CVE Kennung:	CVE-2011-0706
Beschreibung:	The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of "an inappropriate security descriptor."
Test Kennungen:	1.3.6.1.4.1.25623.1.0.69567
Querverweise:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0706 BugTraq ID: 46439 http://www.securityfocus.com/bid/46439 Debian Security Information: DSA-2224 (Google Search) http://www.debian.org/security/2011/dsa-2224 http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.html http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054134.html http://security.gentoo.org/glsa/glsa-201406-32.xml http://www.mandriva.com/security/advisories?name=MDVSA-2011:054 https://bugzilla.redhat.com/show_bug.cgi?id=677332 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14117 http://secunia.com/advisories/43350 XForce ISS Database: icedtea-jnlpclassloader-priv-esc(65534) https://exchange.xforce.ibmcloud.com/vulnerabilities/65534