PT-2012-2662 · Oracle+4 · Java Se+5

Published

2012-08-30

·

Updated

2024-06-15

·

CVE-2012-0547

CVSS v2.0

0.0

Low

VectorAV:N/AC:L/Au:N/C:N/I:N/A:N
Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7 Update 6 and earlier Oracle Java SE versions 6 Update 34 and earlier
Description The issue is related to a security-in-depth problem in the Java Runtime Environment (JRE) component, specifically involving AWT. This problem is not directly exploitable but can be used to aggravate other security vulnerabilities that can be directly exploited. The issue has remote attack vectors.
Recommendations For Oracle Java SE versions 7 Update 6 and earlier, update to a version later than Update 6. For Oracle Java SE versions 6 Update 34 and earlier, update to a version later than Update 34. As a temporary workaround, consider restricting access to AWT components to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CESA-2012_1221
CESA-2012_1223
CVE-2012-0547
HPSBUX02824
HPSBUX02825
OPENSUSE-SU-2012_1154-1
OPENSUSE-SU-2012_1175-1
OPENSUSE-SU-2024:10534-1
RHSA-2012:1221
RHSA-2012:1222
RHSA-2012:1223
RHSA-2012:1225
RHSA-2012:1289
RHSA-2012:1392
RHSA-2012:1466
RHSA-2012_1221
RHSA-2012_1222
RHSA-2012_1223
RHSA-2012_1225
RHSA-2012_1289
RHSA-2012_1392
RHSA-2012_1466
RHSA-2013:1455
RHSA-2013:1456
SUSE-SU-2012_1148-1
SUSE-SU-2012_1231-1

Affected Products

Centos
Hp-Ux
Java Platform
Java Se
Red Hat
Suse