Skip to main content

Oracle Java SE Multiple Vulnerabilities

Last Update Date: 13 Jun 2012 15:10 Release Date: 13 Jun 2012 5129 Views

RISK: High Risk

TYPE: Operating Systems - Application Platforms

TYPE: Application Platforms

Multiple vulnerabilities have been identified in Oracle Java SE. A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions. A local user can partially access and modify data and partially deny service on the target system.

  1. A remote user can send specially crafted data to execute arbitrary code on the target system or cause complete denial of service conditions. The 2D, Deployment, Hotspot, and Swing components are affected.
  2. A remote user can partially access and modify data and partially deny service on the target system. The CORBA component is affected.
  3. A remote user can partially access and modify data on the target system. The Libraries component is affected.
  4. A remote user can partially modify data on the target system. The CORBA component is affected.
  5. A remote user can partially deny service on the target system. The JAXP and security components are affected.
  6. A local user can partially access and modify data and partially deny service on the target system. The Networking component is affected.

Impact

  • Denial of Service
  • Remote Code Execution
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • Oracle Java SE versions 1.4.2_37 and prior, 5.0 Update 35 and prior, 6 Update 32 and prior, 7 Update 4 and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

 


Vulnerability Identifier


Source


Related Link