OVALdb logo

Professional OVAL Repository

Skip Navigation LinksOVAL > OVAL Definitions

Search Conditions:  Product: Java Development Kit

Page 1 of 32 (1249 items)Предыдущая1234567303132Следующая
OVALid 
Version 
Title 
Class 
Open filter row popup menu
Open filter row popup menu
Open filter row popup menu
xv
oval:org.mitre.oval:def:1447511Unspecified vulnerability in the Java Naming and Directory Interface (JNDI) component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, and 1.4.2_27 allows remote attackers to affect confidentiality via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable downstream vendor that this allows remote attackers to determine internal IP addresses or "otherwise-protected internal network names."vulnerability
oval:org.mitre.oval:def:1445311Unspecified vulnerability in the Java 2D component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is a heap-based buffer overflow that allows arbitrary code execution via a crafted image.vulnerability
oval:org.mitre.oval:def:144008Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, and 7 allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity and availability via unknown vectors.vulnerability
oval:org.mitre.oval:def:143828Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0788.vulnerability
oval:org.mitre.oval:def:1435111Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18 and 5.0 Update 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is due to missing privilege checks during deserialization of RMIConnectionImpl objects, which allows remote attackers to call system-level Java functions via the ClassLoader of a constructor that is being deserialized.vulnerability
oval:org.mitre.oval:def:1433911Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.vulnerability
oval:org.mitre.oval:def:142918Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to Deployment.vulnerability
oval:org.mitre.oval:def:1428211Unspecified vulnerability in the Sound component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is for improper parsing of a crafted MIDI stream when creating a MixerSequencer object, which causes a pointer to be corrupted and allows a NULL byte to be written to arbitrary memory.vulnerability
oval:org.mitre.oval:def:142738Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.vulnerability
oval:org.mitre.oval:def:142418Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO.vulnerability
oval:org.mitre.oval:def:1423311Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.vulnerability
oval:org.mitre.oval:def:141678Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.vulnerability
oval:org.mitre.oval:def:141408Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0786.vulnerability
oval:org.mitre.oval:def:141188Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."vulnerability
oval:org.mitre.oval:def:1410511Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.vulnerability
oval:org.mitre.oval:def:1409010Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java Deployment Toolkit in Java 6 Update 10, 19, and other versions, when running on Windows and possibly on Linux, allows remote attackers to execute arbitrary code via the (1) -J or (2) -XXaltjvm argument to javaws.exe, which is processed by the launch method. NOTE: some of these details are obtained from third party information.vulnerability
oval:org.mitre.oval:def:1401111Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Java Runtime Environment.vulnerability
oval:org.mitre.oval:def:1395911Unspecified vulnerability in the Java Web Start, Java Plug-in component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.vulnerability
oval:org.mitre.oval:def:1393411Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and 1.3.1_27 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.vulnerability
oval:org.mitre.oval:def:1388511Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.vulnerability
oval:org.mitre.oval:def:137778Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 21 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.vulnerability
oval:org.mitre.oval:def:1331711Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.vulnerability
oval:ru.altx-soft.win:def:172109Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE версии 7 Update 17 и ниже, версии 6 Update 43 и ниже, версии 5 Update 41 и ниже (CVE-2013-2384)vulnerability
oval:ru.altx-soft.win:def:1724113Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент JavaFX) версии 7 Update 17 и ниже и JavaFX версии 2.2.7 и ниже (CVE-2013-1564)vulnerability
oval:ru.altx-soft.win:def:172389Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент 2D) версии 7 Update 17 и ниже, версии 6 Update 43 и ниже, версии 5.0 Update 41 и ниже (CVE-2013-2419)vulnerability
oval:ru.altx-soft.win:def:1723516Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент 2D) версии 7 Update 17 и ниже, версии 6 Update 43 и ниже, версии 5.0 Update 41 и ниже и версии JavaFX 2.2.7 и ниже (CVE-2013-2394)vulnerability
oval:ru.altx-soft.win:def:172326Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Libraries) версии 7 Update 17 и ниже (CVE-2013-2426)vulnerability
oval:ru.altx-soft.win:def:172299Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент RMI) версии 7 Update 17 и ниже, версии 6 Update 43 и ниже, версии 5.0 Update 41 и ниже (CVE-2013-1557)vulnerability
oval:ru.altx-soft.win:def:172216Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Hotspot) версии 7 Update 17 и ниже (CVE-2013-2431)vulnerability
oval:ru.altx-soft.win:def:172187Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Beans) версии 7 Update 17 и ниже, версии 6 Update 43 и ниже (CVE-2013-1558)vulnerability
oval:ru.altx-soft.win:def:1721213Уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент 2D) версии 7 Update 17 и ниже и JavaFX версии 2.2.7 и ниже (CVE-2013-2434)vulnerability
oval:ru.altx-soft.win:def:172777Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Beans) версии 7 Update 7 и ниже (CVE-2012-5087)vulnerability
oval:ru.altx-soft.win:def:172748Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Swing) версии 7 Update 7 и ниже, версии 6 Update 35 и ниже, версии 5.0 Update 36 и ниже, версии 1.4.2_38 и ниже (CVE-2012-5084)vulnerability
oval:ru.altx-soft.win:def:172667Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент JAX-WS) версии 7 Update 7 и ниже (CVE-2012-5076)vulnerability
oval:ru.altx-soft.win:def:1726313Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Libraries) версии 7 Update 7 и ниже, версии 6 Update 35 и ниже, версии 5.0 Update 36 и ниже (CVE-2012-5073)vulnerability
oval:ru.altx-soft.win:def:172607Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент JMX) версии 7 Update 7 и ниже (CVE-2012-5070)vulnerability
oval:ru.altx-soft.win:def:172577Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Deployment) версии 7 Update 7 и ниже (CVE-2012-5067)vulnerability
oval:ru.altx-soft.win:def:172547Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Deployment) версии 7 Update 7 и ниже, версии 6 Update 35 и ниже (CVE-2012-3159)vulnerability
oval:ru.altx-soft.win:def:172868Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент CORBA) версии 7 update 4 и ниже, версии 6 update 32 и ниже, версии 5 update 35 и ниже, версии 1.4.2_37 и ниже (CVE-2012-1711)vulnerability
oval:ru.altx-soft.win:def:172838Неопределённая уязвимость в компоненте Java Runtime Environment (JRE) в Oracle Java SE (подкомпонент Hotspot) версии 7 update 4 и ниже, версии 6 update 32 и ниже, версии 5 update 35 и ниже, версии 1.4.2_37 и ниже (CVE-2012-1723)vulnerability
Page 1 of 32 (1249 items)Предыдущая1234567303132Следующая

company ALTEX-SOFT 2008-2019, © AO ALTEX-SOFT , ovaldb@altx-soft.com

OVAL and the OVAL logo are registered trademarks of The MITRE Corporation. Other names may be trademarks of their respective owners.