Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdi[email protected]ZDI-11-199
HistoryJun 14, 2011 - 12:00 a.m.

Oracle Java Soundbank Decompression Remote Code Execution Vulnerability

2011-06-1400:00:00
[email protected]
www.zerodayinitiative.com
11

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.55 Medium

EPSS

Percentile

97.6%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Java parses soundbank files. When a soundbank file contains compressed data it is first decompressed and then Java will parse the decompressed data. Java will read the ‘channels’ and ‘frames’ properties from the decompressed data and uses those to calculate a buffer size to store data. An integer wrap can occur during this calculation resulting in the creation of a buffer that is too small to hold all the data. This can result in remote code execution under the context of the current user.

Related

checkpoint_advisories 2
securityvulns 1
prion 2
cve 2
veracode 1
ubuntucve 2
redhat 6
nessus 30
openvas 10
suse 9
vmware 2
gentoo 1
oracle 1
checkpoint_advisories
checkpoint_advisories
Oracle Java FileDialog.Show Heap Buffer Overflow - Ver2 (CVE-2011-0802)
2014-03-03 00:00:00
Oracle Java FileDialog.Show Heap Buffer Overflow - Ver2 (CVE-2011-0802)
2014-03-03 00:00:00
securityvulns
securityvulns
ZDI-11-199: Oracle Java Soundbank Decompression Remote Code Execution Vulnerability
2011-06-19 00:00:00
prion
prion
Design/Logic Flaw
2011-06-14 18:55:00
Design/Logic Flaw
2011-06-14 18:55:00
cve
cve
CVE-2011-0802
2011-06-14 18:55:00
CVE-2011-0814
2011-06-14 18:55:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:01:18
ubuntucve
ubuntucve
CVE-2011-0814
2011-06-14 00:00:00
CVE-2011-0802
2011-06-14 00:00:00
redhat
redhat
(RHSA-2011:1087) Critical: java-1.5.0-ibm security update
2011-07-22 00:00:00
(RHSA-2011:1265) Moderate: java-1.4.2-ibm-sap security update
2011-09-06 00:00:00
(RHSA-2011:1159) Critical: java-1.4.2-ibm security update
2011-08-15 00:00:00
nessus
nessus
RHEL 4 / 5 / 6 : java-1.5.0-ibm (RHSA-2011:1087)
2011-07-25 00:00:00
RHEL 4 / 5 : java-1.4.2-ibm (RHSA-2011:1159)
2011-08-16 00:00:00
RHEL 5 : java-1.4.2-ibm-sap (RHSA-2011:1265)
2024-04-27 00:00:00
openvas
openvas
Oracle Java SE Multiple Unspecified Vulnerabilities - June11 (Windows)
2011-06-24 00:00:00
Oracle Java SE Multiple Unspecified Vulnerabilities (Jun 2011) - Windows
2011-06-24 00:00:00
Java for Mac OS X 10.6 Update 5
2011-08-26 00:00:00
suse
suse
remote code execution in java-1_4_2-ibm
2011-08-29 12:59:14
Security update for IBM Java (important)
2011-08-29 20:08:51
remote code execution in java-1_5_0-ibm,IBMJava5
2011-08-04 17:16:07
vmware
vmware
VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
2011-10-27 00:00:00
VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
2011-10-27 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2011-11-05 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2011
2011-12-15 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.55 Medium

EPSS

Percentile

97.6%

JSON
Related for ZDI-11-199
checkpoint_advisories2securityvulns1prion2cve2veracode1ubuntucve2redhat6nessus30openvas10suse9vmware2gentoo1oracle1