فا

‫ IBM Java Multiple Vulnerabilities

ID: IRCAD2015053914
Release Date: 2015-05-06
Criticality level: Highly critical
Software:
IBM Java 5.x
IBM Java 6.x
IBM Java 7.x
IBM Java 8.x
Description:
A weakness and multiple vulnerabilities have been reported in IBM Java, which can be exploited by malicious people to disclose certain sensitive information, manipulate certain data, bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
1) An error in the IBM implementation of the Java Virtual Machine can be exploited to gain otherwise restricted privileges.
2) An error in the IBM implementation of the Java Virtual Machine can be exploited to bypass certain permission checks and subsequently access otherwise restricted information.
3) An error related to the IBM Java Secure Socket Extension provider can be exploited to cause a DoS.
The vulnerabilities are reported in versions 5.0 SR16-FP9 and prior, 6 SR16-FP3 and prior, 6R1 SR8-FP3 and prior, 7 SR8-FP10 and prior, 7R1 SR2-FP10 and prior, and 8 GA.
Solution
Update to version 5.0 SR16-FP10, 6 SR16-FP4, 6R1 SR8-FP4, 7 SR9, 7R1 SR3, or 8 SR1.
References:
IBM (IV72335, IV72338, IV72342, IV72345, IV72346, IV72348, IV72351, IV72352, IV72355, IV70681, IV70682, IV71888, IV72240, IV72245):
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 9 خرداد 1394

امتیاز

امتیاز شما
تعداد امتیازها:0