Oracle Java JRE Insecure Executable Loading Vulnerability

2015年7月21日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 緊急

概要

The vulnerability is caused due to the application loading an executable file in an insecure manner when an out of memory condition occurs. This can be exploited to execute arbitrary programs by tricking a user into e.g. opening a HTML file, which loads an applet located on a remote WebDAV or SMB share.

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1004737

Trend Micro Deep Security DPI Rule Name: 1004737 - Oracle Java JRE Insecure Executable Loading Vulnerability

影響を受けるソフトウェア

Sun Java JRE