JSON View XML View

Key Value
MTID M113439
Title Oracle Java Install Security Bypass II
Description A vulnerability in some versions of Oracle Java could lead to a security bypass.
Observation A vulnerability in some versions of Oracle Java could lead to a security bypass.

The flaw lies in the Install subcomponent. Successful exploitation could allow a local attacker to bypass intended access restrictions.
Recommendation The vendor has released an update to address the issue:

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Vendor Oracle
Attack Vector Authenticated locally logged on user with limited privileges
Importance 5
Impact 10.00084536000
Threat Score 6.21
Labels
Critical Patch Update - Oracle
References
CVECVE-2016-3503
MTIDM113439
CPEs
cpe:/a:oracle:jdk:1.8.0:update_92
cpe:/a:oracle:jre:1.8.0:update_92
Created At 2016-07-19 00:00:00 UTC
Updated At 2016-07-21 10:00:48 UTC

Back