Java Applet Field Bytecode Verifier Cache Remote Code Execution (CVE-2012-1723)
Publish Date: 21 de lipca de 2015
Severity: : Critical
CVE Kennungen: : CVE-2012-1723
Advisory Date: 21 de lipca de 2015
DESCRIPTION
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005598
Trend Micro Deep Security DPI Rule Name: 1005598 - Identified Malicious Java JAR Files - 3
AFFECTED SOFTWARE AND VERSION:
- oracle jdk 1.6.0
- oracle jdk 1.7.0
- oracle jre 1.6.0
- oracle jre 1.7.0
- sun jdk 1.4.2_37
- sun jdk 1.5.0
- sun jre 1.4.2_37
- sun jre 1.5.0