PT-2011-4530 · Oracle+3 · Jrockit+6

Ariel Montano Cardenas

Published

2011-10-18

Updated

2025-10-29

CVE-2011-3556

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Java SE JDK and JRE versions prior to 7, 6 Update 27, 5.0 Update 31, and 1.4.2 33 JRockit version R28.1.4 and earlier

Description The issue allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.

Recommendations For Java SE JDK and JRE versions prior to 7, 6 Update 27, 5.0 Update 31, and 1.4.2 33, update to a version that is not affected by this issue. For JRockit version R28.1.4 and earlier, update to a version that is not affected by this issue. As a temporary workaround, consider restricting access to RMI-related functionality until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2011-3556

DSA-2356-1

DSA-2358-1

HPSBUX02730

HPSBUX02760

HPSBUX02777

RHSA-2011:1380

RHSA-2011:1384

RHSA-2011:1478

RHSA-2011_1380

RHSA-2011_1384

RHSA-2011_1478

RHSA-2012:0006

RHSA-2012:0034

RHSA-2012:0343

RHSA-2012_0034

RHSA-2013:1455

Affected Products

Hp-Ux

Jrockit

Java Platform

Java Se Jdk

Java Se Jre

Red Hat

Suse

PT-2011-4530 · Oracle+3 · Jrockit+6

CVE-2011-3556

Related Identifiers

Affected Products

References · 40