This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:sun:jre:1.4.2_17
Detail
VendorSunFirst view 2006-02-08
ProductJreLast view2013-02-01
Version1.4.2_17TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:sun:jre

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
102013-02-01CVE-2013-1481NetworkLowNone Requ...
102013-02-01CVE-2013-1480NetworkLowNone Requ...
102013-02-01CVE-2013-1478NetworkLowNone Requ...
102013-02-01CVE-2013-1476NetworkLowNone Requ...
102013-02-01CVE-2013-1475NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
42013-02-01CVE-2013-0443NetworkHighNone Requ...
102013-02-01CVE-2013-0442NetworkLowNone Requ...
102013-02-01CVE-2013-0441NetworkLowNone Requ...
52013-02-01CVE-2013-0440NetworkLowNone Requ...
52013-02-01CVE-2013-0434NetworkLowNone Requ...
6.42013-02-01CVE-2013-0432NetworkLowNone Requ...
102013-02-01CVE-2013-0428NetworkLowNone Requ...
102013-02-01CVE-2013-0426NetworkLowNone Requ...
102013-02-01CVE-2013-0425NetworkLowNone Requ...
52013-02-01CVE-2013-0424NetworkLowNone Requ...
7.62012-10-16CVE-2012-5089NetworkHighNone Requ...
02012-10-16CVE-2012-5085NetworkMediumRequires ...
7.62012-10-16CVE-2012-5084NetworkHighNone Requ...
102012-10-16CVE-2012-5083NetworkLowNone Requ...
52012-10-16CVE-2012-5081NetworkLowNone Requ...
52012-10-16CVE-2012-5079NetworkLowNone Requ...
2.62012-10-16CVE-2012-5077NetworkHighNone Requ...
52012-10-16CVE-2012-5073NetworkLowNone Requ...
2.62012-10-16CVE-2012-3216NetworkHighNone Requ...

CWE : Common Weakness Enumeration

%idName
38% (25)CWE-264Permissions, Privileges, and Access Controls
27% (18)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
7% (5)CWE-200Information Exposure
7% (5)CWE-189Numeric Errors
4% (3)CWE-399Resource Management Errors
Hide | Show 6 More...
%idName
4% (3)CWE-20Improper Input Validation
3% (2)CWE-16Configuration
1% (1)CWE-310Cryptographic Issues
1% (1)CWE-287Improper Authentication
1% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
1% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-68Subvert Code-signing Facilities
CAPEC-201External Entity Attack

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:21593RHSA-2012:1384: java-1.6.0-openjdk security update (Critical)
oval:org.mitre.oval:def:21586RHSA-2012:1386: java-1.7.0-openjdk security update (Important)
oval:org.mitre.oval:def:21422RHSA-2012:1385: java-1.6.0-openjdk security update (Important)
oval:org.mitre.oval:def:21199RHSA-2012:1391: java-1.7.0-oracle security update (Critical)
oval:org.mitre.oval:def:20645RHSA-2012:1392: java-1.6.0-sun security update (Critical)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:18994HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:16506Unspecified vulnerability in the Java Runtime Environment (JRE) component in ...
oval:org.mitre.oval:def:23907ELSA-2012:1386: java-1.7.0-openjdk security update (Important)
oval:org.mitre.oval:def:23866ELSA-2012:1392: java-1.6.0-sun security update (Critical)
oval:org.mitre.oval:def:23780ELSA-2012:1384: java-1.6.0-openjdk security update (Critical)
oval:org.mitre.oval:def:23740ELSA-2012:1391: java-1.7.0-oracle security update (Critical)
oval:org.mitre.oval:def:22450ELSA-2012:1385: java-1.6.0-openjdk security update (Important)
oval:org.mitre.oval:def:27810DEPRECATED: ELSA-2012-1385 -- java-1.6.0-openjdk security update (important)
oval:org.mitre.oval:def:27804DEPRECATED: ELSA-2012-1384 -- java-1.6.0-openjdk security update (critical)
oval:org.mitre.oval:def:19484HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:19471HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:19261HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, an...
oval:org.mitre.oval:def:15888Unspecified vulnerability in the Java Runtime Environment (JRE) component in ...
oval:org.mitre.oval:def:20492VMware third party component updates for VMware vCenter Server, vCenter Updat...
oval:org.mitre.oval:def:12450HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Informa...
oval:org.mitre.oval:def:12328DEPRECATED: Unspecified vulnerability in the 2D component in Oracle Java SE a...
oval:org.mitre.oval:def:11893Unspecified vulnerability in the 2D component in Oracle Java SE and Java for ...
oval:org.mitre.oval:def:6249Sun Java Web Start and Java Plug-in applet class security bypass
oval:org.mitre.oval:def:21690RHSA-2011:0490: java-1.4.2-ibm security update (Critical)
oval:org.mitre.oval:def:21622RHSA-2011:0357: java-1.6.0-ibm security update (Critical)

