Oracle Java JRE Insecure Executable Loading Vulnerability
Gravità: : Critico
Data notifica: 21 luglio 2015
Descrizione
The vulnerability is caused due to the application loading an executable file in an insecure manner when an out of memory condition occurs. This can be exploited to execute arbitrary programs by tricking a user into e.g. opening a HTML file, which loads an applet located on a remote WebDAV or SMB share.
Informazioni esposizione:
Apply associated Trend Micro DPI Rules.
Soluzioni
Trend Micro Deep Security DPI Rule Number: 1004737
Trend Micro Deep Security DPI Rule Name: 1004737 - Oracle Java JRE Insecure Executable Loading Vulnerability
Software e versione interessati:
- Sun Java JRE