8 matches found
CVE-2016-4000
creationtimestamp| type| source ---|---|--- 2024-01-09 11:41:19+00:00| seen| https://t.me/ctinow/164962...
Oracle Application Testing Suite Multiple Vulnerabilities (Jan 2020 CPU)
The version of Oracle Application Testing Suite installed on the remote host is affected by multiple vulnerabilities : - Vulnerability in the Oracle Application Testing Suite product of Oracle Enterprise Manager component: Oracle Flow Builder Jython. Supported versions that are affected are...
Oracle Enterprise Manager Cloud Control (Oct 2019 CPU)
The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by multiple vulnerabilities in Enterprise Manager Base Platform component: - A remote security vulnerability exists in the Enterprise Manager Base Platform product of Oracle Enterprise Manager. An...
DEBIAN-CVE-2016-4000
Jython before 2.7.1rc1 allows attackers to execute arbitrary code via a crafted serialized PyFunction object...
CVE-2016-4000
Jython before 2.7.1rc1 allows attackers to execute arbitrary code via a crafted serialized PyFunction object...
CVE-2016-4000
CVE-2016-4000 affects Oracle Enterprise Manager Base Platform (Jython) — a remote code execution via a crafted serialized PyFunction object. The GitHub advisory GHSA-6R7R-JJ8H-PQ6V corroborates deserialization of untrusted data in Jython and references the same CVE. Tenable Nessus entries (e.g., ...
CVE-2016-4000
Jython before 2.7.1rc1 allows attackers to execute arbitrary code via a crafted serialized PyFunction object...
[SECURITY] [DLA 989-1] jython security update
Package : jython Version : 2.5.2-1+deb7u1 CVE ID : CVE-2016-4000 Debian Bug : 864859 Alvaro Munoz and Christian Schneider discovered that Jython, an implementation of the Python language seamlessly integrated with Java, would execute arbitrary code when deserializing objects. For Debian 7 "Wheezy...