	scope:	eq	version:	6	Trust: 0.3
vendor:	sun	model:	jre 1.5.0 09	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	tivoli directory integrator	scope:	eq	version:	7.1	Trust: 0.3
vendor:	oracle	model:	solaris	scope:	eq	version:	11	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.11	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational policy tester	scope:	ne	version:	8.5.0.3	Trust: 0.3
vendor:	ibm	model:	infosphere master data management server	scope:	eq	version:	10.0	Trust: 0.3
vendor:	sun	model:	jre beta	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	ibm	model:	tivoli federated identity manager business gateway	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	sun	model:	jdk	scope:	eq	version:	1.5	Trust: 0.3
vendor:	vmware	model:	esx	scope:	eq	version:	4.0	Trust: 0.3
vendor:	mandrakesoft	model:	enterprise server x86 64	scope:	eq	version:	5	Trust: 0.3
vendor:	sun	model:	jdk 07	scope:	eq	version:	1.5	Trust: 0.3
vendor:	s u s e	model:	opensuse	scope:	eq	version:	12.1	Trust: 0.3
vendor:	ibm	model:	security siteprotector system	scope:	eq	version:	3.0	Trust: 0.3
vendor:	ibm	model:	infosphere information server	scope:	eq	version:	8.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	1.0	Trust: 0.3
vendor:	juniper	model:	network and security manager software r2	scope:	eq	version:	2012.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux server supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	juniper	model:	network and security manager software r5	scope:	eq	version:	2012.2	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	5	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	rational system architect	scope:	ne	version:	11.4.2.2	Trust: 0.3
vendor:	ibm	model:	infosphere information server	scope:	eq	version:	8.7	Trust: 0.3
vendor:	mandrakesoft	model:	enterprise server	scope:	eq	version:	5	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 11-b03	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	hirdb	scope:	eq	version:	8.0	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	vmware	model:	esx	scope:	eq	version:	4.1	Trust: 0.3
vendor:	hp	model:	nonstop server	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	ne	version:	6.2.1	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence	scope:	eq	version:	10.1.1	Trust: 0.3
vendor:	juniper	model:	network and security manager software r8	scope:	eq	version:	2012.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	ne	version:	7.2.1.4	Trust: 0.3
vendor:	juniper	model:	network and security manager software r4	scope:	eq	version:	2012.2	Trust: 0.3
vendor:	ibm	model:	tivoli netcool/omnibus web gui	scope:	eq	version:	7.3.1	Trust: 0.3
vendor:	ibm	model:	infosphere streams	scope:	eq	version:	3.0	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	ne	version:	8.7	Trust: 0.3
vendor:	ibm	model:	rational functional tester	scope:	ne	version:	8.3.0.1	Trust: 0.3
vendor:	vmware	model:	vcenter server	scope:	eq	version:	4.0	Trust: 0.3
vendor:	ibm	model:	websphere message broker	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	tivoli storage manager administration center	scope:	eq	version:	6.1	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	7.0	Trust: 0.3
vendor:	ibm	model:	rational service tester	scope:	ne	version:	8.3.0.1	Trust: 0.3
vendor:	ibm	model:	openpages grc platform	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	rational appscan enterprise	scope:	eq	version:	5.6	Trust: 0.3
vendor:	ibm	model:	rational policy tester	scope:	eq	version:	5.6	Trust: 0.3
vendor:	vmware	model:	virtualcenter	scope:	eq	version:	2.5	Trust: 0.3
vendor:	ibm	model:	db2 performance expert	scope:	eq	version:	3.1.2	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	9.0	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence	scope:	eq	version:	10.1	Trust: 0.3
vendor:	vmware	model:	vcenter server	scope:	eq	version:	4.1	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence	scope:	eq	version:	10.2	Trust: 0.3
vendor:	ibm	model:	infosphere optim performance manager	scope:	eq	version:	5.1.1.1	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.31	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.2	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0	Trust: 0.3
vendor:	vmware	model:	vcenter update manager	scope:	eq	version:	5.0	Trust: 0.3
vendor:	sun	model:	jre 07	scope:	eq	version:	1.5	Trust: 0.3
vendor:	hp	model:	nonstop server j06.07.01	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational requirements composer	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sun	model:	jdk 0 09	scope:	eq	version:	1.5	Trust: 0.3
vendor:	sun	model:	jre 1.5.0 08	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational host on-demand	scope:	ne	version:	11.0.7	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	5.0	Trust: 0.3
vendor:	centos	model:	centos	scope:	eq	version:	5	Trust: 0.3
vendor:	ibm	model:	rational team concert	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 07-b03	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	network and security manager software r6	scope:	eq	version:	2012.2	Trust: 0.3
vendor:	vmware	model:	vcenter update manager	scope:	eq	version:	5.1	Trust: 0.3
vendor:	ibm	model:	tivoli netcool/omnibus web gui	scope:	eq	version:	7.3	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	ibm	model:	db2 performance expert	scope:	eq	version:	3.2.3	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service platform	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	websphere mq server	scope:	eq	version:	7.0.1	Trust: 0.3
vendor:	sun	model:	jdk 1.6.0 01-b06	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational build forge	scope:	ne	version:	8.0	Trust: 0.3
vendor:	centos	model:	centos	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary client	scope:	eq	version:	5	Trust: 0.3
vendor:	q1	model:	labs qradar risk manager mr2	scope:	ne	version:	7.1	Trust: 0.3
vendor:	gentoo	model:	linux	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	hitachi	model:	processing kit for xml	scope:	eq	version:	0	Trust: 0.3
vendor:	sun	model:	sdk 02	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	ibm	model:	rational host on-demand	scope:	eq	version:	11.0	Trust: 0.3
vendor:	ibm	model:	rational team concert	scope:	ne	version:	4.0.3	Trust: 0.3
vendor:	sun	model:	jdk 0 03	scope:	eq	version:	1.5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus portal framework	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.2	Trust: 0.3
vendor:	vmware	model:	update manager update	scope:	ne	version:	5.11	Trust: 0.3
vendor:	ibm	model:	rational performance tester	scope:	eq	version:	8.3	Trust: 0.3
vendor:	hitachi	model:	hirdb	scope:	eq	version:	7.0	Trust: 0.3
vendor:	icedtea	model:	icedtea	scope:	ne	version:	2.2.3	Trust: 0.3
vendor:	juniper	model:	network and security manager software r3	scope:	eq	version:	2012.2	Trust: 0.3
vendor:	ibm	model:	rational team concert	scope:	eq	version:	4.0	Trust: 0.3
vendor:	ibm	model:	infosphere optim performance manager	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hp	model:	nonstop server h06.18.01	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	rational build forge	scope:	eq	version:	7.1.2	Trust: 0.3

