PT-2016-5480 · Oracle+4 · Java Se Embedded+6

Published

2016-07-20

·

Updated

2024-06-15

·

CVE-2016-3458

CVSS v3.1

4.3

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 6u115, 7u101, and 8u92 Oracle Java SE Embedded version 8u91
Description The issue affects the integrity of the system, allowing remote attackers to exploit it via vectors related to CORBA.
Recommendations For Oracle Java SE versions 6u115, 7u101, and 8u92, update to a version that fixes the issue. For Oracle Java SE Embedded version 8u91, update to a version that fixes the issue. As a temporary workaround, consider restricting access to CORBA-related functionality until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CESA-2016_1458
CESA-2016_1504
CESA-2016_1776
CVE-2016-3458
DLA-579-1
DSA-3641-1
MGASA-2016-0273
OPENSUSE-SU-2016_2050-1
OPENSUSE-SU-2016_2051-1
OPENSUSE-SU-2016_2052-1
OPENSUSE-SU-2016_2058-1
OPENSUSE-SU-2024:10197-1
OPENSUSE-SU-2024:10534-1
RHSA-2016:1458
RHSA-2016:1475
RHSA-2016:1476
RHSA-2016:1477
RHSA-2016:1504
RHSA-2016:1776
RHSA-2016_1458
RHSA-2016_1475
RHSA-2016_1476
RHSA-2016_1477
RHSA-2016_1504
RHSA-2016_1776
SUSE-SU-2016:1997-1
SUSE-SU-2016:2012-1
SUSE-SU-2016_1997-1
SUSE-SU-2016_2012-1
USN-3043-1
USN-3062-1
USN-3077-1

Affected Products

Centos
Java Platform
Java Se
Java Se Embedded
Red Hat
Suse
Ubuntu