SAINT Exploits

DescriptionLink
Oracle Java IE Browser Plugin docbase Parameter Stack Buffer OverflowMore info here
Oracle Java Applet2ClassLoader VulnerabilityMore info here
Java SE AtomicReferenceArray Unsafe Security BypassMore info here
Java Runtime CMM readMabCurveData Buffer OverflowMore info here
Oracle Java Runtime Hotspot Bytecode Verifier Type ConfusionMore info here
Hide | Show 8 More...
DescriptionLink
Java Runtime Environment Soundbank Resource Name Stack Buffer OverflowMore info here
Oracle Java Rhino Script Engine Code ExecutionMore info here
Sun Java Web Start JNLP file j2se element heap-size buffer overflowMore info here
Java Runtime Environment MixerSequence Function Pointer ControlMore info here
Java Runtime Environment HsbParser.getSoundBank Stack Buffer OverflowMore info here
Java Runtime Environment AWT setDiffICM buffer overflowMore info here
Java Runtime Environment JAR manifest Main Class buffer overflowMore info here
Oracle Java findMethod findClass Security BypassMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
76512Oracle Java SE JRE JAXWS Component Unspecified Remote Information Disclosure
76511Oracle Java SE JRE Networking Component Unspecified Remote Information Disclo...
76510Oracle Java SE JRE HotSpot Component Unspecified Remote Information Disclosure
76507Oracle Java SE JRE JSSE Component Unspecified Remote Issue
76506Oracle Java SE JRE RMI Component Unspecified Remote Issue (2011-3557)
Hide | Show 20 More...
idDescription
76505Oracle Java SE JRE RMI Component Unspecified Remote Issue (2011-3556)
76504Oracle Java SE JRE Deployment Component Unspecified Remote Issue (2011-3516)
76503Oracle Java SE JRE AWT Component Unspecified Remote Issue (2011-3550)
76502Oracle Java SE JRE 2D Component Unspecified Remote Issue
76501Oracle Java SE JRE Swing Component Unspecified Remote Issue
76500Oracle Java SE JRE Rhino Javascript Error Parsing Input Sanitation Weakness R...
76499Oracle Java SE JRE jsound.dll MixerSequencer.nAddControllerEventCallback Func...
76498Oracle Java SE JRE Component Unspecified Remote Issue (2011-3554)
76497Oracle Java SE JRE Networking Component java.net.Socket API UDP Socket Satura...
76496Oracle Java SE JRE IIOP Deserialization Applet Handling Remote Code Execution
76495Oracle Java SE JRE AWT Component Unspecified Remote Issue (2011-3548)
73176Oracle Java SE / JRE AWT FileDialog.show() String Copy Overflow
73085Oracle Java SE / JRE Deserialization Unspecified Remote Issue
73084Oracle Java SE / JRE SAAJ Unspecified Remote Information Disclosure
73083Oracle Java SE / JRE Networking Unspecified Remote Information Disclosure
73082Oracle Java SE / JRE NIO Unspecified Remote DoS
73081Oracle Java SE / JRE 2D Unspecified Remote Information Disclosure
73080Oracle Java SE / JRE Java Web Start DLL Search Path Subversion Arbitrary DLL ...
73079Oracle Java SE / JRE Java Web Start File Search Path Policy File Loading Remo...
73078Oracle Java SE / JRE Java Web Start File Search Path Settings Files Loading R...

