10 - HPSBMU02797 SSRT100867

Executive Summary

Summary
Title	HP Network Node Manager i (NNMi) v9.1x Running JDK for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Information Disclosure, Modification, Denial of Service (DoS)

Informations
Name	HPSBMU02797 SSRT100867	First vendor Publication	2012-07-16
Vendor	HP	Last vendor Modification	2012-07-16
Severity (Vendor)	N/A	Revision	1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Potential security vulnerabilities have been identified with HP Network Node Manager I (NNMi) running JDK for HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be remotely exploited resulting in unauthorized information disclosure, modification, Denial of Service (DoS).

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03358587

CWE : Common Weakness Enumeration

%	Id	Name
50 %	CWE-326	Inadequate Encryption Strength
50 %	CWE-20	Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12089

Oval ID:	oval:org.mitre.oval:def:12089
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to 2D. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the exposure of system properties via vectors related to Font.createFont and exception text.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4471	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12230

Oval ID:	oval:org.mitre.oval:def:12230
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4475	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12269

Oval ID:	oval:org.mitre.oval:def:12269
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 10 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4467	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12420

Oval ID:	oval:org.mitre.oval:def:12420
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.2_29 and earlier for Solaris and Linux allows local standalone applications to affect confidentiality, integrity, and availability via unknown vectors related to Launcher. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is an untrusted search path vulnerability involving an empty LD_LIBRARY_PATH environment variable.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4450	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12611

Oval ID:	oval:org.mitre.oval:def:12611
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4447	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12662

Oval ID:	oval:org.mitre.oval:def:12662
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12745

Oval ID:	oval:org.mitre.oval:def:12745
Title:	HP-UX Apache Web Server, Remote Information Disclosure, Cross-Site Scripting (XSS), Denial of Service (DoS)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND filesets tests hpuxwsAPACHE.APACHE version is less than B.2.2.15.05 AND hpuxwsAPACHE.APACHE2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP version is less than B.2.2.15.05 AND hpuxwsAPACHE.WEBPROXY version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP2 version is less than B.2.2.15.05 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.11 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND filesets tests hpuxwsAPCH32.APACHE version is less than B.2.0.64.01 AND hpuxwsAPCH32.APACHE2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP version is less than B.2.0.64.01 AND hpuxwsAPCH32.WEBPROXY version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP2 version is less than B.2.0.64.01 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.11 AND filesets tests hpuxwsAPACHE.APACHE version is less than B.2.0.64.01 AND hpuxwsAPACHE.APACHE2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.AUTH_LDAP version is less than B.2.0.64.01 AND hpuxwsAPACHE.AUTH_LDAP2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_JK version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_JK2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_PERL version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_PERL2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.WEBPROXY version is less than B.2.0.64.01 AND hpuxwsAPACHE.PHP version is less than B.2.0.64.01 AND hpuxwsAPACHE.PHP2 version is less than B.2.0.64.01 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND filesets tests hpuxwsAPACHE.APACHE version is less than B.2.2.15.05 AND hpuxwsAPACHE.APACHE2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.WEBPROXY version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP2 version is less than B.2.2.15.05 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND filesets tests hpuxwsAPCH32.APACHE version is less than B.2.0.64.01 AND hpuxwsAPCH32.APACHE2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.WEBPROXY version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP2 version is less than B.2.0.64.01

Definition Id: oval:org.mitre.oval:def:12769

Oval ID:	oval:org.mitre.oval:def:12769
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4422	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12833

Oval ID:	oval:org.mitre.oval:def:12833
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is heap corruption related to the Verifier and "backward jsrs."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4469	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12837

Oval ID:	oval:org.mitre.oval:def:12837
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, Solaris, and, Linux; 5.0 Update 27 and earlier for Windows; and 1.4.2_29 and earlier for Windows allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4466	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12841

Oval ID:	oval:org.mitre.oval:def:12841
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4462	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12848

Oval ID:	oval:org.mitre.oval:def:12848
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to JDBC.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4468	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12879

Oval ID:	oval:org.mitre.oval:def:12879
Title:	DSA-2161-1 openjdk-6 -- denial of service
Description:	It was discovered that the floating point parser in OpenJDK, an implementation of the Java platform, can enter an infinite loop when processing certain input strings. Such input strings represent valid numbers and can be contained in data supplied by an attacker over the network, leading to a denial-of-service attack.
Family:	unix	Class:	patch
Reference(s):	DSA-2161-1 CVE-2010-4476	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	openjdk-6
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND Installed architecture is all AND openjdk-6 DPKG is earlier than 6b18-1.8.3-2+squeeze1

Definition Id: oval:org.mitre.oval:def:12887

Oval ID:	oval:org.mitre.oval:def:12887
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows remote attackers to affect availability via unknown vectors related to JAXP and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to "Features set on SchemaFactory not inherited by Validator."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4470	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12899

Oval ID:	oval:org.mitre.oval:def:12899
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 21 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4463	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12903

Oval ID:	oval:org.mitre.oval:def:12903
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4472	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12906

Oval ID:	oval:org.mitre.oval:def:12906
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Networking. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves "DNS cache poisoning by untrusted applets."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4448	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12925

Oval ID:	oval:org.mitre.oval:def:12925
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the lack of framework support by AWT event dispatch, and/or "clipboard access in Applets."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4465	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12927

Oval ID:	oval:org.mitre.oval:def:12927
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Deployment component in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4452	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12945

Oval ID:	oval:org.mitre.oval:def:12945
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4454	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:12952

Oval ID:	oval:org.mitre.oval:def:12952
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4473	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

Definition Id: oval:org.mitre.oval:def:13317

Oval ID:	oval:org.mitre.oval:def:13317
Title:	Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Description:	Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0862	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:13475

Oval ID:	oval:org.mitre.oval:def:13475
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to HotSpot.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to HotSpot.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3558	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed

Definition Id: oval:org.mitre.oval:def:13546

Oval ID:	oval:org.mitre.oval:def:13546
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4454	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:13552

Oval ID:	oval:org.mitre.oval:def:13552
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to JDBC.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to JDBC.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4468	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:13639

Oval ID:	oval:org.mitre.oval:def:13639
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is heap corruption related to the Verifier and "backward jsrs."
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is heap corruption related to the Verifier and "backward jsrs."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4469	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:13662

Oval ID:	oval:org.mitre.oval:def:13662
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, 7, 6 Update 27 and earlier, and 5.0 Update 31 earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deserialization.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, 7, 6 Update 27 and earlier, and 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deserialization.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3521	Version:	10
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:13777

Oval ID:	oval:org.mitre.oval:def:13777
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 21 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 21 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4463	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0:update_21 Java SE Development Kit 6 is installed AND Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Determine if the version of Java Development Kit is greater than or equal to 1.6.0:update_21 OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0:update_21 Java SE Runtime Environment 6 is installed AND Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Determine if the version of Java Runtime Environment is greater than or equal to 1.6.0:update_21

Definition Id: oval:org.mitre.oval:def:13885

Oval ID:	oval:org.mitre.oval:def:13885
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3549	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:13888

Oval ID:	oval:org.mitre.oval:def:13888
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0873	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:13942

Oval ID:	oval:org.mitre.oval:def:13942
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, when using Java Update, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, when using Java Update, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4451	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:13947

Oval ID:	oval:org.mitre.oval:def:13947
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3544	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed

Definition Id: oval:org.mitre.oval:def:13976

Oval ID:	oval:org.mitre.oval:def:13976
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0505	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14011

Oval ID:	oval:org.mitre.oval:def:14011
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Java Runtime Environment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Java Runtime Environment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0866	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14034

Oval ID:	oval:org.mitre.oval:def:14034
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the lack of framework support by AWT event dispatch, and/or "clipboard access in Applets."
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the lack of framework support by AWT event dispatch, and/or "clipboard access in Applets."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4465	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14039

Oval ID:	oval:org.mitre.oval:def:14039
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4462	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14045

Oval ID:	oval:org.mitre.oval:def:14045
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Networking. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves "DNS cache poisoning by untrusted applets."
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Networking. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves "DNS cache poisoning by untrusted applets."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4448	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14076

Oval ID:	oval:org.mitre.oval:def:14076
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows remote attackers to affect availability via unknown vectors related to JAXP and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to "Features set on SchemaFactory not inherited by Validator."
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows remote attackers to affect availability via unknown vectors related to JAXP and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to "Features set on SchemaFactory not inherited by Validator."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4470	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14081

Oval ID:	oval:org.mitre.oval:def:14081
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Deserialization.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Deserialization.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0865	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14082

Oval ID:	oval:org.mitre.oval:def:14082
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to CORBA.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to CORBA.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0506	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14112

Oval ID:	oval:org.mitre.oval:def:14112
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0871	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14114

Oval ID:	oval:org.mitre.oval:def:14114
Title:	USN-1154-1 -- openjdk-6, openjdk-6b18 vulnerabilities
Description:	openjdk-6: Open Source Java implementation - openjdk-6b18: Open Source Java implementation Multiple OpenJDK 6 vulnerabilities have been fixed.
Family:	unix	Class:	patch
Reference(s):	USN-1154-1 CVE-2011-0815 CVE-2011-0822 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0870 CVE-2011-0871 CVE-2011-0872	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 10.04 Ubuntu 10.10	Product(s):	openjdk-6 openjdk-6b18
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b22-1.10.2-0ubuntu1~11.04.1 AND openjdk-6-jre-lib DPKG is earlier than 6b22-1.10.2-0ubuntu1~11.04.1 AND openjdk-6-jre DPKG is earlier than 6b22-1.10.2-0ubuntu1~11.04.1 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.04.1 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.04.1 AND icedtea6-plugin DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.04.1 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.04.1 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.10.1 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.10.1 AND icedtea6-plugin DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.10.1 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.8-0ubuntu1~10.10.1

Definition Id: oval:org.mitre.oval:def:14118

Oval ID:	oval:org.mitre.oval:def:14118
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4472	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14119

Oval ID:	oval:org.mitre.oval:def:14119
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4473	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14135