sources: CERT/CC: VU#144389 // BID: 56071 // CNNVD: CNNVD-201210-293 // NVD: CVE-2012-5081

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2012-5081
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-201210-293
value:	MEDIUM
Trust: 0.6
VULMON:	CVE-2012-5081
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2012-5081
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.1

sources: VULMON: CVE-2012-5081 // CNNVD: CNNVD-201210-293 // NVD: CVE-2012-5081

PROBLEMTYPE DATA

problemtype:

NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2012-5081

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201210-293

TYPE

Unknown

Trust: 0.3

sources: BID: 56071

PATCH

title:	Oracle Java SE JRE Fixes for Unknown Security Vulnerabilities in Components	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=192743	Trust: 0.6
title:	Red Hat: Critical: java-1.4.2-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121485 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.5.0-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121465 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.6.0-openjdk security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121384 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: java-1.6.0-openjdk security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121385 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: java-1.7.0-openjdk security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121386 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.6.0-sun security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121392 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.6.0-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121466 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.7.0-oracle security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121391 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.7.0-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20121467 - Security Advisory	Trust: 0.1
title:	Amazon Linux AMI: ALAS-2012-136	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2012-136	Trust: 0.1
title:	Amazon Linux AMI: ALAS-2012-137	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2012-137	Trust: 0.1
title:	Ubuntu Security Notice: openjdk-6, openjdk-7 vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-1619-1	Trust: 0.1
title:	Red Hat: Low: Red Hat Network Satellite server IBM Java Runtime security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20131456 - Security Advisory	Trust: 0.1
title:	Red Hat: Low: Red Hat Network Satellite server IBM Java Runtime security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20131455 - Security Advisory	Trust: 0.1
title:	-	url:	https://github.com/tomato42/marvin-toolkit	Trust: 0.1
title:	Threatpost	url:	https://threatpost.com/apple-patches-java-flaws-101812/77126/	Trust: 0.1

