20 matches found
Sun Java Applet2ClassLoader - Remote Code Execution Exploit
No description provided by source. $Id: javacodebasetrust.rb 11983 2011-03-16 05:01:29Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
openSUSE Security Update : java-1_6_0-sun (openSUSE-SU-2011:0126-1)
Sun Java 1.6 was updated to Update 24 fixing various bugs and security issues. The update is rated critical by Sun. Following CVEs were addressed: CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4467 CVE-2010-4469 CVE-2010-4473 CVE-2010-4422 CVE-2010-4451...
openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-4147)
Sun Java 1.6 was updated to Update 24 fixing various bugs and security issues. The update is rated critical by Sun. Following CVEs were addressed: CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4467 CVE-2010-4469 CVE-2010-4473 CVE-2010-4422 CVE-2010-4451...
Scientific Linux Security Update : java (jdk 1.6.0) on SL4.x, SL5.x i386/x86_64
This update fixes several vulnerabilities in the Sun Java 6 Software Development Kit. Further information about these flaws can be found on the 'Oracle Java SE and Java for Business Critical Patch Update Advisory' page. CVE-2010-4422, CVE-2010-4447, CVE-2010-4448, CVE-2010-4450, CVE-2010-4451,...
Major DNS Cache Poisoning Attack Hits Brazilian ISPs
There is a large-scale DNS cache-poisoning attack going on in Brazil at the moment, with potentially millions of users affected by a tactic that is forcing the to install a malicious Java applet before they can reach many popular sites, including Google, Gmail and Hotmail. The attack has been goi...
VMSA-2011-0013 : VMware third-party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
a. ESX third-party update for Service Console openssl RPM The Service Console openssl RPM is updated to openssl-0.9.8e.12.el55.7 resolving two security issues. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2008-7270 and CVE-2010-4180 to these issues. b...
HP-UX Update for Java HPSBUX02685
Check for the Version of Java OpenVAS Vulnerability Test HP-UX Update for Java HPSBUX02685 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of the G...
openSUSE Security Update : java-1_6_0-sun (openSUSE-SU-2011:0126-1)
Sun Java 1.6 was updated to Update 24 fixing various bugs and security issues. The update is rated critical by Sun. Following CVEs were addressed: CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4467 CVE-2010-4469 CVE-2010-4473 CVE-2010-4422 CVE-2010-4451...
SuSE 11.1 Security Update : IBM Java (SAT Patch Number 4109)
IBM Java 6 SR9 FP1 was updated to fix a critical security bug in float number handling : - The Java Runtime Environment hangs forever when converting '2.2250738585072012e-308' to a binary floating-point number. CVE-2010-4476 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive tex...
SuSE 10 Security Update : java-1_6_0-ibm, java-1_6_0-ibm-32bit, java-1_6_0-ibm-64bit, java-1_6_0-ibm-alsa, java-1_6_0-ibm-alsa-32bit, java-1_6_0-ibm-demo, java-1_6_0-ibm-devel, java-1_6_0-ibm-devel-32bit, java-1_6_0-ibm-fonts, java-1_6_0-ibm-jdbc, java-1_6_0-ibm-jdbc-32bit, java-1_6_0-ibm-jdbc-64bit, java-1_6_0-ibm-plugin, java-1_6_0-ibm-plugin-32bit, java-1_6_0-ibm-src (ZYPP Patch Number 7369)
IBM Java 6 SR9 FP1 was updated to fix a critical security bug in float number handling : - The Java Runtime Environment hangs forever when converting '2.2250738585072012e-308' to a binary floating-point number. CVE-2010-4476 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text descriptio...
Sun Java Applet2ClassLoader Remote Code Execution
This module exploits a vulnerability in the Java Runtime Environment that allows an attacker to run an applet outside of the Java Sandbox. When an applet is invoked with: 1. A "codebase" parameter that points at a trusted directory 2. A "code" parameter that is a URL that does not contain any...
CVE-2010-4452
creationtimestamp| type| source ---|---|--- 2011-03-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16990 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/javacodebasetrust.rb 2025-02-06 03:13:40+00:00|...
Sun Java Applet2ClassLoader - Remote Code Execution (Metasploit)
$Id: javacodebasetrust.rb 11983 2011-03-16 05:01:29Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
SuSE 11.1 Security Update : Sun Java 1.6 (SAT Patch Number 3976)
Sun Java 1.6 was updated to Update 24 fixing various bugs and security issues. The update is rated critical by Sun. The following CVEs were addressed : CVE-2010-4452 / CVE-2010-4454 / CVE-2010-4462 / CVE-2010-4463 / CVE-2010-4465 / CVE-2010-4467 / CVE-2010-4469 / CVE-2010-4473 / CVE-2010-4422 /...
SuSE 10 Security Update : IBM Java 1.6 (ZYPP Patch Number 7342)
Sun Java 1.6 was updated to Update 24 fixing various bugs and security issues. The update is rated critical by Sun. Following CVEs were addressed : CVE-2010-4452 / CVE-2010-4454 / CVE-2010-4462 / CVE-2010-4463 / CVE-2010-4465 / CVE-2010-4467 / CVE-2010-4469 / CVE-2010-4473 / CVE-2010-4422 /...
DSquare Exploit Pack: D2SEC_CLASSLOADER
Name| d2secclassloader ---|--- CVE| CVE-2010-4452 Exploit Pack| D2ExploitPack Description| Oracle Java Unsigned Applet Applet2ClassLoader Remote Code Execution Vulnerability Notes|...
Immunity Canvas: CVE_2010_4452
Name| CVE20104452 ---|--- CVE| CVE-2010-4452 Exploit Pack| CANVAS Description| CVE20104452 Notes| CVE Name: CVE-2010-4452 VENDOR: Oracle NOTES: This exploit will work against Java plugin bundled with Oracle/SUN JDK/JRE = 6 Update 23. Target operating systems are Windows all versions and Ubuntu...
CVE-2010-4452
Unspecified vulnerability in the Deployment component in Java Runtime Environment JRE in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown...
CVE-2010-4452
CVE-2010-4452 affects the Deployment component of Oracle Java SE/JRE (Java for Business) up to 6 Update 23. The vulnerability could allow remote exploitation by untrusted Web Start/applets, impacting confidentiality, integrity, and availability via unknown vectors. Public materials in connected d...
Critical: Red Hat Security Advisory: java-1.6.0-sun security update
Updated java-1.6.0-sun packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring...