PT-2011-4525 · Oracle+3 · Java Se Jdk+6

Published

2011-10-18

·

Updated

2018-01-06

·

CVE-2011-3551

CVSS v2.0

9.3

High

VectorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Oracle Java SE JDK and JRE versions 7, 6 Update 27 and earlier JRockit versions R28.1.4 and earlier
Description The issue affects confidentiality, integrity, and availability. It is related to the 2D component in the Java Runtime Environment. The estimated number of potentially affected devices worldwide is not specified. Details about real-world incidents where this issue was exploited are not provided.
Recommendations For Oracle Java SE JDK and JRE versions 7, 6 Update 27 and earlier, update to a version later than 6 Update 27 or apply the relevant patch. For JRockit versions R28.1.4 and earlier, update to a version later than R28.1.4 or apply the relevant patch. As a temporary workaround, consider restricting access to the 2D component in the Java Runtime Environment until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2011-3551
DSA-2356-1
DSA-2358-1
HPSBUX02730
RHSA-2011:1380
RHSA-2011:1384
RHSA-2011_1380
RHSA-2011_1384
RHSA-2012:0034
RHSA-2012_0034
RHSA-2013:1455

Affected Products

Hp-Ux
Jrockit
Java Platform
Java Se Jdk
Java Se Jre
Red Hat
Suse