Lucene search

K
kasperskyKaspersky LabKLA10793
HistoryApr 19, 2016 - 12:00 a.m.

KLA10793 Multiple vulnerabilities in Oracle Java SE

2016-04-1900:00:00
Kaspersky Lab
threats.kaspersky.com
30

8.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.038 Low

EPSS

Percentile

91.8%

Detect date:

04/19/2016

Severity:

Critical

Description:

An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can cause denial of service and loss of integrity or obtain sensitive vulnerability. These vulnerabilities can be exploited remotely via a multiple vectors related to 2D, Hotspot, Serialization, JMX, Deployment, Security, JAXP and JCE sub-components.

Affected products:

Oracle Java SE 6 update 113
Oracle Java SE 7 update 99
Oracle Java SE 8 update 77
Oracle Java SE Embedded 8 update 77
Oracle JRockit R28.3.9

Solution:

Update to the latest version
Get Java SE

Original advisories:

Oracle bulletin

Impacts:

OSI

Related products:

Oracle Java JRE 1.7.x

CVE-IDS:

CVE-2016-34497.6Critical
CVE-2016-06952.6Warning
CVE-2016-34255.0Warning
CVE-2016-34225.0Warning
CVE-2016-34264.3Warning

8.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.038 Low

EPSS

Percentile

91.8%