Oval ID:	oval:org.mitre.oval:def:14135
Title:	DEPRECATED: Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.2_29 and earlier for Solaris and Linux allows local standalone applications to affect confidentiality, integrity, and availability via unknown vectors related to Launcher. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is an untrusted search path vulnerability involving an empty LD_LIBRARY_PATH environment variable.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.2_29 and earlier for Solaris and Linux allows local standalone applications to affect confidentiality, integrity, and availability via unknown vectors related to Launcher. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is an untrusted search path vulnerability involving an empty LD_LIBRARY_PATH environment variable.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4450	Version:	8
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14140

Oval ID:	oval:org.mitre.oval:def:14140
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0786.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0786.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0788	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14153

Oval ID:	oval:org.mitre.oval:def:14153
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0873	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14162

Oval ID:	oval:org.mitre.oval:def:14162
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3550	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed

Definition Id: oval:org.mitre.oval:def:14167

Oval ID:	oval:org.mitre.oval:def:14167
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0863	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14174

Oval ID:	oval:org.mitre.oval:def:14174
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0802.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0802.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0814	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14180

Oval ID:	oval:org.mitre.oval:def:14180
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3545	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14214

Oval ID:	oval:org.mitre.oval:def:14214
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0863	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14225

Oval ID:	oval:org.mitre.oval:def:14225
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0864	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14230

Oval ID:	oval:org.mitre.oval:def:14230
Title:	Unspecified vulnerability in the Deployment component in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.
Description:	Unspecified vulnerability in the Deployment component in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4452	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14233

Oval ID:	oval:org.mitre.oval:def:14233
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4475	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14240

Oval ID:	oval:org.mitre.oval:def:14240
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0867	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14241

Oval ID:	oval:org.mitre.oval:def:14241
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0872	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14264

Oval ID:	oval:org.mitre.oval:def:14264
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0868	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14271

Oval ID:	oval:org.mitre.oval:def:14271
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, Solaris, and, Linux; 5.0 Update 27 and earlier for Windows; and 1.4.2_29 and earlier for Windows allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, Solaris, and, Linux; 5.0 Update 27 and earlier for Windows; and 1.4.2_29 and earlier for Windows allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4466	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14273

Oval ID:	oval:org.mitre.oval:def:14273
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3516	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14274

Oval ID:	oval:org.mitre.oval:def:14274
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3561	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed

Definition Id: oval:org.mitre.oval:def:14290

Oval ID:	oval:org.mitre.oval:def:14290
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4422	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14291

Oval ID:	oval:org.mitre.oval:def:14291
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3546	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed

Definition Id: oval:org.mitre.oval:def:14311

Oval ID:	oval:org.mitre.oval:def:14311
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote authenticated users to affect confidentiality, related to JAXWS.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote authenticated users to affect confidentiality, related to JAXWS.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3553	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed

Definition Id: oval:org.mitre.oval:def:14316

Oval ID:	oval:org.mitre.oval:def:14316
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3556	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14318

Oval ID:	oval:org.mitre.oval:def:14318
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3551	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed

Definition Id: oval:org.mitre.oval:def:14328

Oval ID:	oval:org.mitre.oval:def:14328
Title:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14335

Oval ID:	oval:org.mitre.oval:def:14335
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to AWT.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to AWT.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0815	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14338

Oval ID:	oval:org.mitre.oval:def:14338
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 26 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to SAAJ.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 26 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to SAAJ.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0869	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_27 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_27 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_27 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_27 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14339

Oval ID:	oval:org.mitre.oval:def:14339
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3547	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14359

Oval ID:	oval:org.mitre.oval:def:14359
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0817	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14373

Oval ID:	oval:org.mitre.oval:def:14373
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3557	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14382

Oval ID:	oval:org.mitre.oval:def:14382
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0788.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0788.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0786	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14384

Oval ID:	oval:org.mitre.oval:def:14384
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 10 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 10 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4467	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0:update_10 Java SE Development Kit 6 is installed AND Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Determine if the version of Java Development Kit is greater than or equal to 1.6.0:update_10 OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0:update_10 Java SE Runtime Environment 6 is installed AND Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Determine if the version of Java Runtime Environment is greater than or equal to 1.6.0:update_10

Definition Id: oval:org.mitre.oval:def:14394

Oval ID:	oval:org.mitre.oval:def:14394
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3560	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14400

Oval ID:	oval:org.mitre.oval:def:14400
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, and 7 allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity and availability via unknown vectors.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, and 7 allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity and availability via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3555	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14403

Oval ID:	oval:org.mitre.oval:def:14403
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4447	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14417

Oval ID:	oval:org.mitre.oval:def:14417
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to 2D. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the exposure of system properties via vectors related to Font.createFont and exception text.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to 2D. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the exposure of system properties via vectors related to Font.createFont and exception text.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4471	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:14462

Oval ID:	oval:org.mitre.oval:def:14462
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0817	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14463

Oval ID:	oval:org.mitre.oval:def:14463
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Deserialization.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0865	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14465

Oval ID:	oval:org.mitre.oval:def:14465
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote attackers to affect integrity via unknown vectors related to Networking.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote attackers to affect integrity via unknown vectors related to Networking.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3552	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14477

Oval ID:	oval:org.mitre.oval:def:14477
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0814.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0814.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0802	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update30 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_26 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update30 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update30 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_26 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_26 AND Java SE Development Kit 6 is installed

Definition Id: oval:org.mitre.oval:def:14480

Oval ID:	oval:org.mitre.oval:def:14480
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0814.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0802	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14492

Oval ID:	oval:org.mitre.oval:def:14492
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3548	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14524

Oval ID:	oval:org.mitre.oval:def:14524
Title:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3554	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment Java Development Kit
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_28 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update32 AND Java SE Development Kit 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update32 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update32 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.6.0:update_28 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_28 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Development Kit is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Development Kit is less than 1.7.0:update_1 AND Java SE Development Kit 7 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_1 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14534

Oval ID:	oval:org.mitre.oval:def:14534
Title:	Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect confidentiality via unknown vectors related to Security, a similar vulnerability to CVE-2009-4269.
Description:	Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect confidentiality via unknown vectors related to Security, a similar vulnerability to CVE-2009-4269.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4474	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14541

Oval ID:	oval:org.mitre.oval:def:14541
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0862	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14545

Oval ID:	oval:org.mitre.oval:def:14545
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Java Runtime Environment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0866	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14568

Oval ID:	oval:org.mitre.oval:def:14568
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0786.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0788	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14589

Oval ID:	oval:org.mitre.oval:def:14589
Title:	HP-UX Apache Running Tomcat Servlet Engine, Remote Information Disclosure, Authentication Bypass, Cross-Site Scripting (XSS), Unauthorized Access, Denial of Service (DoS)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.34.01

Definition Id: oval:org.mitre.oval:def:14604

Oval ID:	oval:org.mitre.oval:def:14604
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2011-0788.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0786	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14632

Oval ID:	oval:org.mitre.oval:def:14632
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0864	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14644

Oval ID:	oval:org.mitre.oval:def:14644
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 26 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to SAAJ.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0869	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14693

Oval ID:	oval:org.mitre.oval:def:14693
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0867	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14752

Oval ID:	oval:org.mitre.oval:def:14752
Title:	SSL and TLS Protocols Vulnerability
Description:	The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3389	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7	Product(s):
Definition Synopsis:
Vulnerable Microsoft Windows XP SP3 x86 Microsoft Windows XP (x86) SP3 is installed AND the version of schannel.dll is less than 5.1.2600.6175 OR Vulnerable Microsoft Windows XP SP2 x64, Windows Server 2003 x86/x64/ia64 SP2 Microsoft Windows XP SP2 x64, Windows Server 2003 x86/x64/ia64 SP2 Microsoft Windows XP x64 Edition SP2 is installed AND Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 SP2 (x64) is installed AND Microsoft Windows Server 2003 (ia64) SP2 is installed AND the version of schannel.dll is less than 5.2.3790.4935 OR Vulnerable Microsoft Windows Vista x86/x64 SP2, Server 2008 x86/x64/ia64 SP2 Microsoft Windows Vista x86/x64 SP2, Server 2008 x86/x64/ia64 SP2 Microsoft Windows Vista (32-bit) Service Pack 2 is installed AND Microsoft Windows Vista x64 Edition Service Pack 2 is installed AND Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed AND Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed AND Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed AND GDR or LDR Service branch the version of schannel.dll is less than 6.0.6002.18541 OR LDR the version of schannel.dll is greater than or equal to 6.0.6002.22000 AND the version of schannel.dll is less than 6.0.6002.22742 OR Vulnerable Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x64/ia64 Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x64/ia64 Microsoft Windows 7 (32-bit) is installed AND Microsoft Windows 7 x64 Edition is installed AND Microsoft Windows Server 2008 R2 x64 Edition is installed AND Microsoft Windows Server 2008 R2 Itanium-Based Edition is installed AND GDR or LDR Service branch the version of schannel.dll is less than 6.1.7600.16915 OR LDR the version of schannel.dll is greater than or equal to 6.1.7600.20000 AND the version of schannel.dll is less than 6.1.7600.21092 OR Vulnerable Microsoft Windows 7 x86/x64 SP1, Windows Server 2008 R2 x64/ia64 SP1 Microsoft Windows 7 x86/x64 SP1, Windows Server 2008 R2 x64/ia64 SP1 Microsoft Windows 7 (32-bit) Service Pack 1 is installed AND Microsoft Windows 7 x64 Service Pack 1 is installed AND Microsoft Windows Server 2008 R2 x64 Service Pack 1 is installed AND Microsoft Windows Server 2008 R2 Itanium-Based Edition Service Pack 1 is installed AND GDR or LDR Service branch the version of schannel.dll is less than 6.1.7601.17725 OR LDR the version of schannel.dll is greater than or equal to 6.1.7601.21000 AND the version of schannel.dll is less than 6.1.7601.21861

Definition Id: oval:org.mitre.oval:def:14772

Oval ID:	oval:org.mitre.oval:def:14772
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0497	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14813

Oval ID:	oval:org.mitre.oval:def:14813
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to I18n.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to I18n.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0503	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14827

Oval ID:	oval:org.mitre.oval:def:14827
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0868	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14844

Oval ID:	oval:org.mitre.oval:def:14844
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and JavaFX 2.0.2 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and JavaFX 2.0.2 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0500	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed

Definition Id: oval:org.mitre.oval:def:14878

Oval ID:	oval:org.mitre.oval:def:14878
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier; and JavaFX 2.0.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier; and JavaFX 2.0.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0499	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14890