sources: VULMON: CVE-2012-5081 // CNNVD: CNNVD-201210-293

EXTERNAL IDS

db:	NVD	id:	CVE-2012-5081	Trust: 2.8
db:	BID	id:	56071	Trust: 2.0
db:	HITACHI	id:	HS12-023	Trust: 2.0
db:	SECUNIA	id:	51438	Trust: 1.7
db:	SECUNIA	id:	51313	Trust: 1.7
db:	SECUNIA	id:	51393	Trust: 1.7
db:	SECUNIA	id:	51315	Trust: 1.7
db:	SECUNIA	id:	51327	Trust: 1.7
db:	SECUNIA	id:	51141	Trust: 1.7
db:	SECUNIA	id:	51326	Trust: 1.7
db:	SECUNIA	id:	51328	Trust: 1.7
db:	SECUNIA	id:	51028	Trust: 1.7
db:	SECUNIA	id:	51390	Trust: 1.7
db:	SECUNIA	id:	51166	Trust: 1.7
db:	SECUNIA	id:	51029	Trust: 1.7
db:	CERT/CC	id:	VU#144389	Trust: 1.2
db:	CNNVD	id:	CNNVD-201210-293	Trust: 0.6
db:	ICS CERT	id:	ICSA-17-213-02	Trust: 0.3
db:	JUNIPER	id:	JSA10642	Trust: 0.3
db:	VULMON	id:	CVE-2012-5081	Trust: 0.1
db:	PACKETSTORM	id:	123734	Trust: 0.1
db:	PACKETSTORM	id:	117478	Trust: 0.1
db:	PACKETSTORM	id:	118306	Trust: 0.1
db:	PACKETSTORM	id:	123735	Trust: 0.1
db:	PACKETSTORM	id:	118139	Trust: 0.1
db:	PACKETSTORM	id:	117704	Trust: 0.1
db:	PACKETSTORM	id:	118142	Trust: 0.1
db:	PACKETSTORM	id:	117452	Trust: 0.1

sources: CERT/CC: VU#144389 // VULMON: CVE-2012-5081 // BID: 56071 // PACKETSTORM: 123734 // PACKETSTORM: 117478 // PACKETSTORM: 118306 // PACKETSTORM: 123735 // PACKETSTORM: 118139 // PACKETSTORM: 117704 // PACKETSTORM: 118142 // PACKETSTORM: 117452 // CNNVD: CNNVD-201210-293 // NVD: CVE-2012-5081

