Oracle Java JRE Insecure Executable Loading Vulnerability
Gravedad: Crítico
Fecha recomendada: 21 de julio de 2015
Descripción
The vulnerability is caused due to the application loading an executable file in an insecure manner when an out of memory condition occurs. This can be exploited to execute arbitrary programs by tricking a user into e.g. opening a HTML file, which loads an applet located on a remote WebDAV or SMB share.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1004737
Trend Micro Deep Security DPI Rule Name: 1004737 - Oracle Java JRE Insecure Executable Loading Vulnerability
Software y versión afectados
- Sun Java JRE