Oval ID:	oval:org.mitre.oval:def:14890
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install and the Java Update mechanism.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install and the Java Update mechanism.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0504	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14896

Oval ID:	oval:org.mitre.oval:def:14896
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to AWT.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0815	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14900

Oval ID:	oval:org.mitre.oval:def:14900
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0502	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14915

Oval ID:	oval:org.mitre.oval:def:14915
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect availability via unknown vectors related to NIO.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0872	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14930

Oval ID:	oval:org.mitre.oval:def:14930
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0802.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0814	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02697 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-COM version is less than 1.5.0.24.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.24.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.24.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.24.00 AND Jdk15.JDK15-COM version is less than 1.5.0.24.00 OR Criteria meets HP Security Bulletin HPSBUX02697 platforms HP Release B.11.23 AND HP-UX B.11.31 AND HP Release B.11.11 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.12.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-COM version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.12.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.12.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.12.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.12.00 AND Jdk60.JDK60-COM version is less than 1.6.0.12.00

Definition Id: oval:org.mitre.oval:def:14942

Oval ID:	oval:org.mitre.oval:def:14942
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3563	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:15069

Oval ID:	oval:org.mitre.oval:def:15069
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0501	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:15075

Oval ID:	oval:org.mitre.oval:def:15075
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0498	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:15238

Oval ID:	oval:org.mitre.oval:def:15238
Title:	DSA-2311-1 openjdk-6 -- several
Description:	Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java SE platform. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-0862 Integer overflow errors in the JPEG and font parser allow untrusted code to elevate its privileges. CVE-2011-0864 Hotspot, the just-in-time compiler in OpenJDK, mishandled certain byte code instructions, allowing untrusted code to crash the virtual machine. CVE-2011-0865 A race condition in signed object deserialization could allow untrusted code to modify signed content, apparently leaving its signature intact. CVE-2011-0867 Untrusted code could access information about network interfaces which was not intended to be public. CVE-2011-0868 A float-to-long conversion could overflow, allowing untrusted code to crash the virtual machine. CVE-2011-0869 Untrusted code could intercept HTTP requests by reconfiguring proxy settings through a SOAP connection. CVE-2011-0871 Untrusted code could elevate its privileges through the Swing MediaTracker code. In addition, this update removes support for the Zero/Shark and Cacao Hotspot variants from the i386 and amd64 due to stability issues. These Hotspot variants are included in the openjdk-6-jre-zero and icedtea-6-jre-cacao packages, and these packages must be removed during this update.
Family:	unix	Class:	patch
Reference(s):	DSA-2311-1 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	openjdk-6
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND Installed architecture is all AND openjdk-6 DPKG is earlier than 6b18-1.8.9-0.1~squeeze1

Definition Id: oval:org.mitre.oval:def:15241

Oval ID:	oval:org.mitre.oval:def:15241
Title:	DSA-2368-1 lighttpd -- multiple
Description:	Several vulnerabilities have been discovered in lighttpd, a small and fast webserver with minimal memory footprint. CVE-2011-4362 Xi Wang discovered that the base64 decoding routine which is used to decode user input during an HTTP authentication, suffers of a signedness issue when processing user input. As a result it is possible to force lighttpd to perform an out-of-bounds read which results in Denial of Service conditions. CVE-2011-3389 When using CBC ciphers on an SSL enabled virtual host to communicate with certain client, a so called "BEAST" attack allows man-in-the-middle attackers to obtain plaintext HTTP traffic via a blockwise chosen-boundary attack on an HTTPS session. Technically this is no lighttpd vulnerability. However, lighttpd offers a workaround to mitigate this problem by providing a possibility to disable CBC ciphers. This updates includes this option by default. System administrators are advised to read the NEWS file of this update.
Family:	unix	Class:	patch
Reference(s):	DSA-2368-1 CVE-2011-4362 CVE-2011-3389	Version:	7
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	lighttpd
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND lighttpd DPKG is earlier than 1.4.19+lenny3 OR Release section Debian 6.0 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND Installed architecture is all AND lighttpd DPKG is earlier than 1.4.28-2+squeeze1

Definition Id: oval:org.mitre.oval:def:15259

Oval ID:	oval:org.mitre.oval:def:15259
Title:	DSA-2420-1 openjdk-6 -- several
Description:	Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform. CVE-2011-3377 The Iced Tea browser plugin included in the openjdk-6 package does not properly enforce the Same Origin Policy on web content served under a domain name which has a common suffix with the required domain name. CVE-2011-3563 The Java Sound component did not properly check for array boundaries. A malicious input or an untrusted Java application or applet could use this flaw to cause Java Virtual Machine to crash or disclose portion of its memory. CVE-2011-5035 The OpenJDK embedded web server did not guard against an excessive number of a request parameters, leading to a denial of service vulnerability involving hash collisions. CVE-2012-0497 It was discovered that Java2D did not properly check graphics rendering objects before passing them to the native renderer. This could lead to JVM crash or Java sandbox bypass. CVE-2012-0501 The ZIP central directory parser used by java.util.zip.ZipFile entered an infinite recursion in native code when processing a crafted ZIP file, leading to a denial of service. CVE-2012-0502 A flaw was found in the AWT KeyboardFocusManager class that could allow untrusted Java applets to acquire keyboard focus and possibly steal sensitive information. CVE-2012-0503 The java.util.TimeZone.setDefault method lacked a security manager invocation, allowing an untrusted Java application or applet to set a new default time zone. CVE-2012-0505 The Java serialization code leaked references to serialization exceptions, possibly leaking critical objects to untrusted code in Java applets and applications. CVE-2012-0506 It was discovered that CORBA implementation in Java did not properly protect repository identifiers on certain Corba objects. This could have been used to perform modification of the data that should have been immutable. CVE-2012-0507 The AtomicReferenceArray class implementation did not properly check if the array is of an expected Object[] type. A malicious Java application or applet could use this flaw to cause Java Virtual Machine to crash or bypass Java sandbox restrictions
Family:	unix	Class:	patch
Reference(s):	DSA-2420-1 CVE-2011-3377 CVE-2011-3563 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	openjdk-6
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND Installed architecture is all AND openjdk-6 DPKG is earlier than 6b18-1.8.13-0+squeeze1

Definition Id: oval:org.mitre.oval:def:15281

Oval ID:	oval:org.mitre.oval:def:15281
Title:	DSA-2356-1 openjdk-6 -- several
Description:	Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java platform: CVE-2011-3389 The TLS implementation does not guard properly against certain chosen-plaintext attacks when block ciphers are used in CBC mode. CVE-2011-3521 The CORBA implementation contains a deserialization vulnerability in the IIOP implementation, allowing untrusted Java code to elevate its privileges. CVE-2011-3544 The Java scripting engine lacks necessary security manager checks, allowing untrusted Java code to elevate its privileges. CVE-2011-3547 The skip method in java.io.InputStream uses a shared buffer, allowing untrusted Java code to access data that is skipped by other code. CVE-2011-3548 The java.awt.AWTKeyStroke class contains a flaw which allows untrusted Java code to elevate its privileges. CVE-2011-3551 The Java2D C code contains an integer overflow which results in a heap-based buffer overflow, potentially allowing untrusted Java code to elevate its privileges. CVE-2011-3552 Malicous Java code can use up an excessive amount of UDP ports, leading to a denial of service. CVE-2011-3553 JAX-WS enables stack traces for certain server responses by default, potentially leaking sensitive information. CVE-2011-3554 JAR files in pack200 format are not properly checked for errors, potentially leading to arbitrary code execution when unpacking crafted pack200 files. CVE-2011-3556 The RMI Registry server lacks access restrictions on certain methods, allowing a remote client to execute arbitary code. CVE-2011-3557 The RMI Registry server fails to properly restrict privileges of untrusted Java code, allowing RMI clients to elevate their privileges on the RMI Registry server. CVE-2011-3560 The com.sun.net.ssl.HttpsURLConnection class does not perform proper security manager checks in the setSSLSocketFactory method, allowing untrusted Java code to bypass security policy restrictions.
Family:	unix	Class:	patch
Reference(s):	DSA-2356-1 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	openjdk-6
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND Installed architecture is all AND openjdk-6 DPKG is earlier than 6b18-1.8.10-0+squeeze1

Definition Id: oval:org.mitre.oval:def:15316

Oval ID:	oval:org.mitre.oval:def:15316
Title:	USN-1263-1 -- IcedTea-Web, OpenJDK 6 vulnerabilities
Description:	icedtea-web: A web browser plugin to execute Java applets - openjdk-6: Open Source Java implementation - openjdk-6b18: Open Source Java implementation Multiple OpenJDK 6 and IcedTea-Web vulnerabilities have been fixed.
Family:	unix	Class:	patch
Reference(s):	USN-1263-1 CVE-2011-3377 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 11.10 Ubuntu 10.04 Ubuntu 10.10	Product(s):	IcedTea-Web
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.1 AND openjdk-6-jre-zero DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.1 AND icedtea-plugin DPKG is earlier than 1.1.1-0ubuntu1~11.04.2 AND openjdk-6-jre-lib DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.1 AND icedtea-netx DPKG is earlier than 1.1.1-0ubuntu1~11.04.2 AND icedtea-6-jre-jamvm DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.1 AND openjdk-6-jre DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.1 OR Release section Ubuntu 11.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b23~pre11-0ubuntu1.11.10 AND icedtea-6-jre-cacao DPKG is earlier than 6b23~pre11-0ubuntu1.11.10 AND openjdk-6-jre-zero DPKG is earlier than 6b23~pre11-0ubuntu1.11.10 AND icedtea-plugin DPKG is earlier than 1.1.3-1ubuntu1.1 AND openjdk-6-jre-lib DPKG is earlier than 6b23~pre11-0ubuntu1.11.10 AND icedtea-netx DPKG is earlier than 1.1.3-1ubuntu1.1 AND icedtea-6-jre-jamvm DPKG is earlier than 6b23~pre11-0ubuntu1.11.10 AND openjdk-6-jre DPKG is earlier than 6b23~pre11-0ubuntu1.11.10 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.2 AND openjdk-6-demo DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.2 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.2 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.2 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.2 AND icedtea6-plugin DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.2 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.2 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.2 AND openjdk-6-demo DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.2 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.2 AND openjdk-6-jdk DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.2 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.2 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.2 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.2