ExploitDB Exploits

idDescription
19717Java Applet Field Bytecode Verifier Cache Remote Code Execution
18679Java AtomicReferenceArray Type Violation Vulnerability
18485Java MixerSequencer Object GM_Song Structure Handling Vulnerability
18171Java Applet Rhino Script Engine Remote Code Execution
16990Sun Java Applet2ClassLoader Remote Code Execution Exploit
Hide | Show 10 More...
idDescription
16495Sun Java Web Start BasicServiceImpl Remote Code Execution Exploit
16305Java RMIConnectionImpl Deserialization Privilege Escalation Exploit
16302Signed Applet Social Engineering Code Exec
16298Sun Java JRE AWT setDiffICM Buffer Overflow
16297Java Statement.invoke() Trusted Method Chain Exploit
16294Sun Java JRE getSoundbank file:// URI Buffer Overflow
16293Sun Java Calendar Deserialization Exploit
15056MOAUB #20 - Java CMM readMabCurveData Stack Overflow
9948Sun Java Runtime and Development Kit <= 6 update 10 Calendar Deserializati...
8753Mac OS X Java applet Remote Deserialization Remote PoC (updated)

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-13Name : SuSE Update for java-1_6_0-openjdk openSUSE-SU-2012:0828-1 (java-1_6_0-openjdk)
File : nvt/gb_suse_2012_0828_1.nasl
2012-12-13Name : SuSE Update for java-1_6_0-openjdk openSUSE-SU-2012:1423-1 (java-1_6_0-openjdk)
File : nvt/gb_suse_2012_1423_1.nasl
2012-12-13Name : SuSE Update for java-1_6_0-openjdk openSUSE-SU-2012:1424-1 (java-1_6_0-openjdk)
File : nvt/gb_suse_2012_1424_1.nasl
2012-11-02Name : Mandriva Update for java-1.6.0-openjdk MDVSA-2012:169 (java-1.6.0-openjdk)
File : nvt/gb_mandriva_MDVSA_2012_169.nasl
2012-10-29Name : Ubuntu Update for openjdk-7 USN-1619-1
File : nvt/gb_ubuntu_USN_1619_1.nasl
Hide | Show 20 More...
idDescription
2012-10-19Name : RedHat Update for java-1.6.0-openjdk RHSA-2012:1384-01
File : nvt/gb_RHSA-2012_1384-01_java-1.6.0-openjdk.nasl
2012-10-19Name : RedHat Update for java-1.6.0-openjdk RHSA-2012:1385-01
File : nvt/gb_RHSA-2012_1385-01_java-1.6.0-openjdk.nasl
2012-10-19Name : RedHat Update for java-1.7.0-openjdk RHSA-2012:1386-01
File : nvt/gb_RHSA-2012_1386-01_java-1.7.0-openjdk.nasl
2012-10-19Name : Oracle Java SE JRE Multiple Unspecified Vulnerabilities-01 Oct (Windows)
File : nvt/gb_oracle_java_se_mult_vuln01_oct12_win.nasl
2012-10-19Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-16346
File : nvt/gb_fedora_2012_16346_java-1.7.0-openjdk_fc17.nasl
2012-10-19Name : Oracle Java SE JRE Multiple Unspecified Vulnerabilities-02 oct12 (Windows)
File : nvt/gb_oracle_java_se_mult_vuln02_oct12_win.nasl
2012-10-19Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-16351
File : nvt/gb_fedora_2012_16351_java-1.6.0-openjdk_fc16.nasl
2012-10-19Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-16351
File : nvt/gb_fedora_2012_16351_java-1.7.0-openjdk_fc16.nasl
2012-10-19Name : CentOS Update for java CESA-2012:1384 centos6
File : nvt/gb_CESA-2012_1384_java_centos6.nasl
2012-10-19Name : CentOS Update for java CESA-2012:1385 centos5
File : nvt/gb_CESA-2012_1385_java_centos5.nasl
2012-10-19Name : CentOS Update for java CESA-2012:1386 centos6
File : nvt/gb_CESA-2012_1386_java_centos6.nasl
2012-09-22Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-13127
File : nvt/gb_fedora_2012_13127_java-1.6.0-openjdk_fc16.nasl
2012-09-21Name : Java for Mac OS X 10.6 Update 10
File : nvt/gb_macosx_java_10_6_upd_10.nasl
2012-09-06Name : Ubuntu Update for icedtea-web USN-1505-2
File : nvt/gb_ubuntu_USN_1505_2.nasl
2012-09-04Name : RedHat Update for java-1.7.0-openjdk RHSA-2012:1223-01
File : nvt/gb_RHSA-2012_1223-01_java-1.7.0-openjdk.nasl
2012-09-04Name : CentOS Update for java CESA-2012:1223 centos6
File : nvt/gb_CESA-2012_1223_java_centos6.nasl
2012-09-04Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-13131
File : nvt/gb_fedora_2012_13131_java-1.7.0-openjdk_fc17.nasl
2012-09-04Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-13138
File : nvt/gb_fedora_2012_13138_java-1.7.0-openjdk_fc16.nasl
2012-09-03Name : Oracle Java SE JRE AWT Component Unspecified Vulnerability - (Windows)
File : nvt/gb_oracle_java_se_jre_awt_comp_unspecified_vuln_win.nasl
2012-09-03Name : Oracle Java SE JRE Multiple Remote Code Execution Vulnerabilities - (Windows)
File : nvt/gb_oracle_java_se_jre_mult_code_exec_vuln_win.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0146Multiple Vulnerabilities in VMware vCenter Update Manager 4.1
Severity : Category I - VMSKEY : V0033792
2012-A-0147Multiple Vulnerabilities in VMware vCenter Server 4.1
Severity : Category I - VMSKEY : V0033793
2012-A-0148Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0033794
2012-A-0136Multiple Vulnerabilities in Juniper Network Management Products
Severity : Category I - VMSKEY : V0033662
Hide | Show 6 More...
idDescription
2012-B-0048Multiple Vulnerabilities in HP Systems Insight Manager
Severity : Category I - VMSKEY : V0032178
2012-A-0048Multiple Vulnerabilities in VMware vCenter Update Manager 5.0
Severity : Category I - VMSKEY : V0031901
2011-A-0173Multiple Vulnerabilities in VMware ESX 4.0
Severity : Category I - VMSKEY : V0030824
2011-A-0160Multiple Vulnerabilities in VMware vCenter Server 4.0 and vCenter Update Mana...
Severity : Category I - VMSKEY : V0030769
2011-A-0066Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158
2009-A-0105Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0021867

