731 matches found
Vulnerability of Java Platform and JRockit software platforms, allowing attackers to breach information confidentiality
The vulnerability of the JCE component in Java Platform and JRockit programming platforms is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the confidentiality of information...
The vulnerability of the Java Platform software platform allows a perpetrator to compromise the integrity, accessibility, and confidentiality of data.
The vulnerability of the Java Platform-related software platform is associated with errors in the code. Exploiting this vulnerability can allow an attacker, operating locally, to compromise the integrity, accessibility, and confidentiality of data by making changes during the installation process...
[SECURITY] [DSA 3316-1] openjdk-7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3316-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 25, 2015 https://www.debian.org/security/faq -...
JDK: unspecified vulnerability fixed in 6u101, 7u85 and 8u51 (2D)
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
OpenJDK: insufficient context checks during object deserialization (Libraries, 8076405)
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2015-2590...
The vulnerability of the Java Platform software platform allows a perpetrator to compromise the integrity, accessibility, and confidentiality of information.
The vulnerability of the Java Platform-related software platform is associated with errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity, accessibility, and confidentiality of information...
The vulnerability of the Java Platform software platform allows a perpetrator to compromise the integrity, accessibility, and confidentiality of information.
The vulnerability of the Java Platform-related software platform is associated with errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity, accessibility, and confidentiality of information...
Unspecified Vulnerability in Oracle Java SE 2D Component
Oracle Java SE is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in the 2D subcomponent of Oracle Java SE, which can be exploited by a remote attacker to construct a malicious WEB page and trick...
JDK: unspecified vulnerability fixed in 7u85 and 8u51 (Deployment)
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...
UBUNTU-CVE-2015-4760
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
OpenJDK: name for reverse DNS lookup used in certificate identity check (JSSE, 8067694)
A flaw was found in the way the JSSE component in OpenJDK performed X.509 certificate identity verification when establishing a TLS/SSL connection to a host identified by an IP address. In certain cases, the certificate was accepted as valid if it was issued for a host name to which the IP addres...
OpenJDK: improper permission checks in MBeanServerInvocationHandler (JMX, 8076397)
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; Java SE Embedded 7u75; and Java SE Embedded 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX...
Vulnerability of the Java Platform software platform, which allows attackers to compromise privacy, integrity, and accessibility
The vulnerability of the Java Platform allows a malicious actor to compromise privacy, integrity, and accessibility by exploiting the software interface for remote methods...
JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459...
JDWP 代码执行漏洞
JPDAJava Platform Debugger Architecture 是 Java 平台调试体系结构的缩写,通过 JPDA 提供的 API,开发人员可以方便灵活的搭建 Java 调试应用程序。JPDA 主要由三个部分组成:Java虚拟机工具接口(JVMTI),Java 调试线协议(JDWP),以及 Java 调试接口(JDI)。JDWP协议可以支持远程调试,当次接口未授权访问时,可以执行Java代码,造成代码执行,获取服务器权限。服务端监听80端口记录访问: 使用jdwp-shellifier,执行系统命令:python jdwp-shellifier.py -t...
JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459...
[SECURITY] [DSA 3235-1] openjdk-7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3235-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 24, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3234-1] openjdk-6 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3234-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 24, 2015 http://www.debian.org/security/faq -...
JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)
Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...
JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)
Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492...