Definition Id: oval:org.mitre.oval:def:15326

Oval ID:	oval:org.mitre.oval:def:15326
Title:	USN-1373-1 -- OpenJDK 6 vulnerabilities
Description:	openjdk-6: Open Source Java implementation Multiple OpenJDK 6 vulnerabilities have been fixed.
Family:	unix	Class:	patch
Reference(s):	USN-1373-1 CVE-2011-5035 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 11.10 Ubuntu 10.04 Ubuntu 10.10	Product(s):	OpenJDK
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND icedtea-6-jre-cacao DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND icedtea-6-jre-jamvm DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND openjdk-6-jre-lib DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND openjdk-6-jre-zero DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND openjdk-6-jre DPKG is earlier than 6b22-1.10.6-0ubuntu1 OR Release section Ubuntu 11.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND icedtea-6-jre-cacao DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND icedtea-6-jre-jamvm DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND openjdk-6-jre-lib DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND openjdk-6-jre-zero DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND openjdk-6-jre DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1

Definition Id: oval:org.mitre.oval:def:15328

Oval ID:	oval:org.mitre.oval:def:15328
Title:	USN-1263-2 -- OpenJDK 6 regression
Description:	openjdk-6: Open Source Java implementation - openjdk-6b18: Open Source Java implementation Details: USN-1263-1 fixed vulnerabilities in OpenJDK 6. The upstream patch for the chosen plaintext attack on the block-wise AES encryption algorithm introduced a regression that caused TLS/SSL connections to fail when using certain algorithms. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-1263-1 caused a regression when using OpenJDK 6�s SSL/TLS implementation.
Family:	unix	Class:	patch
Reference(s):	USN-1263-2 CVE-2011-3389 CVE-2011-3377 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 11.10 Ubuntu 10.04 Ubuntu 10.10	Product(s):	OpenJDK
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.2 AND icedtea-6-jre-cacao DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.2 AND icedtea-6-jre-jamvm DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.2 AND openjdk-6-jre-lib DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.2 AND openjdk-6-jre-zero DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.2 AND openjdk-6-jre DPKG is earlier than 6b22-1.10.4-0ubuntu1~11.04.2 OR Release section Ubuntu 11.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.1 AND icedtea-6-jre-jamvm DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.1 AND openjdk-6-jre-lib DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.1 AND openjdk-6-jre-zero DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.1 AND openjdk-6-jre DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.1 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.3 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.3 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.3 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.3 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.04.3 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.3 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.3 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.3 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.3 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.10-0ubuntu1~10.10.3

Definition Id: oval:org.mitre.oval:def:15374

Oval ID:	oval:org.mitre.oval:def:15374
Title:	DSA-2358-1 openjdk-6 -- several
Description:	Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java platform. This combines the two previous openjdk-6 advisories, DSA-2311-1 and DSA-2356-1. CVE-2011-0862 Integer overflow errors in the JPEG and font parser allow untrusted code to elevate its privileges. CVE-2011-0864 Hotspot, the just-in-time compiler in OpenJDK, mishandled certain byte code instructions, allowing untrusted code to crash the virtual machine. CVE-2011-0865 A race condition in signed object deserialization could allow untrusted code to modify signed content, apparently leaving its signature intact. CVE-2011-0867 Untrusted code could access information about network interfaces which was not intended to be public. CVE-2011-0868 A float-to-long conversion could overflow, allowing untrusted code to crash the virtual machine. CVE-2011-0869 Untrusted code could intercept HTTP requests by reconfiguring proxy settings through a SOAP connection. CVE-2011-0871 Untrusted code could elevate its privileges through the Swing MediaTracker code. CVE-2011-3389 The TLS implementation does not guard properly against certain chosen-plaintext attacks when block ciphers are used in CBC mode. CVE-2011-3521 The CORBA implementation contains a deserialization vulnerability in the IIOP implementation, allowing untrusted Java code to elevate its privileges. CVE-2011-3544 The Java scripting engine lacks necessary security manager checks, allowing untrusted Java code to elevate its privileges. CVE-2011-3547 The skip method in java.io.InputStream uses a shared buffer, allowing untrusted Java code to access data that is skipped by other code. CVE-2011-3548 The java.awt.AWTKeyStroke class contains a flaw which allows untrusted Java code to elevate its privileges. CVE-2011-3551 The Java2D C code contains an integer overflow which results in a heap-based buffer overflow, potentially allowing untrusted Java code to elevate its privileges. CVE-2011-3552 Malicous Java code can use up an excessive amount of UDP ports, leading to a denial of service. CVE-2011-3553 JAX-WS enables stack traces for certain server responses by default, potentially leaking sensitive information. CVE-2011-3554 JAR files in pack200 format are not properly checked for errors, potentially leading to arbitrary code execution when unpacking crafted pack200 files. CVE-2011-3556 The RMI Registry server lacks access restrictions on certain methods, allowing a remote client to execute arbitary code. CVE-2011-3557 The RMI Registry server fails to properly restrict privileges of untrusted Java code, allowing RMI clients to elevate their privileges on the RMI Registry server. CVE-2011-3560 The com.sun.net.ssl.HttpsURLConnection class does not perform proper security manager checks in the setSSLSocketFactory method, allowing untrusted Java code to bypass security policy restrictions.
Family:	unix	Class:	patch
Reference(s):	DSA-2358-1 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	openjdk-6
Definition Synopsis:
Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND openjdk-6 DPKG is earlier than 6b18-1.8.10-0~lenny1

Definition Id: oval:org.mitre.oval:def:15473

Oval ID:	oval:org.mitre.oval:def:15473
Title:	USN-1373-2 -- OpenJDK 6 (ARM) vulnerabilities
Description:	openjdk-6b18: Open Source Java implementation Details: USN 1373-1 fixed vulnerabilities in OpenJDK 6 in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04 for all architectures except for ARM . This provides the corresponding OpenJDK 6 update for use with the ARM architecture in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04. Original advisory Multiple vulnerabilities in OpenJDK 6 for the ARM architecture have been fixed.
Family:	unix	Class:	patch
Reference(s):	USN-1373-2 CVE-2011-5035 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 10.04 Ubuntu 10.10	Product(s):	OpenJDK
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND openjdk-6-jre-zero DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND openjdk-6-jre DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND icedtea-6-jre-jamvm DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 AND openjdk-6-jre-zero DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 AND openjdk-6-jre DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1 AND openjdk-6-jre-zero DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1 AND openjdk-6-jre DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1

Definition Id: oval:org.mitre.oval:def:16908

Oval ID:	oval:org.mitre.oval:def:16908
Title:	Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 9.2.4, 10.0.2, 10.3.5, 10.3.6 and 12.1.1. Easily exploitable vulnerability allows successful unauthenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server
Description:	Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-5035	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Oracle WebLogic Server
Definition Synopsis:
Oracle WebLogic Server is installed Check if the version of Oracle WebLogic Server is 9.2.4, 10.0.2, 10.3.5.0, 10.3.6, 12.1.1 Check if the version of Oracle WebLogic Server is 9.2.4 AND Check if the version of Oracle WebLogic Server is 10.0.2 AND Check if the version of Oracle WebLogic Server is 10.3.5.0 AND Check if the version of Oracle WebLogic Server is 10.3.6 AND Check if the version of Oracle WebLogic Server is 12.1.1

Definition Id: oval:org.mitre.oval:def:18833

Oval ID:	oval:org.mitre.oval:def:18833
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3550	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:18875

Oval ID:	oval:org.mitre.oval:def:18875
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3556	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19330

Oval ID:	oval:org.mitre.oval:def:19330
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote attackers to affect integrity via unknown vectors related to Networking.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3552	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19337

Oval ID:	oval:org.mitre.oval:def:19337
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3546	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:19361

Oval ID:	oval:org.mitre.oval:def:19361
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3561	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:19362

Oval ID:	oval:org.mitre.oval:def:19362
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3544	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:19408

Oval ID:	oval:org.mitre.oval:def:19408
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-5035	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19444

Oval ID:	oval:org.mitre.oval:def:19444
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, 7, 6 Update 27 and earlier, and 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deserialization.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3521	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk15.JDK15 version is less than 1.5.0.25.00 AND Jdk15.JDK15-COM version is less than 1.5.0.25.00 AND Jdk15.JDK15-DEMO version is less than 1.5.0.25.00 AND Jdk15.JDK15-IPF32 version is less than 1.5.0.25.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.25.00 AND Jdk15.JDK15-COM version is less than 1.5.0.25.00 AND Jdk15.JDK15-DEMO version is less than 1.5.0.25.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.25.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.25.00 AND Jre15.JRE15 version is less than 1.5.0.25.00 AND Jre15.JRE15-COM version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.25.00

Definition Id: oval:org.mitre.oval:def:19445

Oval ID:	oval:org.mitre.oval:def:19445
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0502	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19493

Oval ID:	oval:org.mitre.oval:def:19493
Title:	HP-UX Apache Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Access Restriction Bypass, Unauthorized Modification and Other Vulnerabilities
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.36.01

Definition Id: oval:org.mitre.oval:def:19527

Oval ID:	oval:org.mitre.oval:def:19527
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to CORBA.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0506	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19557

Oval ID:	oval:org.mitre.oval:def:19557
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0497	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19574

Oval ID:	oval:org.mitre.oval:def:19574
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3557	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19583

Oval ID:	oval:org.mitre.oval:def:19583
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and JavaFX 2.0.2 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0500	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19596

Oval ID:	oval:org.mitre.oval:def:19596
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3516	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:19599

Oval ID:	oval:org.mitre.oval:def:19599
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0501	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19607

Oval ID:	oval:org.mitre.oval:def:19607
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3548	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19644

Oval ID:	oval:org.mitre.oval:def:19644
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to I18n.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0503	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19673

Oval ID:	oval:org.mitre.oval:def:19673
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3389	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19678

Oval ID:	oval:org.mitre.oval:def:19678
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4454	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:19683

Oval ID:	oval:org.mitre.oval:def:19683
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote authenticated users to affect confidentiality, related to JAXWS.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3553	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:19719