REFERENCES

url:	http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html	Trust: 2.5
url:	http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html	Trust: 2.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21620037	Trust: 2.0
url:	http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_xrx13-003_v1.0.pdf	Trust: 2.0
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21631786	Trust: 2.0
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21620575	Trust: 2.0
url:	http://rhn.redhat.com/errata/rhsa-2012-1386.html	Trust: 1.8
url:	http://rhn.redhat.com/errata/rhsa-2012-1392.html	Trust: 1.8
url:	http://rhn.redhat.com/errata/rhsa-2012-1467.html	Trust: 1.8
url:	http://rhn.redhat.com/errata/rhsa-2012-1465.html	Trust: 1.8
url:	http://rhn.redhat.com/errata/rhsa-2013-1455.html	Trust: 1.8
url:	http://rhn.redhat.com/errata/rhsa-2013-1456.html	Trust: 1.8
url:	http://www.securityfocus.com/bid/56071	Trust: 1.8
url:	http://rhn.redhat.com/errata/rhsa-2012-1391.html	Trust: 1.7
url:	http://rhn.redhat.com/errata/rhsa-2012-1385.html	Trust: 1.7
url:	http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00011.html	Trust: 1.7
url:	http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00023.html	Trust: 1.7
url:	http://marc.info/?l=bugtraq&m=135542848327757&w=2	Trust: 1.7
url:	http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00010.html	Trust: 1.7
url:	http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.html	Trust: 1.7
url:	http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00022.html	Trust: 1.7
url:	http://rhn.redhat.com/errata/rhsa-2012-1466.html	Trust: 1.7
url:	http://marc.info/?l=bugtraq&m=135758563611658&w=2	Trust: 1.7
url:	http://secunia.com/advisories/51029	Trust: 1.7
url:	http://secunia.com/advisories/51028	Trust: 1.7
url:	http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs12-023/index.html	Trust: 1.7
url:	http://secunia.com/advisories/51141	Trust: 1.7
url:	http://secunia.com/advisories/51438	Trust: 1.7
url:	http://secunia.com/advisories/51328	Trust: 1.7
url:	http://secunia.com/advisories/51326	Trust: 1.7
url:	http://secunia.com/advisories/51393	Trust: 1.7
url:	http://secunia.com/advisories/51390	Trust: 1.7
url:	http://secunia.com/advisories/51315	Trust: 1.7
url:	http://secunia.com/advisories/51313	Trust: 1.7
url:	http://secunia.com/advisories/51327	Trust: 1.7
url:	http://secunia.com/advisories/51166	Trust: 1.7
url:	http://www.mandriva.com/security/advisories?name=mdvsa-2013:150	Trust: 1.7
url:	http://security.gentoo.org/glsa/glsa-201406-32.xml	Trust: 1.7
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16043	Trust: 1.7
url:	https://robotattack.org	Trust: 0.8
url:	https://www.usenix.org/system/files/conference/usenixsecurity14/sec14-paper-meyer.pdf	Trust: 0.8
url:	http://archiv.infsec.ethz.ch/education/fs08/secsem/bleichenbacher98.pdf	Trust: 0.8
url:	https://www.cert.org/historical/advisories/ca-1998-07.cfm	Trust: 0.8
url:	https://tools.ietf.org/html/rfc5246#section-7.4.7.1	Trust: 0.8
url:	http://cwe.mitre.org/data/definitions/203.html	Trust: 0.8
url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20171212-bleichenbacher	Trust: 0.8
url:	https://support.citrix.com/article/ctx230238	Trust: 0.8
url:	https://support.f5.com/csp/article/k21905460	Trust: 0.8
url:	https://github.com/bcgit/bc-java/commit/a00b684465b38d722ca9a3543b8af8568e6bad5c	Trust: 0.8
url:	https://github.com/matrixssl/matrixssl/blob/master/doc/changes.md	Trust: 0.8
url:	https://support.microfocus.com/kb/doc.php?id=7022561	Trust: 0.8
url:	https://github.com/wolfssl/wolfssl/pull/1229	Trust: 0.8
url:	https://community.rsa.com/docs/doc-85268	Trust: 0.8
url:	https://www.redhat.com/security/data/cve/cve-2012-5079.html	Trust: 0.7
url:	https://www.redhat.com/security/data/cve/cve-2012-5081.html	Trust: 0.7
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.7
url:	https://www.redhat.com/security/data/cve/cve-2012-3216.html	Trust: 0.7
url:	https://www.redhat.com/security/data/cve/cve-2012-5084.html	Trust: 0.7
url:	https://access.redhat.com/security/team/key/#package	Trust: 0.7
url:	https://www.redhat.com/security/data/cve/cve-2012-5073.html	Trust: 0.7
url:	https://access.redhat.com/security/team/contact/	Trust: 0.7
url:	http://bugzilla.redhat.com/):	Trust: 0.7
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3216	Trust: 0.7
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5073	Trust: 0.7
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21631304	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2012-5089.html	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2012-5071.html	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2012-5069.html	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2012-5075.html	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2012-1531.html	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2012-5083.html	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1531	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5071	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5081	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5069	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5084	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2012-4820.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2012-4822.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2012-5072.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2012-3143.html	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5075	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5079	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5072	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3143	Trust: 0.5
url:	https://access.redhat.com/knowledge/articles/11258	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5083	Trust: 0.5
url:	http://www.kb.cert.org/vuls/id/144389	Trust: 0.4
url:	https://www.redhat.com/security/data/cve/cve-2012-1532.html	Trust: 0.4
url:	https://www.redhat.com/security/data/cve/cve-2012-5068.html	Trust: 0.4
url:	https://www.redhat.com/security/data/cve/cve-2012-3159.html	Trust: 0.4
url:	https://www.redhat.com/security/data/cve/cve-2012-1533.html	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1533	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5077	Trust: 0.4
url:	https://access.redhat.com/security/updates/classification/#critical	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5089	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5086	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5068	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1532	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3159	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4820	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4822	Trust: 0.4
url:	http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-october/020571.html	Trust: 0.3
url:	http://kb.juniper.net/infocenter/index?page=content&id=jsa10642&cat=sirt_1&actp=list	Trust: 0.3
url:	https://www-304.ibm.com/connections/blogs/psirt/entry/security_bulletin_potential_security_exposure_when_using_ibm_infosphere_streams_due_to_vulnerabilities_in_ibm_java_se_version_6_sdk6?lang=en_us	Trust: 0.3
url:	http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-october/020556.html	Trust: 0.3
url:	http://www.hitachi.co.jp/prod/comp/soft1/security/info/vuls/hs12-023/index.html	Trust: 0.3
url:	https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_fixed_in_java	Trust: 0.3
url:	https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_fixed_in_java1	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21621887	Trust: 0.3
url:	http://www-01.ibm.com/software/tivoli/products/directory-integrator/	Trust: 0.3
url:	https://www-304.ibm.com/connections/blogs/psirt/entry/security_bulletin_vulnerabilities_in_rational_functional_tester_versions_8_x_due_to_security_vulnerabilities_in_ibm_jre_7_0_service_release_2_or_e	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21633918	Trust: 0.3
url:	https://ics-cert.us-cert.gov/advisories/icsa-17-213-02	Trust: 0.3
url:	https://downloads.avaya.com/css/p8/documents/100168011	Trust: 0.3
url:	https://downloads.avaya.com/css/p8/documents/100168009	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg24035073	Trust: 0.3
url:	https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03595351	Trust: 0.3
url:	http://h20566.www2.hp.com/portal/site/hpsc/template.page/public/kb/docdisplay/?docid=emr_na-c03909126-1	Trust: 0.3
url:	https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04126444	Trust: 0.3
url:	https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03596813	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21670968	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21621951	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21621771	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg1io17899	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg1io17937	Trust: 0.3
url:	http://q1labs.com/	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21617321	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21617323	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21631323	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21627444	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21635864	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21637519	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21657767	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21626504	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21625941	Trust: 0.3
url:	http://www.ibm.com/support/docview.wss?uid=swg21639736	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21638108	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21639549	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21655075	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21636462	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21619418	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21639487	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21626697	Trust: 0.3
url:	http://www.vmware.com/security/advisories/vmsa-2013-0003.html	Trust: 0.3
url:	http://www.vmware.com/security/advisories/vmsa-2013-0006.html	Trust: 0.3
url:	http://www.kb.cert.org/vuls/id/cheu-at5u75	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21621959	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21621958	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2012-4823.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2012-1718.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2012-0547.html	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4416	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2012-5086.html	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5085	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2012-5077.html	Trust: 0.3
url:	http://www.ibm.com/developerworks/java/jdk/alerts/	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5070	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5076	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5074	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2468.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1540.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1476.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2463.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2446.html	Trust: 0.2
