JSON View XML View

Key Value
MTID M115331
Title Oracle Java SE AWT Remote Code Execution
Description A vulnerability present in some versions of Oracle Java SE could lead to remote code execution.
Observation A vulnerability present in some versions of Oracle Java SE could lead to remote code execution.

The flaw lies in the AWT component. Successful exploitation could allow an attacker to execute arbitrary code. The exploit requires the user to visit a malicious website.
Recommendation The vendor has released an update to address this issue:

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Vendor Oracle
Attack Vector Website with malicious content
Importance 7
Impact 10.00084536000
Threat Score 9.33
Labels
Critical Patch Update - Oracle
References
CVECVE-2016-5568
DISA IAVA2016-A-0289
MTIDM115331
CPEs
cpe:/a:oracle:java_se:8_update_102
Created At 2016-10-18 00:00:00 UTC
Updated At 2016-11-19 11:00:50 UTC

Back