Security Advisory

CVE-2010-3860

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-12-08 19:00:00

Last updated 2024-08-07 03:26:12

Assigner redhat

State PUBLISHED

Description

IcedTea 1.7.x before 1.7.6, 1.8.x before 1.8.3, and 1.9.x before 1.9.2, as based on OpenJDK 6, declares multiple sensitive variables as public, which allows remote attackers to obtain sensitive information including (1) user.name, (2) user.home, and (3) java.home system properties, and other sensitive information such as installation directories.

← Browse all CVEs View on cve.org ↗