Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.902353
Category:General
Title:Oracle Java SE Code Execution Vulnerabilities (Windows)
Summary:This host is installed with Sun Java SE and is prone to multiple; code execution vulnerabilities.
Description:Summary:
This host is installed with Sun Java SE and is prone to multiple
code execution vulnerabilities.

Vulnerability Insight:
The flaws are due to an error in 'Java Runtime Environment (JRE)',
which allows remote untrusted Java Web Start applications and untrusted Java
applets to affect confidentiality and integrity via unknown vectors related
to JDBC and 2D.

Vulnerability Impact:
Successful attacks will allow attackers to execute arbitrary code in the
context of the affected application with system privileges.

Affected Software/OS:
Oracle Java SE 6 Update 23 and prior.
Oracle Java SE 5.0 Update 27 and prior.

Solution:
Upgrade to Oracle Java SE 6 Update 24 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: BugTraq ID: 46393
BugTraq ID: 46399
Common Vulnerability Exposure (CVE) ID: CVE-2010-4468
http://www.securityfocus.com/bid/46393
HPdes Security Advisory: HPSBMU02797
http://marc.info/?l=bugtraq&m=134254957702612&w=2
HPdes Security Advisory: HPSBMU02799
http://marc.info/?l=bugtraq&m=134254866602253&w=2
HPdes Security Advisory: SSRT100867
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12848
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13552
http://www.redhat.com/support/errata/RHSA-2011-0282.html
http://www.redhat.com/support/errata/RHSA-2011-0880.html
http://secunia.com/advisories/44954
XForce ISS Database: oracle-java-jdbc-unspecified(65409)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65409
Common Vulnerability Exposure (CVE) ID: CVE-2010-4471
http://www.securityfocus.com/bid/46399
Debian Security Information: DSA-2224 (Google Search)
http://www.debian.org/security/2011/dsa-2224
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054115.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054134.html
http://security.gentoo.org/glsa/glsa-201406-32.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2011:054
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12089
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14417
http://secunia.com/advisories/43350
XForce ISS Database: oracle-runtime-information-disclosure(65405)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65405
CopyrightCopyright (C) 2011 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.