Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiPeter Vreugdenhil (http://vreugdenhilresearch.nl)ZDI-10-053
HistoryApr 05, 2010 - 12:00 a.m.

Sun Java Runtime Environment MIDI File metaEvent Remote Code Execution Vulnerability

2010-04-0500:00:00
Peter Vreugdenhil (http://vreugdenhilresearch.nl)
www.zerodayinitiative.com
8

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.057 Low

EPSS

Percentile

93.2%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun’s Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the handling of MIDI streams. When the code responsible for creating a MixerSequencer object from a MIDI stream encounters an 0xFF byte, it assumes it has reached a metaEvent. It then proceeds to parse out a variable-length field. By abusing the way this structure is stored an attacker can corrupt a pointer address later allowing a NULL byte write to an arbitrary memory address. This can be leveraged to execute remote code under the context of the user running the applet.

Related

ubuntucve 1
veracode 1
securityvulns 4
prion 1
cve 1
nessus 25
redhat 7
suse 2
openvas 13
gentoo 1
oracle 1
ubuntucve
ubuntucve
CVE-2010-0844
2010-04-01 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:45:53
securityvulns
securityvulns
ZDI-10-053: Sun Java Runtime Environment MIDI File metaEvent Remote Code Execution Vulnerability
2010-04-05 00:00:00
Oracle Sun Java multiple security vulnerabilities
2010-04-07 00:00:00
[security bulletin] HPSBMA02547 SSRT100179 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Execution of Arbitrary Code and Other Vulnerabilities
2010-07-18 00:00:00
prion
prion
Design/Logic Flaw
2010-04-01 16:30:00
cve
cve
CVE-2010-0844
2010-04-01 16:30:00
nessus
nessus
RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2010:0489)
2010-06-18 00:00:00
SuSE 11 / 11.1 Security Update : IBM Java / Java (SAT Patch Numbers 2812 / 2813)
2010-12-02 00:00:00
SuSE9 Security Update : IBM Java (YOU Patch Number 12626)
2010-09-03 00:00:00
redhat
redhat
(RHSA-2010:0489) Critical: java-1.5.0-ibm security update
2010-06-17 00:00:00
(RHSA-2010:0574) Critical: java-1.4.2-ibm security update
2010-07-29 00:00:00
(RHSA-2010:0586) Moderate: java-1.4.2-ibm-sap security update
2010-08-02 00:00:00
suse
suse
remote code execution in java-1_5_0-ibm
2010-07-06 17:26:45
remote code execution in java-1_6_0-ibm
2010-07-01 17:43:53
openvas
openvas
HP-UX Update for Java HPSBUX02524
2010-06-07 00:00:00
HP-UX Update for Java HPSBUX02524
2010-06-07 00:00:00
Oracle Java SE Multiple Vulnerabilities (Windows)
2010-04-07 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2010-06-04 00:00:00
oracle
oracle
Security | Oracle Critical Patch Update - July 2010
2010-07-13 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.057 Low

EPSS

Percentile

93.2%

JSON
Related for ZDI-10-053
ubuntucve1veracode1securityvulns4prion1cve1nessus25redhat7suse2openvas13gentoo1oracle1