Oracle Java Multiple Vulnerabilities
Last Update Date:
19 Oct 2012
Release Date:
18 Oct 2012
4685
Views
RISK: High Risk
TYPE: Operating Systems - Application Platforms
Multiple vulnerabilities were identified in Oracle Java Runtime Environment (JRE). A remote user can take full control of the target system. A remote user can access and modify data and cause partial denial of service conditions on the target system.
- A remote user can create specially crafted content that, when loaded by the target user, will take full control of the target system.
- A remote user can partially access and modify data on the target system.
- A remote user can partially access data on the target system.
- A remote user can partially modify data on the target system.
- A remote user can cause partial denial of service conditions on the target system.
- An unspecified flaw exists in Gopher.
Impact
- Denial of Service
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Oracle Java version prior to 1.4.2_40, 5.0 Update 38, 6 Update 37, 7 Update 9
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- The vendor has issued a fix
http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html
http://www.oracle.com/technetwork/java/javase/6u37-relnotes-1863283.html
Vulnerability Identifier
- CVE-2012-1531
- CVE-2012-1532
- CVE-2012-1533
- CVE-2012-3143
- CVE-2012-3159
- CVE-2012-3216
- CVE-2012-4416
- CVE-2012-5067
- CVE-2012-5068
- CVE-2012-5069
- CVE-2012-5070
- CVE-2012-5071
- CVE-2012-5072
- CVE-2012-5073
- CVE-2012-5074
- CVE-2012-5075
- CVE-2012-5076
- CVE-2012-5077
- CVE-2012-5078
- CVE-2012-5079
- CVE-2012-5080
- CVE-2012-5081
- CVE-2012-5082
- CVE-2012-5083
- CVE-2012-5084
- CVE-2012-5085
- CVE-2012-5086
- CVE-2012-5087
- CVE-2012-5088
- CVE-2012-5089
Source
Related Link
Share with