Oval ID:	oval:org.mitre.oval:def:19719
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3551	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:19749

Oval ID:	oval:org.mitre.oval:def:19749
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 21 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4463	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:19775

Oval ID:	oval:org.mitre.oval:def:19775
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3545	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19776

Oval ID:	oval:org.mitre.oval:def:19776
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.2_29 and earlier for Solaris and Linux allows local standalone applications to affect confidentiality, integrity, and availability via unknown vectors related to Launcher. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is an untrusted search path vulnerability involving an empty LD_LIBRARY_PATH environment variable.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4450	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:19787

Oval ID:	oval:org.mitre.oval:def:19787
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3549	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19792

Oval ID:	oval:org.mitre.oval:def:19792
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3560	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19795

Oval ID:	oval:org.mitre.oval:def:19795
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3554	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk15.JDK15 version is less than 1.5.0.25.00 AND Jdk15.JDK15-COM version is less than 1.5.0.25.00 AND Jdk15.JDK15-DEMO version is less than 1.5.0.25.00 AND Jdk15.JDK15-IPF32 version is less than 1.5.0.25.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.25.00 AND Jdk15.JDK15-COM version is less than 1.5.0.25.00 AND Jdk15.JDK15-DEMO version is less than 1.5.0.25.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.25.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.25.00 AND Jre15.JRE15 version is less than 1.5.0.25.00 AND Jre15.JRE15-COM version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.25.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.25.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.25.00

Definition Id: oval:org.mitre.oval:def:19800

Oval ID:	oval:org.mitre.oval:def:19800
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier; and JavaFX 2.0.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0499	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19804

Oval ID:	oval:org.mitre.oval:def:19804
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3547	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19808

Oval ID:	oval:org.mitre.oval:def:19808
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0498	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19813

Oval ID:	oval:org.mitre.oval:def:19813
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3563	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19814

Oval ID:	oval:org.mitre.oval:def:19814
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to HotSpot.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3558	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jre60.JRE60-COM version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.13.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W version is less than 1.6.0.13.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.13.00 AND Jdk60.JDK60-COM version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.13.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20 version is less than 1.6.0.13.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.13.00

Definition Id: oval:org.mitre.oval:def:19819

Oval ID:	oval:org.mitre.oval:def:19819
Title:	HP-UX Running Java JRE and JDK, Remote Denial of Service (DoS), Unauthorized Modification and Disclosure of Information
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0871	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jpi14.JPI14-COM version is less than 1.4.2.28.00 AND Jpi14.JPI14-COM-DOC version is less than 1.4.2.28.00 AND Jpi14.JPI14-IPF32 version is less than 1.4.2.28.00 AND Jpi14.JPI14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-COM version is less than 1.4.2.28.00 AND Jdk14.JDK14-DEMO version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF32 version is less than 1.4.2.28.00 AND Jdk14.JDK14-IPF64 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA11 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PA20W version is less than 1.4.2.28.00 AND Jdk14.JDK14-PNV2 version is less than 1.4.2.28.00 AND Jdk14.JDK14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-COM version is less than 1.4.2.28.00 AND Jre14.JRE14-COM-DOC version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF32-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64 version is less than 1.4.2.28.00 AND Jre14.JRE14-IPF64-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA11-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20 version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W version is less than 1.4.2.28.00 AND Jre14.JRE14-PA20W-HS version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PNV2-H version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2 version is less than 1.4.2.28.00 AND Jre14.JRE14-PWV2-H version is less than 1.4.2.28.00

Definition Id: oval:org.mitre.oval:def:19829

Oval ID:	oval:org.mitre.oval:def:19829
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0505	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19848

Oval ID:	oval:org.mitre.oval:def:19848
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0507	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19854

Oval ID:	oval:org.mitre.oval:def:19854
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install and the Java Update mechanism.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0504	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19857

Oval ID:	oval:org.mitre.oval:def:19857
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Networking. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves "DNS cache poisoning by untrusted applets."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4448	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:19972

Oval ID:	oval:org.mitre.oval:def:19972
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, when using Java Update, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4451	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:19986

Oval ID:	oval:org.mitre.oval:def:19986
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows remote attackers to affect availability via unknown vectors related to JAXP and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to "Features set on SchemaFactory not inherited by Validator."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4470	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20014

Oval ID:	oval:org.mitre.oval:def:20014
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4447	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20243

Oval ID:	oval:org.mitre.oval:def:20243
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to 2D. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the exposure of system properties via vectors related to Font.createFont and exception text.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4471	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20365

Oval ID:	oval:org.mitre.oval:def:20365
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to JDBC.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4468	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20383

Oval ID:	oval:org.mitre.oval:def:20383
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4422	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20466

Oval ID:	oval:org.mitre.oval:def:20466
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4475	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20504

Oval ID:	oval:org.mitre.oval:def:20504
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0864	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20513

Oval ID:	oval:org.mitre.oval:def:20513
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier for Windows, Solaris, and, Linux; 5.0 Update 27 and earlier for Windows; and 1.4.2_29 and earlier for Windows allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4466	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20519

Oval ID:	oval:org.mitre.oval:def:20519
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0814.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0802	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20527

Oval ID:	oval:org.mitre.oval:def:20527
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0873	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20543

Oval ID:	oval:org.mitre.oval:def:20543
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is heap corruption related to the Verifier and "backward jsrs."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4469	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20544

Oval ID:	oval:org.mitre.oval:def:20544
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Deserialization.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0865	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20565

Oval ID:	oval:org.mitre.oval:def:20565
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4472	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20580

Oval ID:	oval:org.mitre.oval:def:20580
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the lack of framework support by AWT event dispatch, and/or "clipboard access in Applets."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4465	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20587

Oval ID:	oval:org.mitre.oval:def:20587
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0802.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0814	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20596

Oval ID:	oval:org.mitre.oval:def:20596
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 10 through 6 Update 23 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4467	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20597

Oval ID:	oval:org.mitre.oval:def:20597
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0862	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20622

Oval ID:	oval:org.mitre.oval:def:20622
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4473	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20639

Oval ID:	oval:org.mitre.oval:def:20639
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Deployment component in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4452	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20646

Oval ID:	oval:org.mitre.oval:def:20646
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0867	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20649

Oval ID:	oval:org.mitre.oval:def:20649
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	4
Platform(s):	VMWare ESX Server 4.1 VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20655

Oval ID:	oval:org.mitre.oval:def:20655
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect confidentiality via unknown vectors related to Security, a similar vulnerability to CVE-2009-4269.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4474	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20670

Oval ID:	oval:org.mitre.oval:def:20670
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4462	Version:	4
Platform(s):	VMWare ESX Server 4.0 VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed OR Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20679

Oval ID:	oval:org.mitre.oval:def:20679
Title:	VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-0871	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed

Definition Id: oval:org.mitre.oval:def:20754

Oval ID:	oval:org.mitre.oval:def:20754
Title:	RHSA-2012:0322: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0322-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	133
Platform(s):	Red Hat Enterprise Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8

Definition Id: oval:org.mitre.oval:def:20940

Oval ID:	oval:org.mitre.oval:def:20940
Title:	RHSA-2012:0034: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0034-01 CVE-2011-3389 CVE-2011-3516 CVE-2011-3521 CVE-2011-3544 CVE-2011-3545 CVE-2011-3546 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3550 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560 CVE-2011-3561	Version:	224
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.0-1jpp.2.el6

Definition Id: oval:org.mitre.oval:def:20962

Oval ID:	oval:org.mitre.oval:def:20962
Title:	RHSA-2011:0364: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0364-01 CVE-2010-4447 CVE-2010-4448 CVE-2010-4450 CVE-2010-4454 CVE-2010-4462 CVE-2010-4465 CVE-2010-4466 CVE-2010-4468 CVE-2010-4471 CVE-2010-4473 CVE-2010-4475	Version:	121
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.4-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:21056

Oval ID:	oval:org.mitre.oval:def:21056
Title:	RHSA-2011:0857: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0857-01 CESA-2011:0857 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871	Version:	94
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6

Definition Id: oval:org.mitre.oval:def:21273

Oval ID:	oval:org.mitre.oval:def:21273
Title:	RHSA-2011:0290: java-1.6.0-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0290-01 CVE-2010-4476	Version:	4
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.0-1jpp.5.el6

Definition Id: oval:org.mitre.oval:def:21340

Oval ID:	oval:org.mitre.oval:def:21340
Title:	RHSA-2012:0135: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0135-01 CESA-2012:0135 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	133
Platform(s):	Red Hat Enterprise Linux 6 CentOS Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND The operating system installed on the system is CentOS Linux 6.x Packages section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2

Definition Id: oval:org.mitre.oval:def:21364

Oval ID:	oval:org.mitre.oval:def:21364
Title:	RHSA-2012:0006: java-1.4.2-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0006-01 CVE-2011-3389 CVE-2011-3545 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3552 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560	Version:	107
Platform(s):	Red Hat Enterprise Linux 5	Product(s):	java-1.4.2-ibm
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-src is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.11-1jpp.1.el5

Definition Id: oval:org.mitre.oval:def:21398

Oval ID:	oval:org.mitre.oval:def:21398
Title:	RHSA-2012:0508: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0508-03 CVE-2011-3389 CVE-2011-3557 CVE-2011-3560 CVE-2011-3563 CVE-2012-0498 CVE-2012-0499 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	161
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Red Hat Enterprise Linux 5 release section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages match section java-1.5.0-ibm is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND Red Hat Enterprise Linux 6 release section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages match section java-1.5.0-ibm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.1-1jpp.2.el6_2

Definition Id: oval:org.mitre.oval:def:21404

Oval ID:	oval:org.mitre.oval:def:21404
Title:	RHSA-2012:0514: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0514-03 CVE-2011-3563 CVE-2011-5035 CVE-2012-0497 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	161
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Red Hat Enterprise Linux 5 release section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages match section java-1.6.0-ibm is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND Red Hat Enterprise Linux 6 release section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages match section java-1.6.0-ibm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.1-1jpp.5.el6_2

Definition Id: oval:org.mitre.oval:def:21410

Oval ID:	oval:org.mitre.oval:def:21410
Title:	RHSA-2012:0139: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0139-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	159
Platform(s):	Red Hat Enterprise Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-src is earlier than 1:1.6.0.31-1jpp.1.el6_2

