Lucene search
XOR19ZDI-17-057HistoryJan 24, 2017 - 12:00 a.m.
Oracle Java Uninitialized Memory Remote Code Execution Vulnerability
2017-01-2400:00:00
XOR19
www.zerodayinitiative.com
54
0.005 Low
EPSS
Percentile
77.3%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the creation of an object without proper initialization. Due to this uninitialized memory, it is possible for untrusted code to gain access to privileged methods and properties. An attacker can leverage this vulnerability to execute code under the context of the process.
Related
zdt
zdt
Oracle Java Uninitialized Memory Remote Code Execution Vulnerability
2017-02-06 00:00:00
ubuntucve
ubuntucve
CVE-2017-3289
2017-01-19 00:00:00
prion
prion
Code injection
2017-01-27 22:59:00
debiancve
debiancve
CVE-2017-3289
2017-01-27 22:59:03
nvd
nvd
CVE-2017-3289
2017-01-27 22:59:03
cve
cve
CVE-2017-3289
2017-01-27 22:59:03
veracode
veracode
Privilege Escalation
2019-05-02 06:09:32
cvelist
cvelist
CVE-2017-3289
2017-01-27 22:01:00
openvas
openvas
Oracle Java SE Security Updates (jan2017-2881727) 03 - Windows
2017-01-18 00:00:00
Oracle Java SE Security Updates (jan2017-2881727) 03 - Linux
2017-01-18 00:00:00
openSUSE: Security Advisory for java-1_7_0-openjdk (openSUSE-SU-2017:1429-1)
2017-05-28 00:00:00
nessus
nessus
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2017-629)
2017-05-30 00:00:00
suse
suse
Security update for java-1_7_0-openjdk (important)
2017-05-24 21:12:03
Security update for java-1_7_0-openjdk (important)
2017-05-28 03:13:20
Security update for java-1_8_0-ibm (important)
2017-02-14 21:08:09
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2017-02-13 00:00:00
java-1.8.0-openjdk security update
2017-01-20 00:00:00
osv
osv
openjdk-7 - security update
2017-02-08 00:00:00
openjdk-7 - security update
2017-02-11 00:00:00
f5
f5
K15518610 : Multiple OpenJDK vulnerabilities
2017-05-22 00:00:00
amazon
amazon
Critical: java-1.7.0-openjdk
2017-02-14 12:00:00
Critical: java-1.8.0-openjdk
2017-01-26 18:00:00
debian
debian
[SECURITY] [DLA 821-1] openjdk-7 security update
2017-02-11 00:38:57
[SECURITY] [DSA 3782-1] openjdk-7 security update
2017-02-08 18:15:02
redhat
redhat
(RHSA-2017:0269) Critical: java-1.7.0-openjdk security update
2017-02-13 00:00:00
(RHSA-2017:0180) Critical: java-1.8.0-openjdk security update
2017-01-20 09:36:57
(RHSA-2017:0263) Critical: java-1.8.0-ibm security update
2017-02-09 11:51:45
centos
centos
java security update
2017-01-21 15:53:44
java security update
2017-02-13 17:16:15
ubuntu
ubuntu
OpenJDK 8 vulnerabilities
2017-01-25 00:00:00
OpenJDK 7 vulnerabilities
2017-02-09 00:00:00
mageia
mageia
Updated java-1.8.0-openjdk packages fix security vulnerabilities
2017-02-05 23:42:41
ibm
ibm
Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jan 2017 - Includes Oracle Jan 2017 CPU affect IBM eDiscovery Analyzer
2019-08-30 07:48:35
aix
aix
There are multiple vulnerabilities in IBM SDK Java Technology Edition
2017-04-05 23:21:06
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2017-01-25 00:00:00
IcedTea: Multiple vulnerabilities
2017-07-05 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2017
2017-01-17 00:00:00