Lucene search

K

Veracode Vulnerability DatabaseVERACODE:11079

HistoryJan 15, 2019 - 8:56 a.m.

Arbitrary Code Execution

2019-01-1508:56:47

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

13

EPSS

0.02

Percentile

89.0%

openjdk is vulnerable to arbitrary code execution attacks. The vulnerability exists as a format string flaw was discovered in the Hotspot component event logger in OpenJDK. An untrusted Java application or applet could use this flaw to crash the Java Virtual Machine or, potentially, execute arbitrary code with the privileges of the Java Virtual Machine.

References

marc.info/?l=bugtraq&m=140852886808946&w=2

seclists.org/fulldisclosure/2014/Dec/23

secunia.com/advisories/60129

secunia.com/advisories/60485

secunia.com/advisories/60812

security.gentoo.org/glsa/glsa-201502-12.xml

www.debian.org/security/2014/dsa-2980

www.debian.org/security/2014/dsa-2987

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.securityfocus.com/bid/68645

www.securitytracker.com/id/1030577

www.vmware.com/security/advisories/VMSA-2014-0012.html

access.redhat.com/errata/RHSA-2014:0902

access.redhat.com/security/updates/classification/#important

rhn.redhat.com/errata/RHSA-2014-0907.html

EPSS

0.02

Percentile

89.0%

Related for VERACODE:11079

prion1 zdi1 nvd1 ubuntucve1 cvelist1 cve1 openvas26 oraclelinux3 amazon2 nessus33 redhat4 centos3 debian3 ubuntu4 mageia1 ibm3 suse1 kaspersky1 osv2 gentoo1 securityvulns2 oracle1