Definition Id: oval:org.mitre.oval:def:21420

Oval ID:	oval:org.mitre.oval:def:21420
Title:	RHSA-2011:0336: tomcat5 security update (Important)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0336-01 CESA-2011:0336 CVE-2010-4476	Version:	4
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	tomcat5
Definition Synopsis:
Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section tomcat5-admin-webapps is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-servlet-2.4-api is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jsp-2.0-api is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-servlet-2.4-api-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-server-lib is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jasper is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jsp-2.0-api-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-common-lib is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-webapps is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jasper-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5 is earlier than 0:5.5.23-0jpp.17.el5_6

Definition Id: oval:org.mitre.oval:def:21487

Oval ID:	oval:org.mitre.oval:def:21487
Title:	RHSA-2011:0856: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0856-01 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871	Version:	94
Platform(s):	Red Hat Enterprise Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1

Definition Id: oval:org.mitre.oval:def:21558

Oval ID:	oval:org.mitre.oval:def:21558
Title:	RHSA-2011:1380: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:1380-01 CESA-2011:1380 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560	Version:	159
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5 CentOS Linux 5 CentOS Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Operation system section Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1

Definition Id: oval:org.mitre.oval:def:21622

Oval ID:	oval:org.mitre.oval:def:21622
Title:	RHSA-2011:0357: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0357-01 CVE-2010-4422 CVE-2010-4447 CVE-2010-4448 CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4466 CVE-2010-4467 CVE-2010-4468 CVE-2010-4471 CVE-2010-4473 CVE-2010-4475	Version:	172
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.1-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:21690

Oval ID:	oval:org.mitre.oval:def:21690
Title:	RHSA-2011:0490: java-1.4.2-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0490-01 CVE-2010-4447 CVE-2010-4448 CVE-2010-4454 CVE-2010-4462 CVE-2010-4465 CVE-2010-4466 CVE-2010-4473 CVE-2010-4475	Version:	82
Platform(s):	Red Hat Enterprise Linux 5	Product(s):	java-1.4.2-ibm
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.4.2-ibm is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-src is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.9-1jpp.1.el5

Definition Id: oval:org.mitre.oval:def:21713

Oval ID:	oval:org.mitre.oval:def:21713
Title:	RHSA-2011:0214: java-1.6.0-openjdk security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0214-01 CVE-2010-4476 CESA-2011:0214-CentOS 5	Version:	6
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Red Hat Enterprise Linux 5 and CentOS Linux 5 release section Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.18.b17.el5 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.18.b17.el5 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.18.b17.el5 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.18.b17.el5 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.18.b17.el5 AND Red Hat Enterprise Linux 6 release section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages match section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-debuginfo is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.36.b17.el6_0

Definition Id: oval:org.mitre.oval:def:21742

Oval ID:	oval:org.mitre.oval:def:21742
Title:	RHSA-2011:0860: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0860-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0863 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-0873	Version:	146
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.26-1jpp.1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.26-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:21809

Oval ID:	oval:org.mitre.oval:def:21809
Title:	RHSA-2011:0291: java-1.5.0-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0291-01 CVE-2010-4476	Version:	4
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.3-1jpp.3.el6

Definition Id: oval:org.mitre.oval:def:21859

Oval ID:	oval:org.mitre.oval:def:21859
Title:	RHSA-2011:0282: java-1.6.0-sun security update (Critical)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0282-01 CVE-2010-4422 CVE-2010-4447 CVE-2010-4448 CVE-2010-4450 CVE-2010-4451 CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4466 CVE-2010-4467 CVE-2010-4468 CVE-2010-4469 CVE-2010-4470 CVE-2010-4471 CVE-2010-4472 CVE-2010-4473 CVE-2010-4475 CVE-2010-4476	Version:	250
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.24-1jpp.1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.24-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:21907

Oval ID:	oval:org.mitre.oval:def:21907
Title:	RHSA-2011:0292: java-1.4.2-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0292-01 CVE-2010-4476	Version:	4
Platform(s):	Red Hat Enterprise Linux 5	Product(s):	java-1.4.2-ibm
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.4.2-ibm is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-src is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.8-1jpp.3.el5

Definition Id: oval:org.mitre.oval:def:21931

Oval ID:	oval:org.mitre.oval:def:21931
Title:	RHSA-2011:0281: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0281-01 CVE-2010-4448 CVE-2010-4450 CVE-2010-4465 CVE-2010-4469 CVE-2010-4470 CVE-2010-4472 CESA-2011:0281-CentOS 5	Version:	83
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Red Hat Enterprise Linux 5 and CentOS Linux 5 release section Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.20.b17.el5 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.20.b17.el5 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.20.b17.el5 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.20.b17.el5 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.20.b17.el5 AND Red Hat Enterprise Linux 6 release section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages match section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-debuginfo is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.39.b17.el6_0

Definition Id: oval:org.mitre.oval:def:21981

Oval ID:	oval:org.mitre.oval:def:21981
Title:	RHSA-2011:0938: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0938-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0863 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-0873	Version:	133
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.2-1jpp.2.el6

Definition Id: oval:org.mitre.oval:def:22009

Oval ID:	oval:org.mitre.oval:def:22009
Title:	RHSA-2011:1384: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:1384-01 CVE-2011-3389 CVE-2011-3516 CVE-2011-3521 CVE-2011-3544 CVE-2011-3545 CVE-2011-3546 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3550 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560 CVE-2011-3561	Version:	237
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.6.0-sun
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.29-1jpp.1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.29-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:22116

Oval ID:	oval:org.mitre.oval:def:22116
Title:	RHSA-2011:1478: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:1478-01 CVE-2011-3545 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3552 CVE-2011-3554 CVE-2011-3556	Version:	94
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.0-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:22125

Oval ID:	oval:org.mitre.oval:def:22125
Title:	RHSA-2011:1087: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:1087-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0865 CVE-2011-0867 CVE-2011-0871 CVE-2011-0873	Version:	94
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.5-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:22424

Oval ID:	oval:org.mitre.oval:def:22424
Title:	DEPRECATED: ELSA-2011:0938: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0938-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0863 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-0873	Version:	46
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.2-1jpp.2.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.2-1jpp.2.el6

Definition Id: oval:org.mitre.oval:def:22673

Oval ID:	oval:org.mitre.oval:def:22673
Title:	DEPRECATED: ELSA-2011:0282: java-1.6.0-sun security update (Critical)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0282-01 CVE-2010-4422 CVE-2010-4447 CVE-2010-4448 CVE-2010-4450 CVE-2010-4451 CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4466 CVE-2010-4467 CVE-2010-4468 CVE-2010-4469 CVE-2010-4470 CVE-2010-4471 CVE-2010-4472 CVE-2010-4473 CVE-2010-4475 CVE-2010-4476	Version:	82
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.24-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.24-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:22826

Oval ID:	oval:org.mitre.oval:def:22826
Title:	ELSA-2011:0292: java-1.4.2-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0292-01 CVE-2010-4476	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	java-1.4.2-ibm
Definition Synopsis:
Oracle Linux 5.x rpm test java-1.4.2-ibm is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-src is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.8-1jpp.3.el5 AND java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.8-1jpp.3.el5

Definition Id: oval:org.mitre.oval:def:22836

Oval ID:	oval:org.mitre.oval:def:22836
Title:	DEPRECATED: ELSA-2011:0290: java-1.6.0-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0290-01 CVE-2010-4476	Version:	7
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.0-1jpp.4.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.0-1jpp.5.el6

Definition Id: oval:org.mitre.oval:def:22840

Oval ID:	oval:org.mitre.oval:def:22840
Title:	DEPRECATED: ELSA-2011:1380: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1380-01 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560	Version:	54
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1

Definition Id: oval:org.mitre.oval:def:22845

Oval ID:	oval:org.mitre.oval:def:22845
Title:	ELSA-2011:0281: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier allows remote attackers to affect availability, related to XML Digital Signature and unspecified APIs. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue involves the replacement of the "XML DSig Transform or C14N algorithm implementations."
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0281-01 CVE-2010-4448 CVE-2010-4450 CVE-2010-4465 CVE-2010-4469 CVE-2010-4470 CVE-2010-4472	Version:	29
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.39.b17.el6_0

Definition Id: oval:org.mitre.oval:def:22859

Oval ID:	oval:org.mitre.oval:def:22859
Title:	DEPRECATED: ELSA-2012:0034: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0034-01 CVE-2011-3389 CVE-2011-3516 CVE-2011-3521 CVE-2011-3544 CVE-2011-3545 CVE-2011-3546 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3550 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560 CVE-2011-3561	Version:	74
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.0-1jpp.2.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.0-1jpp.2.el6

Definition Id: oval:org.mitre.oval:def:22861

Oval ID:	oval:org.mitre.oval:def:22861
Title:	DEPRECATED: ELSA-2011:0357: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0357-01 CVE-2010-4422 CVE-2010-4447 CVE-2010-4448 CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4466 CVE-2010-4467 CVE-2010-4468 CVE-2010-4471 CVE-2010-4473 CVE-2010-4475	Version:	58
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.1-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.1-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:22894

Oval ID:	oval:org.mitre.oval:def:22894
Title:	ELSA-2011:0857: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0857-01 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871	Version:	33
Platform(s):	Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5.x rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.22.1.9.8.el5_6

Definition Id: oval:org.mitre.oval:def:22908

Oval ID:	oval:org.mitre.oval:def:22908
Title:	DEPRECATED: ELSA-2011:0291: java-1.5.0-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0291-01 CVE-2010-4476	Version:	7
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.3-1jpp.2.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.3-1jpp.3.el6

Definition Id: oval:org.mitre.oval:def:22941

Oval ID:	oval:org.mitre.oval:def:22941
Title:	DEPRECATED: ELSA-2011:0860: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0860-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0863 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-0873	Version:	50
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.26-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.26-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:22977

Oval ID:	oval:org.mitre.oval:def:22977
Title:	ELSA-2011:0336: tomcat5 security update (Important)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0336-01 CVE-2010-4476	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	tomcat5
Definition Synopsis:
Oracle Linux 5.x rpm test tomcat5-admin-webapps is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-servlet-2.4-api is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jsp-2.0-api is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-servlet-2.4-api-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-server-lib is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jasper is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jsp-2.0-api-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-common-lib is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-webapps is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jasper-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5 is earlier than 0:5.5.23-0jpp.17.el5_6

