Oracle Java SE Java Runtime Environment Unspecified Vulnerability - October 2011 (Windows)

Oracle Java SE Java Runtime Environment Unspecified Vulnerability - October 2011 (Windows). Successful exploitation allows remote attackers to cause a denial of service. Impact Level: System/Application. The flaw is due to an unspecified error in the Java Runtime Environment component. Upgrade to Oracle Java SE versions 7 Update 1 or later. For updates refer to http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html. This host is installed with Oracle Java SE and is prone to unspecified vulnerability

Reporter	Title	Published	Views	Family All 25
IBM Security Bulletins	Potential Security Vulnerabilities With JavaTM SDKs	17 Jun 201814:01	–	ibm
CVE	CVE-2011-3555	19 Oct 201121:00	–	cve
Cvelist	CVE-2011-3555	19 Oct 201121:00	–	cvelist
EUVD	EUVD-2011-3518	7 Oct 202500:30	–	euvd
Tenable Nessus	GLSA-201111-02 : Oracle JRE/JDK: Multiple vulnerabilities (BEAST)	7 Nov 201100:00	–	nessus
Tenable Nessus	Oracle Java SE Multiple Vulnerabilities (October 2011 CPU) (BEAST)	20 Oct 201100:00	–	nessus
Tenable Nessus	Oracle Java SE Multiple Vulnerabilities (October 2011 CPU) (BEAST) (Unix)	22 Feb 201300:00	–	nessus
Tenable Nessus	RHEL 5 / 6 : java-1.6.0-sun (RHSA-2011:1384)	20 Oct 201100:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : java-1.6.0-sun on SL5.x i386/x86_64 (BEAST)	1 Aug 201200:00	–	nessus
Tenable Nessus	openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-5329) (BEAST)	13 Jun 201400:00	–	nessus

Source	Link
oracle	www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
xforce	www.xforce.iss.net/xforce/xfdb/70838
secunia	www.secunia.com/advisories/46512

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_oracle_java_se_java_runtime_env_unspec_vuln_win.nasl 7699 2017-11-08 12:10:34Z santu $
#
# Oracle Java SE Java Runtime Environment Unspecified Vulnerability - October 2011 (Windows)
#
# Authors:
# Sooraj KS <[email protected]>
#
# Copyright:
# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

tag_impact = "Successful exploitation allows remote attackers to cause a denial of service.
  Impact Level: System/Application";
tag_affected = "Oracle Java SE versions 7.";
tag_insight = "The flaw is due to unspecified error in the Java Runtime Environment
  component.";
tag_solution = "Upgrade to Oracle Java SE versions 7 Update 1 or later.
  For updates refer to
  http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html";
tag_summary = "This host is installed with Oracle Java SE and is prone to
  unspecified vulnerability.";

if(description)
{
  script_id(802277);
  script_version("$Revision: 7699 $");
  script_cve_id("CVE-2011-3555");
  script_bugtraq_id(50237);
  script_tag(name:"cvss_base", value:"6.1");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:N/I:P/A:C");
  script_tag(name:"last_modification", value:"$Date: 2017-11-08 13:10:34 +0100 (Wed, 08 Nov 2017) $");
  script_tag(name:"creation_date", value:"2011-11-15 14:34:22 +0530 (Tue, 15 Nov 2011)");
  script_name("Oracle Java SE Java Runtime Environment Unspecified Vulnerability - October 2011 (Windows)");
  script_xref(name : "URL" , value : "http://secunia.com/advisories/46512");
  script_xref(name : "URL" , value : "http://xforce.iss.net/xforce/xfdb/70838");
  script_xref(name : "URL" , value : "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2011 Greenbone Networks GmbH");
  script_family("General");
  script_dependencies("gb_java_prdts_detect_win.nasl");
  script_mandatory_keys("Sun/Java/JDK_or_JRE/Win/installed");
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("version_func.inc");

## Get JRE Version from KB
jreVer = get_kb_item("Sun/Java/JRE/Win/Ver");
if(jreVer)
{

  ## Check for Oracle Java SE versions 7
  if(version_is_equal(version:jreVer, test_version:"1.7.0"))
  {
    security_message(0);
    exit(0);
  }
}

# Get JDK Version from KB
jdkVer = get_kb_item("Sun/Java/JDK/Win/Ver");
if(jdkVer)
{

  ## Check for Oracle Java SE versions 7
  if(version_is_equal(version:jdkVer, test_version:"1.7.0")) {
    security_message(0);
  }
}

08 Nov 2017 00:00Current

0.8Low risk

Vulners AI Score0.8

EPSS0.01609