103 matches found
Arbitrary Code Execution
IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security...
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Flex System Manager (FSM)
Summary There are multiple vulnerabilities in IBM Runtime Environment Java Technology Edition, Version 6 and 7 that is used by IBM Flex System Manager. These issues were disclosed as part of the IBM Java SDK updates in January 2015. Vulnerability Details Summary There are multiple vulnerabilities...
CVE-2018-0403
CVE-2018-0403 affects Cisco Unified Contact Center Express (Unified CCX) through its web-based management interface. The root cause is the web UI pre-populating the login form password field with previously stored passwords from an internal database, enabling an unauthenticated, remote attacker t...
Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition
Summary Java SE issues disclosed in the Oracle January 2015 Critical Patch Update plus two additional vulnerabilities Vulnerability Details CVE IDs: CVE-2014-6549 CVE-2015-0408 CVE-2015-0412 CVE-2015-0395 CVE-2015-0403 CVE-2015-0406 CVE-2015-0410 CVE-2015-0407 CVE-2015-0400 CVE-2014-6587...
Security Bulletin: Multiple vulnerabilities in current releases of IBM® WebSphere Real Time
Summary Java SE issues disclosed in the Oracle January 2015 Critical Patch Update plus two additional vulnerabilities Vulnerability Details CVE IDs: CVE-2014-6549 CVE-2015-0408 CVE-2015-0412 CVE-2015-0395 CVE-2015-0403 CVE-2015-0406 CVE-2015-0410 CVE-2015-0407 CVE-2015-0400 CVE-2014-6587...
Solaris 10 (sparc) : 148768-01
Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite subcomponent: Utility. Supported versions that are affected are 8, 9, 10 and 11. Difficult to exploit vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthoriz...
Solaris 10 (x86) : 148769-01
Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite subcomponent: Utility. Supported versions that are affected are 8, 9, 10 and 11. Difficult to exploit vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthoriz...
CVE-2017-0403
CVE-2017-0403 is an elevation-of-privilege vulnerability in the Android kernel performance subsystem. The issue could allow a local malicious application to execute arbitrary code within the kernel context, requiring initial access via a privileged process. Affected software is Android’s kernel w...
CVE-2016-0403
CVE-2016-0403 is an impact described in connected sources as a Solaris SMB Utilities component denial-of-service vulnerability on Oracle Solaris 11. It allows remote attackers to cause a complete denial of service via SMB, with the underlying issue tied to the SMB Utilities component. The exploit...
Oracle Solaris Critical Patch Update : jan2016_SRU11_3_0_0_0
This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: NDMP Backup Service. The supported version that is affected is 11. Easily exploitable vulnerability requiring logon t...
Oracle: Security Advisory (ELSA-2007-0403)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VMware vCenter Chargeback Manager Multiple Java Vulnerabilities (VMSA-2015-0003) (POODLE)
The version of VMware vCenter Chargeback Manager installed on the remote host is affected by a man-in-the-middle MitM information disclosure vulnerability known as POODLE. The vulnerability is due to the way SSL 3.0 handles padding bytes when decrypting messages encrypted using block ciphers in...
VMware Horizon View Multiple Vulnerabilities (VMSA-2015-0003) (VMSA-2015-0008) (POODLE)
The VMware Horizon View installed on the remote Windows host is version 5.x prior to 5.3.4 or version 6.x prior to 6.1. It is, therefore, affected by the following vulnerabilities : - A man-in-the-middle MitM information disclosure vulnerability, known as POODLE, exists due to the way SSL 3.0...
Low: Red Hat Security Advisory: Red Hat Satellite IBM Java Runtime security update
Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Satellite 5.7. Red Hat Product Security has rated this update as having Low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...
SuSE 11.3 Security Update : java-1_7_0-openjdk (SAT Patch Number 10286)
java-170-openjdk was updated to fix 19 security issues. Details are available at http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.h tmlAppendixJAVA %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
RHEL 6 / 7 : java-1.7.1-ibm (RHSA-2015:0133)
Updated java-1.7.1-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 6 and 7 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
Critical: Red Hat Security Advisory: java-1.7.0-ibm security update
Updated java-1.7.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
Critical: Red Hat Security Advisory: java-1.6.0-ibm security update
Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
Oracle Java SE JRE Multiple Unspecified Vulnerabilities-03 (Feb 2015) - Linux
Oracle Java SE JRE is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
jdk7-openjdk: multiple issues
CVE-2014-3566 man-in-the-middle Nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. - CVE-2014-6585 out-of-bounds read Allows remote attackers to affect confidentiality via font parsing...