url:	https://access.redhat.com/site/articles/11258	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1500.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0428.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1480.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2419.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0401.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2444.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0425.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2454.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1722.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0419.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2422.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1721.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0409.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0423.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0443.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2451.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0809.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1487.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0351.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0427.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0433.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1493.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1569.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2435.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2456.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-3743.html	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#low	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2407.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2470.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1541.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1557.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2471.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2429.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2443.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1713.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-3213.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0441.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2457.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2412.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0432.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0446.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1481.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1537.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1717.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2432.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2447.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2452.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0450.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1491.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2464.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1571.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2383.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2418.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1473.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1563.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2465.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2472.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2466.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2424.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2453.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2473.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2433.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2437.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1716.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-3342.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0426.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2450.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0440.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1725.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2417.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0445.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2394.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2455.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1682.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2442.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2459.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2430.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0442.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-0551.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0424.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2448.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1719.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1486.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2384.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0169.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2469.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0438.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1478.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0435.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0434.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2420.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2440.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5085.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-4416.html	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0547	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4823	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1718	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5067	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5070.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5076.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5074.html	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5088	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5088.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5087.html	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5087	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://github.com/tomato42/marvin-toolkit	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://usn.ubuntu.com/1619-1/	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0873.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3548.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3521	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3556.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3563.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3546	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3551.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0497.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0500.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3389.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3561.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0863.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0499.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0862	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0867.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0507.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3552.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0814.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3547.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3549	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0503.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3554.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3549.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3553	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3516.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0871.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3554	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0868.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3389	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0873	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3548	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3521.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3551	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3547	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3553.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3545	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0802.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0865.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3516	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3545.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0862.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3561	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3556	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3544.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0867	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0506.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0501.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0869	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3560.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3550	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3557.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0865	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0502.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0498.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3560	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3546.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3552	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3544	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0869.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0863	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3550.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-5035.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3557	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0505.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0871	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0868	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0802	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0814	Trust: 0.1
url:	http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2012-1485.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3342	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1541	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1719	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1725	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3213	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0551	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1717	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1722	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1716	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1713	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1682	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1721	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b24-1.11.5-0ubuntu1~11.10.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b24-1.11.5-0ubuntu1~12.04.1	Trust: 0.1
url:	http://www.ubuntu.com/usn/usn-1619-1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-7/7u9-2.3.3-0ubuntu1~12.10.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b24-1.11.5-0ubuntu1~10.04.2	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b24-1.11.5-0ubuntu1~11.04.1	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-4821.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-5067.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4821	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.1
url:	http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.3/news	Trust: 0.1