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2015-04-30Nuclear exploit kit obfuscated file download
RuleID : 33983 - Type : EXPLOIT-KIT - Revision : 3
2015-04-30Nuclear exploit kit landing page detected
RuleID : 33982 - Type : EXPLOIT-KIT - Revision : 3
2014-11-16Oracle Java field bytecode verifier cache code execution attempt
RuleID : 31512 - Type : FILE-JAVA - Revision : 2
2014-11-16Oracle Java field bytecode verifier cache code execution attempt
RuleID : 31511 - Type : FILE-JAVA - Revision : 1
2014-04-03Hello/LightsOut exploit kit payload download attempt
RuleID : 30003 - Type : EXPLOIT-KIT - Revision : 3
Hide | Show 20 More...
DateDescription
2014-03-13Java FileDialog heap buffer overflow attempt
RuleID : 29643 - Type : MALWARE-OTHER - Revision : 2
2014-03-13Java FileDialog heap buffer overflow attempt
RuleID : 29642 - Type : MALWARE-OTHER - Revision : 2
2014-03-13Java FileDialog heap buffer overflow attempt
RuleID : 29641 - Type : MALWARE-OTHER - Revision : 1
2014-03-13Java FileDialog heap buffer overflow attempt
RuleID : 29640 - Type : MALWARE-OTHER - Revision : 1
2014-03-06Oracle Java Rhino script engine remote code execution attempt
RuleID : 29535 - Type : FILE-JAVA - Revision : 2
2014-02-21Styx exploit kit eot outbound connection
RuleID : 29453 - Type : EXPLOIT-KIT - Revision : 2
2014-02-21Styx exploit kit landing page request
RuleID : 29452 - Type : EXPLOIT-KIT - Revision : 2
2014-02-21Styx exploit kit outbound jar request
RuleID : 29451 - Type : EXPLOIT-KIT - Revision : 2
2014-02-21Styx exploit kit outbound connection attempt
RuleID : 29450 - Type : EXPLOIT-KIT - Revision : 2
2014-02-21Styx exploit kit landing page
RuleID : 29449 - Type : EXPLOIT-KIT - Revision : 2
2014-02-21Styx exploit kit landing page
RuleID : 29448 - Type : EXPLOIT-KIT - Revision : 2
2014-02-21Styx exploit kit jar outbound connection
RuleID : 29446 - Type : EXPLOIT-KIT - Revision : 5
2014-02-21Styx exploit kit fonts download page
RuleID : 29445 - Type : EXPLOIT-KIT - Revision : 2
2014-01-30Stamp exploit kit PDF exploit retrieval attempt
RuleID : 29131 - Type : EXPLOIT-KIT - Revision : 1
2014-01-30Stamp exploit kit malicious payload download attempt
RuleID : 29130 - Type : EXPLOIT-KIT - Revision : 1
2014-01-30Stamp exploit kit jar exploit download - specific structure
RuleID : 29129 - Type : EXPLOIT-KIT - Revision : 2
2014-01-30Stamp exploit kit plugin detection page
RuleID : 29128 - Type : EXPLOIT-KIT - Revision : 1
2014-01-10Goon/Infinity exploit kit payload download attempt
RuleID : 28795 - Type : EXPLOIT-KIT - Revision : 3
2014-01-10Styx exploit kit landing page request
RuleID : 28478 - Type : EXPLOIT-KIT - Revision : 4
2014-01-10Styx exploit kit outbound pdf request
RuleID : 28477 - Type : EXPLOIT-KIT - Revision : 3

