OSVDB ID: 76509

Title: Oracle Java SE / JRE Deployment Component Unspecified Remote Issue (2011-3546)

Info

Disclosure

Oct 18, 2011

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Oct 18, 2011

Description

Oracle Java SE contains a flaw related to the Deployment sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information and manipulate unspecified data. No further details have been provided.

Classification

Location: Remote / Network Access
Attack Type: Attack Type Unknown
Impact: Loss of Confidentiality, Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: Vendor Verified

Solution

Oracle has released a Critical Patch Update to address this vulnerability. Check the vendor advisory or solution in the references section.

Products

Unknown or Incomplete

References

OVAL ID: 14291
CVE ID: 2011-3546 (see also: NVD)
Secunia Advisory ID: 46490 46512 46695 46728 46774 47313 47464 47633 47684 47709 48308 48323 48335 48444 49333 49552 49554 49953 49966 50395 50782 53217 53219
Bugtraq ID: 50239
ISS X-Force ID: 70847
Related OSVDB ID: 76495 76496 76497 76498 76499 76500 76501 76502 76503 76504 76505 76506 76507 76508 76510 76511 76512 76513
Vendor Specific News/Changelog Entry: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03122753
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html
http://lists.opensuse.org/opensuse-updates/2011-10/msg00035.html
http://support.attachmate.com/techdocs/1704.html
http://www.gentoo.org/security/en/glsa/glsa-201111-02.xml
http://www.ibm.com/developerworks/java/jdk/alerts/
http://www.ibm.com/support/docview.wss?uid=swg21598423
http://www.ibm.com/support/docview.wss?uid=swg21609004
http://www.ibm.com/support/docview.wss?uid=swg21609022
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
Vendor Specific Advisory URL: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03358587
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03405642
http://support.apple.com/kb/HT5045
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
http://www.vmware.com/security/advisories/VMSA-2012-0003.html
http://www.vmware.com/security/advisories/VMSA-2012-0005.html
http://www.xerox.com/download/security/security-bulletin/1284333-14afb-4baadb5bccb00/cert_XRX12-002_v1.1.pdf
https://downloads.avaya.com/css/P8/documents/100154049
Mail List Post: http://seclists.org/bugtraq/2012/Jan/150
News Article: http://www.csoonline.com/article/691961/oracle-patch-batch-affects-hundreds-of-products
RedHat RHSA: RHSA-2011-1384 RHSA-2012:0034

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/76509