Summary
This host is installed with Oracle Java SE JRE and is prone to multiple vulnerabilities.
Impact
Successful exploitation allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
Impact Level: System/Application
Solution
Upgrade to Oracle Java SE JRE versions 7 Update 3, 6 Update 31, 5.0 Update 34, 1.4.2_36 or later. For updates refer to
http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html
Insight
Multiple flaws are caused by unspecified errors in the following components:
- 2D
- AWT
- Sound
- I18n
- CORBA
- Serialization
Affected
Oracle Java SE JRE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier
References
- http://secunia.com/advisories/48009
- http://www.oracle.com/technetwork/java/javase/documentation/overview-137139.html
- http://www.oracle.com/technetwork/java/javase/documentation/overview-142120.html
- http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html
- http://www.pre-cert.de/advisories/PRE-SA-2012-01.txt
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-3563, CVE-2012-0499, CVE-2012-0502, CVE-2012-0503, CVE-2012-0505, CVE-2012-0506 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe AIR Multiple Vulnerabilities(APSB14-22)-(Mac OS X)
- Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Windows)
- Adobe Air Multiple Vulnerabilities - December12 (Windows)
- 7T Interactive Graphical SCADA System Multiple Security Vulnerabilities
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)