CVE-2011-3377 - OpenCVE

The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Redhat	Icedtea-web
Canonical	Ubuntu Linux
Opensuse	Opensuse

Configuration 1 [-]

OR	cpe:2.3:a:redhat:icedtea-web:1.0:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.1:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.2:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.3:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.4:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.0.5:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1.1:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1.2:::::::*
	cpe:2.3:a:redhat:icedtea-web:1.1.3:::::::*

Configuration 2 [-]

OR	cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:::::*
	cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:11.04:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::*
	cpe:2.3:o:opensuse:opensuse:12.1:::::::*

References

Link	Resource
http://dbhole.wordpress.com/2011/11/08/icedtea-web-1-0-6-and-1-1-4-security-releases-released/	Patch Vendor Advisory
http://lists.opensuse.org/opensuse-updates/2012-03/msg00028.html
http://rhn.redhat.com/errata/RHSA-2011-1441.html
http://www.debian.org/security/2012/dsa-2420
http://www.osvdb.org/76940
http://www.securityfocus.com/bid/50610
http://www.ubuntu.com/usn/USN-1263-1
https://bugzilla.redhat.com/show_bug.cgi?id=742515

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2014-02-05T19:00:00

Updated: 2014-02-05T18:57:01

Reserved: 2011-08-30T00:00:00

Link: CVE-2011-3377

JSON object: View

NVD Information

Status : Analyzed

Published: 2014-02-05T19:55:28.607

Modified: 2018-10-30T16:27:33.653

Link: CVE-2011-3377

JSON object: View

Redhat Information

No data.

CWE

CWE-264

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-11-08T00:00:00", "descriptions": [{"lang": "en", "value": "The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2014-02-05T18:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742515"}, {"name": "RHSA-2011:1441", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2011-1441.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://dbhole.wordpress.com/2011/11/08/icedtea-web-1-0-6-and-1-1-4-security-releases-released/"}, {"name": "76940", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/76940"}, {"name": "openSUSE-SU-2012:0371", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2012-03/msg00028.html"}, {"name": "DSA-2420", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2012/dsa-2420"}, {"name": "50610", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/50610"}, {"name": "USN-1263-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-1263-1"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-3377", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://bugzilla.redhat.com/show_bug.cgi?id=742515", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742515"}, {"name": "RHSA-2011:1441", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2011-1441.html"}, {"name": "http://dbhole.wordpress.com/2011/11/08/icedtea-web-1-0-6-and-1-1-4-security-releases-released/", "refsource": "CONFIRM", "url": "http://dbhole.wordpress.com/2011/11/08/icedtea-web-1-0-6-and-1-1-4-security-releases-released/"}, {"name": "76940", "refsource": "OSVDB", "url": "http://www.osvdb.org/76940"}, {"name": "openSUSE-SU-2012:0371", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2012-03/msg00028.html"}, {"name": "DSA-2420", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2012/dsa-2420"}, {"name": "50610", "refsource": "BID", "url": "http://www.securityfocus.com/bid/50610"}, {"name": "USN-1263-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-1263-1"}]}}}}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-3377", "datePublished": "2014-02-05T19:00:00", "dateReserved": "2011-08-30T00:00:00", "dateUpdated": "2014-02-05T18:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "941141AF-7E4A-4302-82A0-410D5694983A", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "E6B24564-AA45-4A26-BB3D-8C9B8DF8EBD2", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "0882F9F6-0C78-472E-82B2-0DCD3909EBAF", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "BD2BD3A8-D9E9-46E7-AEC9-B5511A10C472", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "4D8C118E-EF65-448B-940F-9892C59013DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "042B0E43-92C9-42F3-B6F3-7AE3F044FB5E", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "69F3FB66-F6C8-449C-9650-B0D906E307AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "FDD91C17-3187-4150-A77A-A012D2A74AA8", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "08431724-45B6-48A3-BEA4-94F9BC27B5EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:icedtea-web:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "D798F99B-D6C3-48B8-B186-C4B2B542D246", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*", "matchCriteriaId": "7118F616-25CA-4E34-AA13-4D14BB62419F", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*", "matchCriteriaId": "EF49D26F-142E-468B-87C1-BABEA445255C", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*", "matchCriteriaId": "E4174F4F-149E-41A6-BBCC-D01114C05F38", "vulnerable": true}, {"criteria": "cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*", "matchCriteriaId": "EBB2C482-D2A4-48B3-ACE7-E1DFDCC409B5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain."}, {"lang": "es", "value": "El plug-in de navegador web en IcedTea-Web 1.0.x anterior a 1.0.6 y 1.1.x anterior a 1.1.4, permite a atacantes remotos evadir el Same Origin Policy (SOP) y ejecutar script arbitrario o establecer conexiones de red hacia hosts no deseados a trav\u00e9s de un applet cuyo origen tiene el mismo dominio de segundo nivel, pero un sub-dominio diferente que el dominio objetivo."}], "id": "CVE-2011-3377", "lastModified": "2018-10-30T16:27:33.653", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-02-05T19:55:28.607", "references": [{"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://dbhole.wordpress.com/2011/11/08/icedtea-web-1-0-6-and-1-1-4-security-releases-released/"}, {"source": "secalert@redhat.com", "url": "http://lists.opensuse.org/opensuse-updates/2012-03/msg00028.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2011-1441.html"}, {"source": "secalert@redhat.com", "url": "http://www.debian.org/security/2012/dsa-2420"}, {"source": "secalert@redhat.com", "url": "http://www.osvdb.org/76940"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/50610"}, {"source": "secalert@redhat.com", "url": "http://www.ubuntu.com/usn/USN-1263-1"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=742515"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}