Definition Id: oval:org.mitre.oval:def:23053

Oval ID:	oval:org.mitre.oval:def:23053
Title:	DEPRECATED: ELSA-2011:0364: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0364-01 CVE-2010-4447 CVE-2010-4448 CVE-2010-4450 CVE-2010-4454 CVE-2010-4462 CVE-2010-4465 CVE-2010-4466 CVE-2010-4468 CVE-2010-4471 CVE-2010-4473 CVE-2010-4475	Version:	43
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.4-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.4-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23077

Oval ID:	oval:org.mitre.oval:def:23077
Title:	ELSA-2012:0006: java-1.4.2-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0006-01 CVE-2011-3389 CVE-2011-3545 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3552 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560	Version:	37
Platform(s):	Oracle Linux 5	Product(s):	java-1.4.2-ibm
Definition Synopsis:
Oracle Linux 5.x rpm test java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-src is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.11-1jpp.1.el5 AND java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.11-1jpp.1.el5

Definition Id: oval:org.mitre.oval:def:23111

Oval ID:	oval:org.mitre.oval:def:23111
Title:	ELSA-2011:0490: java-1.4.2-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0490-01 CVE-2010-4447 CVE-2010-4448 CVE-2010-4454 CVE-2010-4462 CVE-2010-4465 CVE-2010-4466 CVE-2010-4473 CVE-2010-4475	Version:	30
Platform(s):	Oracle Linux 5	Product(s):	java-1.4.2-ibm
Definition Synopsis:
Oracle Linux 5.x rpm test java-1.4.2-ibm is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-src is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.9-1jpp.1.el5 AND java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.9-1jpp.1.el5

Definition Id: oval:org.mitre.oval:def:23119

Oval ID:	oval:org.mitre.oval:def:23119
Title:	DEPRECATED: ELSA-2011:1384: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1384-01 CVE-2011-3389 CVE-2011-3516 CVE-2011-3521 CVE-2011-3544 CVE-2011-3545 CVE-2011-3546 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3550 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560 CVE-2011-3561	Version:	78
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-sun
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.29-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.29-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23157

Oval ID:	oval:org.mitre.oval:def:23157
Title:	ELSA-2012:0034: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0034-01 CVE-2011-3389 CVE-2011-3516 CVE-2011-3521 CVE-2011-3544 CVE-2011-3545 CVE-2011-3546 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3550 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3560 CVE-2011-3561	Version:	73
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.0-1jpp.2.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.0-1jpp.2.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.0-1jpp.2.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.0-1jpp.2.el6

Definition Id: oval:org.mitre.oval:def:23188

Oval ID:	oval:org.mitre.oval:def:23188
Title:	DEPRECATED: ELSA-2011:1478: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1478-01 CVE-2011-3545 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3552 CVE-2011-3554 CVE-2011-3556	Version:	34
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.0-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.0-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23249

Oval ID:	oval:org.mitre.oval:def:23249
Title:	ELSA-2011:0856: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0856-01 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871	Version:	33
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.39.1.9.8.el6_1

Definition Id: oval:org.mitre.oval:def:23287

Oval ID:	oval:org.mitre.oval:def:23287
Title:	ELSA-2012:0322: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0322-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	45
Platform(s):	Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5.x rpm test java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8

Definition Id: oval:org.mitre.oval:def:23319

Oval ID:	oval:org.mitre.oval:def:23319
Title:	ELSA-2011:0214: java-1.6.0-openjdk security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0214-01 CVE-2010-4476	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.36.b17.el6_0

Definition Id: oval:org.mitre.oval:def:23323

Oval ID:	oval:org.mitre.oval:def:23323
Title:	ELSA-2012:0514: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0514-03 CVE-2011-3563 CVE-2011-5035 CVE-2012-0497 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	53
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.1-1jpp.5.el6_2

Definition Id: oval:org.mitre.oval:def:23332

Oval ID:	oval:org.mitre.oval:def:23332
Title:	ELSA-2011:1384: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1384-01 CVE-2011-3389 CVE-2011-3516 CVE-2011-3521 CVE-2011-3544 CVE-2011-3545 CVE-2011-3546 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3550 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560 CVE-2011-3561	Version:	77
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-sun
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.29-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.29-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.29-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.29-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23339

Oval ID:	oval:org.mitre.oval:def:23339
Title:	ELSA-2011:0860: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0860-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0863 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-0873	Version:	49
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.26-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.26-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.26-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.26-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23406

Oval ID:	oval:org.mitre.oval:def:23406
Title:	ELSA-2011:0290: java-1.6.0-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0290-01 CVE-2010-4476	Version:	6
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.0-1jpp.4.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.0-1jpp.4.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.0-1jpp.5.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.0-1jpp.5.el6

Definition Id: oval:org.mitre.oval:def:23413

Oval ID:	oval:org.mitre.oval:def:23413
Title:	DEPRECATED: ELSA-2011:1087: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1087-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0865 CVE-2011-0867 CVE-2011-0871 CVE-2011-0873	Version:	34
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.5-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.5-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23537

Oval ID:	oval:org.mitre.oval:def:23537
Title:	ELSA-2011:1478: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1478-01 CVE-2011-3545 CVE-2011-3547 CVE-2011-3548 CVE-2011-3549 CVE-2011-3552 CVE-2011-3554 CVE-2011-3556	Version:	33
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.0-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.0-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.0-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.0-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23570

Oval ID:	oval:org.mitre.oval:def:23570
Title:	ELSA-2011:0364: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0364-01 CVE-2010-4447 CVE-2010-4448 CVE-2010-4450 CVE-2010-4454 CVE-2010-4462 CVE-2010-4465 CVE-2010-4466 CVE-2010-4468 CVE-2010-4471 CVE-2010-4473 CVE-2010-4475	Version:	42
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.4-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.4-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.4-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.4-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23592

Oval ID:	oval:org.mitre.oval:def:23592
Title:	ELSA-2011:0357: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0357-01 CVE-2010-4422 CVE-2010-4447 CVE-2010-4448 CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4466 CVE-2010-4467 CVE-2010-4468 CVE-2010-4471 CVE-2010-4473 CVE-2010-4475	Version:	57
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.1-1jpp.1.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.1-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.1-1jpp.1.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.1-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23595

Oval ID:	oval:org.mitre.oval:def:23595
Title:	ELSA-2011:0291: java-1.5.0-ibm security update (Moderate)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0291-01 CVE-2010-4476	Version:	6
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.3-1jpp.2.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.3-1jpp.2.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.3-1jpp.3.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.3-1jpp.3.el6

Definition Id: oval:org.mitre.oval:def:23601

Oval ID:	oval:org.mitre.oval:def:23601
Title:	ELSA-2011:0938: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0938-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0863 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-0873	Version:	45
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.2-1jpp.2.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.2-1jpp.2.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-ibm-devel is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm is earlier than 1:1.6.0.9.2-1jpp.2.el6 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.9.2-1jpp.2.el6

Definition Id: oval:org.mitre.oval:def:23615

Oval ID:	oval:org.mitre.oval:def:23615
Title:	ELSA-2011:0282: java-1.6.0-sun security update (Critical)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0282-01 CVE-2010-4422 CVE-2010-4447 CVE-2010-4448 CVE-2010-4450 CVE-2010-4451 CVE-2010-4452 CVE-2010-4454 CVE-2010-4462 CVE-2010-4463 CVE-2010-4465 CVE-2010-4466 CVE-2010-4467 CVE-2010-4468 CVE-2010-4469 CVE-2010-4470 CVE-2010-4471 CVE-2010-4472 CVE-2010-4473 CVE-2010-4475 CVE-2010-4476	Version:	81
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.24-1jpp.1.el5 AND java-1.6.0-sun-src is earlier than 1:1.6.0.24-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.24-1jpp.1.el6 AND java-1.6.0-sun-src is earlier than 1:1.6.0.24-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23638

Oval ID:	oval:org.mitre.oval:def:23638
Title:	ELSA-2012:0139: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0139-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	53
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-src is earlier than 1:1.6.0.31-1jpp.1.el6_2

Definition Id: oval:org.mitre.oval:def:23720

Oval ID:	oval:org.mitre.oval:def:23720
Title:	ELSA-2012:0135: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0135-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	45
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2

Definition Id: oval:org.mitre.oval:def:23725

Oval ID:	oval:org.mitre.oval:def:23725
Title:	ELSA-2011:1087: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1087-01 CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0865 CVE-2011-0867 CVE-2011-0871 CVE-2011-0873	Version:	33
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.5.0-ibm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.5-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.5-1jpp.1.el5 OR rpm test Oracle Linux 6.x AND rpm test java-1.5.0-ibm-devel is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.12.5-1jpp.1.el6 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.12.5-1jpp.1.el6

Definition Id: oval:org.mitre.oval:def:23746

Oval ID:	oval:org.mitre.oval:def:23746
Title:	ELSA-2011:1380: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1380-01 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560	Version:	53
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.23.1.9.10.el5_7 OR rpm test Oracle Linux 6.x AND rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.40.1.9.10.el6_1

Definition Id: oval:org.mitre.oval:def:23749

Oval ID:	oval:org.mitre.oval:def:23749
Title:	ELSA-2012:0508: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0508-03 CVE-2011-3389 CVE-2011-3557 CVE-2011-3560 CVE-2011-3563 CVE-2012-0498 CVE-2012-0499 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	53
Platform(s):	Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.1-1jpp.2.el6_2

Definition Id: oval:org.mitre.oval:def:27767

Oval ID:	oval:org.mitre.oval:def:27767
Title:	DEPRECATED: ELSA-2012-0322 -- java-1.6.0-openjdk security update (important)
Description:	[1.6.0.0-1.25.1.10.6.0.1.el5_8] - Add oracle-enterprise.patch [1:1.6.0.0-1.25.1.10.6] - Updated to IcedTea6 1.10.6 - Resolves: rhbz#787142 - Security fixes - S7082299: Fix in AtomicReferenceArray - S7088367: Fix issues in java sound - S7110683: Issues with some KeyboardFocusManager method - S7110687: Issues with TimeZone class - S7110700: Enhance exception throwing mechanism in ObjectStreamClass - S7110704: Issues with some method in corba - S7112642: Incorrect checking for graphics rendering object - S7118283: Better input parameter checking in zip file processing - S7126960: Add property to limit number of request headers to the HTTP Server - Bug fixes - RH580478: Desktop files should not use hardcoded path - Removed and deleted upstreamed patch7 - name-rmi-fix.patch - Removed and deleted upstreamed Hugepages patches: - Source100: 7034464-hugepage.patch - Source101: 7037939-hugepage.patch - Source102: 7043564-hugepage.patch
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-0322 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2011-3571 CVE-2011-5035 CVE-2012-0507	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8