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2016-03-08Name : The remote VMware ESX host is missing a security-related patch.
File : vmware_VMSA-2010-0002_remote.nasl - Type : ACT_GATHER_INFO
2016-03-04Name : The remote VMware ESX / ESXi host is missing a security-related patch.
File : vmware_VMSA-2011-0003_remote.nasl - Type : ACT_GATHER_INFO
2016-03-04Name : The remote VMware ESX / ESXi host is missing a security-related patch.
File : vmware_VMSA-2011-0013_remote.nasl - Type : ACT_GATHER_INFO
2016-03-04Name : The remote VMware ESX / ESXi host is missing a security-related patch.
File : vmware_esx_VMSA-2013-0003_remote.nasl - Type : ACT_GATHER_INFO
2016-03-03Name : The remote host is missing a security-related patch.
File : vmware_VMSA-2009-0014_remote.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2016-03-03Name : The remote host is missing a security-related patch.
File : vmware_VMSA-2009-0016_remote.nasl - Type : ACT_GATHER_INFO
2016-03-03Name : The remote VMware ESXi / ESX host is missing a security-related patch.
File : vmware_VMSA-2012-0005_remote.nasl - Type : ACT_GATHER_INFO
2015-05-20Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2012-1489-1.nasl - Type : ACT_GATHER_INFO
2015-05-20Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2012-1489-2.nasl - Type : ACT_GATHER_INFO
2015-05-20Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2012-1490-1.nasl - Type : ACT_GATHER_INFO
2014-12-15Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL15905.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1332.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2012-1537.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1455.nasl - Type : ACT_GATHER_INFO
2014-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1456.nasl - Type : ACT_GATHER_INFO
2014-11-07Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1080.nasl - Type : ACT_GATHER_INFO
2014-08-22Name : The remote host is affected by multiple vulnerabilities.
File : juniper_nsm_jsa10642.nasl - Type : ACT_GATHER_INFO
2014-07-22Name : The remote Windows host contains a programming platform that is affected by m...
File : oracle_jrockit_cpu_apr_2012.nasl - Type : ACT_GATHER_INFO
2014-07-18Name : The remote Windows host contains a programming platform that is potentially a...
File : oracle_jrockit_cpu_oct_2012.nasl - Type : ACT_GATHER_INFO
2014-06-30Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201406-32.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-592.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_icedtea-web-110627.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-749.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_java-1_6_0-openjdk-101103.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-754.nasl - Type : ACT_GATHER_INFO