Lucene search
+L

71 matches found

Cvelist
Cvelist
added 2013/01/10 9:23 p.m.48 views

CVE-2013-0422

Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute arbitrary code by 1 using the public getMBeanInstantiator method in the JmxMBeanServer class to obtain a reference to a private MBeanInstantiator object, then retrieving arbitrary Class references using t...

8AI score0.97612EPSS
Exploits38References19
CVE
CVE
added 2013/01/10 9:23 p.m.1157 views

CVE-2013-0422

CVE-2013-0422 affects Oracle Java 7 before Update 11, combining two issues: (1) JMX/MBean path via getMBeanInstantiator and findClass enabling private MBeanInstantiator reference retrieval, and (2) recursive use of Reflection API bypassing java.lang.invoke.MethodHandles.Lookup.checkSecurityManage...

10CVSS8.2AI score0.97612EPSS
In wildExploits38References20Affected Software2
ATTACKERKB
ATTACKERKB
added 2013/01/10 12:0 a.m.172 views

CVE-2013-0422

Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute arbitrary code by 1 using the public getMBeanInstantiator method in the JmxMBeanServer class to obtain a reference to a private MBeanInstantiator object, then retrieving arbitrary Class references using t...

10CVSS3.4AI score0.98536EPSS
In wildExploits48References23
Symantec
Symantec
added 2013/01/10 12:0 a.m.75 views

Oracle Java Runtime Environment CVE-2013-0422 Multiple Remote Code Execution Vulnerabilities

Description Oracle Java Runtime Environment is prone to multiple remote code execution vulnerabilities. An attacker can exploit these issues to execute arbitrary code in the context of the application. Versions prior to Oracle JRE 1.7.0 Update 11 are vulnerable. Technologies Affected CentOS CentO...

10CVSS0.1AI score0.97612EPSS
Exploits38References6Affected Software31
Tenable Nessus
Tenable Nessus
added 2012/10/17 12:0 a.m.61 views

Mac OS X : Java for Mac OS X 10.6 Update 11

The remote Mac OS X host has a version of Java for Mac OS X 10.6 that is missing Update 11, which updates the Java version to 1.6.037. It is, therefore, affected by several security vulnerabilities, the most serious of which may allow an untrusted Java applet to execute arbitrary code with the...

10CVSS8.1AI score0.68532EPSS
Exploits5References23
Tenable Nessus
Tenable Nessus
added 2012/02/06 12:0 a.m.246 views

Oracle Java SE 7 <= Update 11 Multiple Vulnerabilities (February 2013 CPU)

Binary data 6685.prm...

10CVSS7.3AI score0.89987EPSS
Exploits10References41
OpenVAS
OpenVAS
added 2009/01/13 12:0 a.m.39 views

SuSE Security Advisory SUSE-SA:2009:001 (Sun Java)

The remote host is missing updates announced in advisory SUSE-SA:2009:001. OpenVAS Vulnerability Test $Id: susesa2009001.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:001 Sun Java Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS0.8AI score0.85695EPSS
Exploits23
Cvelist
Cvelist
added 2007/07/10 7:0 p.m.38 views

CVE-2007-3655

Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE 5.0 Update 11 and earlier, and 6.0 Update 1 and earlier, allows remote attackers to execute arbitrary code via a long codebase attribute in a JNLP file...

7.7AI score0.12273EPSS
Exploits2References29
NVD
NVD
added 2007/06/30 1:30 a.m.29 views

CVE-2007-3504

Directory traversal vulnerability in the PersistenceService in Sun Java Web Start in JDK and JRE 5.0 Update 11 and earlier, and Java Web Start in SDK and JRE 1.4.213 and earlier, for Windows allows remote attackers to perform unauthorized actions via an application that grants file overwrite...

9.3CVSS7.7AI score0.06417EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2007/05/02 12:0 a.m.40 views

Sun Java Web Start Unauthorized Access (102881)

According to its version number, the Sun Java Runtime Environment JRE installed on the remote host reportedly may allow an untrusted application to elevate its privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

10CVSS5.4AI score0.04959EPSS
Exploits0References2
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.12 views

Detectoid: Exchange Server 2013 CU11

Detectoid for Exchange Server 2013 Cumulative Update 11...

1.8AI score
Exploits0
Rows per page
Query Builder