PT-2010-4915 · Oracle+2 · Java Se+4
Marc Schoenefeld
·
Publicado
2010-10-13
·
Atualizado
2018-10-30
·
CVE-2010-3554
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Oracle Java SE and Java for Business versions 6 Update 21, 5.0 Update 25, 1.4.2 27, and 1.3.1 28
Description
The issue affects the CORBA component, allowing remote attackers to impact confidentiality, integrity, and availability through unknown vectors. There are claims from a reliable downstream vendor that this might be related to permissions granted to certain system objects.
Recommendations
For Oracle Java SE and Java for Business version 6 Update 21, update to a version that fixes this issue.
For Oracle Java SE and Java for Business version 5.0 Update 25, update to a version that fixes this issue.
For Oracle Java SE and Java for Business version 1.4.2 27, update to a version that fixes this issue.
For Oracle Java SE and Java for Business version 1.3.1 28, update to a version that fixes this issue.
Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Hp-Ux
Java Platform
Java Se
Java For Business
Red Hat