PT-2014-1641 · Oracle+6 · Jrockit+9

Publicado

2014-10-14

·

Atualizado

2024-06-15

·

CVE-2014-6558

CVSS v2.0

2.6

Baixa

VetorAV:N/AC:H/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions Java SE versions 5.0u71, 6u81, 7u67, and 8u20 Java SE Embedded version 7u60 JRockit versions R27.8.3 and R28.3.3
Description The issue allows a remote attacker to compromise data integrity using a subcomponent related to Security. The vulnerability is related to unknown vectors. There is no information about the estimated number of potentially affected devices or real-world incidents.
Recommendations For Java SE versions 5.0u71, 6u81, 7u67, and 8u20, update to a version that contains the fix for this issue. For Java SE Embedded version 7u60, update to a version that contains the fix for this issue. For JRockit versions R27.8.3 and R28.3.3, update to a version that contains the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-17

Identificadores relacionados

BDU:2015-00559
BDU:2015-00593
CESA-2014_1620
CESA-2014_1634
CESA-2014_1636
CVE-2014-6558
DLA-96-1
DSA-3077-1
DSA-3080-1
HPSBUX03218
MGASA-2014-0422
OPENSUSE-SU-2024:10534-1
RHSA-2014:1620
RHSA-2014:1633
RHSA-2014:1634
RHSA-2014:1636
RHSA-2014:1657
RHSA-2014:1658
RHSA-2014:1876
RHSA-2014:1877
RHSA-2014:1880
RHSA-2014:1881
RHSA-2014:1882
RHSA-2014_1620
RHSA-2014_1633
RHSA-2014_1634
RHSA-2014_1636
RHSA-2014_1657
RHSA-2014_1658
RHSA-2014_1877
RHSA-2014_1880
RHSA-2014_1881
RHSA-2014_1882
RHSA-2015:0264
USN-2386-1
USN-2388-1
USN-2388-2

Produtos afetados

Centos
Hp-Ux
Ibm Aix
Jrockit
Java Platform
Java Se
Java Se Embedded
Red Hat
Suse
Ubuntu