CVE-2012-3423
icedtea-web: incorrect handling of not 0-terminated strings
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.
El complemento IcedTea-Web anterior a v1.2.1 no maneja adecuadamente los (NPVariant) (NPStrings) sin terminadores NUL, lo que permite a atacantes remotos causar una denegación de servicio (caída), obtener información sensible de la memoria, o ejecutar código arbitrario a través de un (applet) de Java manipulado.
Multiple vulnerabilities has been discovered and corrected in icedtea-web. An uninitialized pointer use flaw was found in IcedTea-Web web browser plugin. A malicious web page could use this flaw make IcedTea-Web browser plugin pass invalid pointer to a web browser. Depending on the browser used, it may cause the browser to crash or possibly execute arbitrary code. It was discovered that the IcedTea-Web web browser plugin incorrectly assumed that all strings provided by browser are NUL terminated, which is not guaranteed by the NPAPI (Netscape Plugin Application Programming Interface. When used in a browser that does not NUL terminate NPVariant NPStrings, this could lead to buffer over-read or over-write, resulting in possible information leak, crash, or code execution. The updated packages have been upgraded to the 1.1.6 version which is not affected by these issues.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2012-06-14 CVE Reserved
- 2012-07-31 CVE Published
- 2024-08-06 CVE Updated
- 2024-08-06 First Exploit
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (19)
URL | Tag | Source |
---|---|---|
http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=518 | X_refsource_confirm | |
http://icedtea.classpath.org/hg/release/icedtea-web-1.2/file/icedtea-web-1.2.1/NEWS | X_refsource_confirm |
URL | Date | SRC |
---|---|---|
http://icedtea.classpath.org/hg/release/icedtea-web-1.2/rev/d65bd94e0ba9 | 2024-08-06 | |
http://icedtea.classpath.org/hg/release/icedtea-web-1.2/rev/d7375e2a9076 | 2024-08-06 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Redhat Search vendor "Redhat" | Icedtea-web Search vendor "Redhat" for product "Icedtea-web" | <= 1.2 Search vendor "Redhat" for product "Icedtea-web" and version " <= 1.2" | - |
Affected
| ||||||
Redhat Search vendor "Redhat" | Icedtea-web Search vendor "Redhat" for product "Icedtea-web" | 1.0 Search vendor "Redhat" for product "Icedtea-web" and version "1.0" | - |
Affected
| ||||||
Redhat Search vendor "Redhat" | Icedtea-web Search vendor "Redhat" for product "Icedtea-web" | 1.1 Search vendor "Redhat" for product "Icedtea-web" and version "1.1" | - |
Affected
|