فا

‫ IBM Java Multiple Vulnerabilities

ID:IRCAD2015023741
Release Date: 2015-02-05
Criticality level: Highly critical
Software:
IBM Java 5.x
IBM Java 6.x
IBM Java 7.x
Description:
Multiple vulnerabilities have been reported in IBM Java, which can be exploited by malicious, local users to disclose sensitive information, manipulate certain data, cause a DoS (Denial of Service), and perform certain actions with escalated privileges and by malicious people to disclose sensitive information, manipulate certain data, bypass certain security restrictions, cause a DoS, and compromise a user's system.
1) An unspecified error in the JVM implementation can be exploited to bypass certain security manager restrictions.
2) Another unspecified error in the JVM implementation can be exploited to bypass certain security manager restrictions.
The vulnerabilities are reported in versions prior to 5.0 SR16-FP9, prior to 6 SR16-FP3, prior to 6R1 SR8-FP3, prior to 7 SR8-FP10, and prior to 7R1 SR2-FP10.
Solution:
Update to version 5.0 SR16-FP9, 6 SR16-FP3, 6R1 SR8-FP3, 7 SR8-FP10, or 7R1 SR2-FP10.
CVE-2014-8891, IBM 5.0 Fix:
CVE-2014-8891, IBM 6 Fix:
CVE-2014-8891, IBM 7 Fix:
CVE-2014-8892, IBM 5.0 Fix:
CVE-2014-8892, IBM 6 Fix:
CVE-2014-8892, IBM 7 Fix:
References:
IBM (IV68794, IV68796, IV68798, IV68799, IV68801, IV68802, IV68803, IV68805, IV68807, IV68810, IV68811, IV68813, IV68815, IV68823, IV68825):
Secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

مشخصات خبر

 
تاریخ ایجاد: 27 بهمن 1393

امتیاز

امتیاز شما
تعداد امتیازها: 0