CVE-2011-0025 is a vulnerability in Red Hat Icedtea
Published on February 4, 2011

IcedTea 1.7 before 1.7.8, 1.8 before 1.8.5, and 1.9 before 1.9.5 does not properly verify signatures for JAR files that (1) are "partially signed" or (2) signed by multiple entities, which allows remote attackers to trick users into executing code that appears to come from a trusted source.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2011-0025

Want to know whenever a new CVE is published for Red Hat Icedtea? stack.watch will email you.

Red Hat Icedtea

Exploit Probability

EPSS

1.54%

Percentile

81.16%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2011-0025 is a vulnerability in Red Hat IcedteaPublished on February 4, 2011

Products Associated with CVE-2011-0025

Exploit Probability

CVE-2011-0025 is a vulnerability in Red Hat Icedtea
Published on February 4, 2011