Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:23563
HistoryApr 10, 2020 - 12:30 a.m.

Arbitrary Code Execution

2020-04-1000:30:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

java is vulnerable to arbitrary code execution. A buffer overflow flaw was found in the splash screen processing. A remote attacker could extend privileges to read and write local files, as well as to execute local applications with the privileges of the user running the java process.

References

Related

checkpoint_advisories 2
cve 1
ubuntucve 1
prion 1
ubuntu 1
nessus 28
securityvulns 3
openvas 37
debian 1
osv 1
redhat 5
suse 3
oraclelinux 1
centos 1
oracle 1
vmware 6
gentoo 1
checkpoint_advisories
checkpoint_advisories
Sun Java Web Start Splashscreen PNG Processing Buffer Overflow (CVE-2009-1097)
2010-01-14 00:00:00
Multiple Products Runtime Environment GIF Parsing Memory Corruption (CVE-2005-1106; CVE-2009-1097; CVE-2009-1098; CVE-2015-5096)
2009-11-01 00:00:00
cve
cve
CVE-2009-1097
2009-03-25 23:30:00
ubuntucve
ubuntucve
CVE-2009-1097
2009-03-25 00:00:00
prion
prion
Integer overflow
2009-03-25 23:30:00
ubuntu
ubuntu
OpenJDK vulnerabilities
2009-03-26 00:00:00
nessus
nessus
Ubuntu 8.10 : openjdk-6 vulnerabilities (USN-748-1)
2009-04-23 00:00:00
Debian DSA-1769-1 : openjdk-6 - several vulnerabilities
2009-04-13 00:00:00
RHEL 5 : java-1.6.0-openjdk (RHSA-2009:0377)
2009-04-08 00:00:00
securityvulns
securityvulns
[USN-748-1] OpenJDK vulnerabilities
2009-03-28 00:00:00
OpenJDK multiple security vulnerabilities
2009-03-28 00:00:00
Oracle Critical Patch Update Advisory - July 2009
2009-07-16 00:00:00
openvas
openvas
Ubuntu USN-748-1 (openjdk-6)
2009-04-06 00:00:00
Ubuntu: Security Advisory (USN-748-1)
2009-04-06 00:00:00
Debian Security Advisory DSA 1769-1 (openjdk-6)
2009-04-15 00:00:00
debian
debian
[SECURITY] [DSA 1769-1] New openjdk-6 packages fix arbitrary code execution
2009-04-11 14:38:24
osv
osv
openjdk-6 - arbitrary code execution
2009-04-11 00:00:00
redhat
redhat
(RHSA-2009:0377) Important: java-1.6.0-openjdk security update
2009-04-07 00:00:00
(RHSA-2009:1038) Critical: java-1.5.0-ibm security update
2009-05-18 00:00:00
(RHSA-2009:1198) Critical: java-1.6.0-ibm security update
2009-08-06 00:00:00
suse
suse
remote code execution in IBM JDK 5
2009-05-25 13:39:41
remote code execution in java-1_6_0-ibm
2009-07-02 21:55:23
remote code execution in Sun Java 5 and 6
2009-04-03 13:04:22
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2009-04-07 00:00:00
centos
centos
java security update
2009-04-08 11:56:07
oracle
oracle
09-07 CPU Advisory
2009-07-14 00:00:00
vmware
vmware
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
VMware vCenter update release addresses multiple security issues in Java JRE
2010-01-29 00:00:00
gentoo
gentoo
Sun JDK/JRE: Multiple vulnerabilities
2009-11-17 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for VERACODE:23563
checkpoint_advisories2cve1ubuntucve1prion1ubuntu1nessus28securityvulns3openvas37debian1osv1redhat5suse3oraclelinux1centos1oracle1vmware6gentoo1