PT-2015-2468 · Oracle+5 · Jrockit+7

Publicado

2015-10-21

·

Atualizado

2024-06-15

·

CVE-2015-4911

CVSS v2.0

5.0

Média

VetorAV:N/AC:L/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions Java Platform versions (affected versions not specified) Jrockit versions (affected versions not specified)
Description The issue is related to errors in the code of a subcomponent, specifically JAXP, in Jrockit and Java Platform. It can be exploited by a remote attacker using specially crafted data for an API function, potentially leading to a denial of service.
Recommendations For Java Platform, at the moment, there is no information about a newer version that contains a fix for this issue. For Jrockit, at the moment, there is no information about a newer version that contains a fix for this issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-17

Identificadores relacionados

BDU:2015-11833
CESA-2015_1919
CESA-2015_1920
CESA-2015_2086
CVE-2015-4911
DLA-346-1
DSA-3381-1
DSA-3381-2
DSA-3465-1
MGASA-2015-0412
OPENSUSE-SU-2015_1902-1
OPENSUSE-SU-2015_1905-1
OPENSUSE-SU-2015_1906-1
OPENSUSE-SU-2015_1971-1
OPENSUSE-SU-2016_0270-1
OPENSUSE-SU-2024:10197-1
OPENSUSE-SU-2024:10534-1
RHSA-2015:1919
RHSA-2015:1920
RHSA-2015:1921
RHSA-2015:1926
RHSA-2015:1927
RHSA-2015:1928
RHSA-2015:2086
RHSA-2015_1919
RHSA-2015_1920
RHSA-2015_1921
RHSA-2015_1926
RHSA-2015_1927
RHSA-2015_1928
RHSA-2015_2086
SUSE-SU-2015:1874-1
SUSE-SU-2015:1874-2
SUSE-SU-2015:1875-1
SUSE-SU-2015:1875-2
SUSE-SU-2015:2166-1
SUSE-SU-2015:2168-1
SUSE-SU-2015:2168-2
SUSE-SU-2015:2182-1
SUSE-SU-2015:2192-1
SUSE-SU-2015:2216-1
SUSE-SU-2015:2268-1
USN-2784-1
USN-2827-1

Produtos afetados

Centos
Ibm Aix
Jaxp
Java Platform
Jrockit
Red Hat
Suse
Ubuntu