CREDITS

Red Hat

Trust: 0.7

sources: PACKETSTORM: 123734 // PACKETSTORM: 117478 // PACKETSTORM: 118306 // PACKETSTORM: 123735 // PACKETSTORM: 118139 // PACKETSTORM: 118142 // PACKETSTORM: 117452

SOURCES

db:	CERT/CC	id:	VU#144389
db:	VULMON	id:	CVE-2012-5081
db:	BID	id:	56071
db:	PACKETSTORM	id:	123734
db:	PACKETSTORM	id:	117478
db:	PACKETSTORM	id:	118306
db:	PACKETSTORM	id:	123735
db:	PACKETSTORM	id:	118139
db:	PACKETSTORM	id:	117704
db:	PACKETSTORM	id:	118142
db:	PACKETSTORM	id:	117452
db:	CNNVD	id:	CNNVD-201210-293
db:	NVD	id:	CVE-2012-5081

LAST UPDATE DATE

2025-06-25T21:08:26.213000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#144389	date:	2018-04-09T00:00:00
db:	VULMON	id:	CVE-2012-5081	date:	2022-05-13T00:00:00
db:	BID	id:	56071	date:	2017-12-19T22:01:00
db:	CNNVD	id:	CNNVD-201210-293	date:	2022-05-16T00:00:00
db:	NVD	id:	CVE-2012-5081	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#144389	date:	2017-12-12T00:00:00
db:	VULMON	id:	CVE-2012-5081	date:	2012-10-16T00:00:00
db:	BID	id:	56071	date:	2012-10-16T00:00:00
db:	PACKETSTORM	id:	123734	date:	2013-10-23T22:57:57
db:	PACKETSTORM	id:	117478	date:	2012-10-18T22:02:53
db:	PACKETSTORM	id:	118306	date:	2012-11-23T16:21:12
db:	PACKETSTORM	id:	123735	date:	2013-10-23T22:58:21
db:	PACKETSTORM	id:	118139	date:	2012-11-16T07:05:11
db:	PACKETSTORM	id:	117704	date:	2012-10-26T22:43:35
db:	PACKETSTORM	id:	118142	date:	2012-11-16T07:06:23
db:	PACKETSTORM	id:	117452	date:	2012-10-18T06:07:00
db:	CNNVD	id:	CNNVD-201210-293	date:	2012-10-18T00:00:00
db:	NVD	id:	CVE-2012-5081	date:	2012-10-16T21:55:02.260