PT-2016-1068 · Oracle+5 · Java Se Embedded+7
Published
2016-01-19
·
Updated
2024-06-15
·
CVE-2016-0402
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Java SE versions 6u105, 7u91, and 8u66
Java SE Embedded version 8u65
Description
The issue is related to errors in the code of the Networking component in the Java Platform, which can be exploited by a remote attacker to affect data integrity. This can be achieved through unknown vectors related to Networking, potentially allowing the attacker to modify, add, or delete data using network packets.
Recommendations
For Java SE versions 6u105, 7u91, and 8u66, update to a version that includes the fix for this issue.
For Java SE Embedded version 8u65, update to a version that includes the fix for this issue.
As a temporary workaround, consider restricting access to the Networking component until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Centos
Ibm Aix
Java Platform
Java Se
Java Se Embedded
Red Hat
Suse
Ubuntu