Definition Id: oval:org.mitre.oval:def:27917

Oval ID:	oval:org.mitre.oval:def:27917
Title:	DEPRECATED: ELSA-2011-0856 -- java-1.6.0-openjdk security update (critical)
Description:	[1.6.0.0-1.39.1.9.8] - Resolves: rhbz#709375 - Bumped to IcedTea6 1.9.8 - Copy fontconfig files to match names for current and next release - RH706250, S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) - RH706106, S6618658, CVE-2011-0865: Vulnerability in deserialization - RH706111, S7012520, CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() - RH706139, S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code - RH706153, S7013969, CVE-2011-0867: NetworkInterface.toString can reveal bindings - RH706234, S7013971, CVE-2011-0869: Vulnerability in SAAJ - RH706239, S7016340, CVE-2011-0870: Vulnerability in SAAJ - RH706241, S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero - RH706248, S7020198, CVE-2011-0871: ImageIcon creates Component with null acc - RH706245, S7020373, CVE-2011-0864: JSR rewriting can overflow memory address size variables
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-0856 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.39.1.9.8.el6_1 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.39.1.9.8.el6_1

Definition Id: oval:org.mitre.oval:def:27922

Oval ID:	oval:org.mitre.oval:def:27922
Title:	DEPRECATED: ELSA-2012-0135 -- java-1.6.0-openjdk security update (critical)
Description:	[1:1.6.0.0-1.43.1.10.6] - Updated to IcedTea6 1.10.6 - Resolves: rhbz#787144 - Security fixes - S7082299: Fix in AtomicReferenceArray - S7088367: Fix issues in java sound - S7110683: Issues with some KeyboardFocusManager method - S7110687: Issues with TimeZone class - S7110700: Enhance exception throwing mechanism in ObjectStreamClass - S7110704: Issues with some method in corba - S7112642: Incorrect checking for graphics rendering object - S7118283: Better input parameter checking in zip file processing - S7126960: Add property to limit number of request headers to the HTTP Server - Bug fixes - RH580478: Desktop files should not use hardcoded path - Removed upstreamed patch7 - java-1.6.0-openjdk-6_2-Z-rmi-fix.patch
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-0135 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2011-3571 CVE-2011-5035 CVE-2012-0507	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2

Definition Id: oval:org.mitre.oval:def:27948

Oval ID:	oval:org.mitre.oval:def:27948
Title:	DEPRECATED: ELSA-2011-0336 -- tomcat5 security update (important)
Description:	[0:5.5.23-0jpp.17] - Resolves: rhbz 674599 JDK Double.parseDouble DoS
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-0336 CVE-2010-4476	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	tomcat5
Definition Synopsis:
Oracle Linux 5.x Packages match section tomcat5 is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-admin-webapps is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-common-lib is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jasper is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jasper-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jsp-2.0-api is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-jsp-2.0-api-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-server-lib is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-servlet-2.4-api is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-servlet-2.4-api-javadoc is earlier than 0:5.5.23-0jpp.17.el5_6 AND tomcat5-webapps is earlier than 0:5.5.23-0jpp.17.el5_6

Definition Id: oval:org.mitre.oval:def:27966

Oval ID:	oval:org.mitre.oval:def:27966
Title:	DEPRECATED: ELSA-2011-0281 -- java-1.6.0-openjdk security update (important)
Description:	[1.6.0.0-1.39.b17] - respin of IcedTea6 1.7.10 - Resolves: rhbz#676276 [1.6.0.0-1.37.b17] - Updated to IcedTea6 1.7.10 - Resolves: rhbz#676276
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-0281 CVE-2010-4448 CVE-2010-4450 CVE-2010-4465 CVE-2010-4469 CVE-2010-4470 CVE-2010-4472	Version:	4
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5 release section Oracle Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.20.b17.0.1.el5 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.20.b17.0.1.el5 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.20.b17.0.1.el5 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.20.b17.0.1.el5 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.20.b17.0.1.el5 AND Oracle Linux 6 release section Oracle Linux 6.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.39.b17.el6_0 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.39.b17.el6_0

Definition Id: oval:org.mitre.oval:def:28054

Oval ID:	oval:org.mitre.oval:def:28054
Title:	DEPRECATED: ELSA-2011-0214 -- java-1.6.0-openjdk security update (moderate)
Description:	[1.6.0.0-1.36.b17] - removed plugin. How it comes in?! - Resolves: rhbz#676295 [1.6.0.0-1.33.b17] - bumped release number, it was accidentaly reduced, and now lower version then last one was released. - Resolves: rhbz#676295 [1.6.0.0-1.22.b17] - Updated to 1.7.9 tarball - removed patch6, fixed upstrream - Resolves: rhbz#676295
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-0214 CVE-2010-4476	Version:	4
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5 release section Oracle Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.18.b17.0.1.el5 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.18.b17.0.1.el5 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.18.b17.0.1.el5 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.18.b17.0.1.el5 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.18.b17.0.1.el5 AND Oracle Linux 6 release section Oracle Linux 6.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.36.b17.el6_0 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.36.b17.el6_0

Definition Id: oval:org.mitre.oval:def:28104

Oval ID:	oval:org.mitre.oval:def:28104
Title:	DEPRECATED: ELSA-2011-1380 -- java-1.6.0-openjdk security update (critical)
Description:	[1:1.6.0.0-1.40.1.9.10] - Resolves: rhbz#744788 - Bumped to IcedTea6 1.9.8 -removed font copying Security fixes - S7000600, CVE-2011-3547: InputStream skip() information leak - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine - S7055902, CVE-2011-3521: IIOP deserialization code execution - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks - S7064341, CVE-2011-3389: JSSE - S7070134, CVE-2011-3558: Hotspot unspecified issue - S7077466, CVE-2011-3556: RMI DGC server remote code execution - S7083012, CVE-2011-3557: RMI registry privileged code execution - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection NetX - PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-1380 CVE-2011-3389 CVE-2011-3521 CVE-2011-3544 CVE-2011-3547 CVE-2011-3548 CVE-2011-3551 CVE-2011-3552 CVE-2011-3553 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3558 CVE-2011-3560	Version:	4
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5 release section Oracle Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.23.1.9.10.0.1.el5_7 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.23.1.9.10.0.1.el5_7 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.23.1.9.10.0.1.el5_7 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.23.1.9.10.0.1.el5_7 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.23.1.9.10.0.1.el5_7 AND Oracle Linux 6 release section Oracle Linux 6.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.40.1.9.10.el6_1 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.40.1.9.10.el6_1

Definition Id: oval:org.mitre.oval:def:28113

Oval ID:	oval:org.mitre.oval:def:28113
Title:	DEPRECATED: ELSA-2011-0857 -- java-1.6.0-openjdk security update (important)
Description:	[1:1.6.0.0-1.22.1.9.8.0.1.el5_6] - Add oracle-enterprise.patch [1:1.6.0.0-1.22.1.9.8] - Resolves: rhbz#668488 - Bumped to IcedTea6 1.9.8 - RH706250, S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) - RH706106, S6618658, CVE-2011-0865: Vulnerability in deserialization - RH706111, S7012520, CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() - RH706139, S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code - RH706153, S7013969, CVE-2011-0867: NetworkInterface.toString can reveal bindings - RH706234, S7013971, CVE-2011-0869: Vulnerability in SAAJ - RH706239, S7016340, CVE-2011-0870: Vulnerability in SAAJ - RH706241, S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero - RH706248, S7020198, CVE-2011-0871: ImageIcon creates Component with null acc - RH706245, S7020373, CVE-2011-0864: JSR rewriting can overflow memory address size variables [1:1.6.0.0-1.22.1.9.7] - Resolves bz690289 - Import from RHEL-5_6-Z - Updated to IcedTea6 1.9.7 - Removed all plugin/webstart related commented lines - Modified bz entry format in previous logs to get around cvs ack checking bug
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-0857 CVE-2011-0862 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.22.1.9.8.0.1.el5_6 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.22.1.9.8.0.1.el5_6 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.22.1.9.8.0.1.el5_6 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.22.1.9.8.0.1.el5_6 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.22.1.9.8.0.1.el5_6

CPE : Common Platform Enumeration

Type	Description	Count
Application	Google Chrome cpe:2.3:a:google:chrome:-:::::::*	1
Application	Haxx Curl cpe:2.3:a:haxx:curl:7.9.8:::::::* cpe:2.3:a:haxx:curl:7.9.7:::::::* cpe:2.3:a:haxx:curl:7.9.6:::::::* cpe:2.3:a:haxx:curl:7.9.5:::::::* cpe:2.3:a:haxx:curl:7.9.4:::::::* cpe:2.3:a:haxx:curl:7.9.3:::::::* cpe:2.3:a:haxx:curl:7.9.2:::::::* cpe:2.3:a:haxx:curl:7.9.1:::::::* cpe:2.3:a:haxx:curl:7.9:::::::* cpe:2.3:a:haxx:curl:7.8.1:::::::* cpe:2.3:a:haxx:curl:7.8:::::::* cpe:2.3:a:haxx:curl:7.7.3:::::::* cpe:2.3:a:haxx:curl:7.7.2:::::::* cpe:2.3:a:haxx:curl:7.7.1:::::::* cpe:2.3:a:haxx:curl:7.7:::::::* cpe:2.3:a:haxx:curl:7.6.1:::::::* cpe:2.3:a:haxx:curl:7.6:::::::* cpe:2.3:a:haxx:curl:7.5.2:::::::* cpe:2.3:a:haxx:curl:7.5.1:::::::* cpe:2.3:a:haxx:curl:7.5:::::::* cpe:2.3:a:haxx:curl:7.4.2:::::::* cpe:2.3:a:haxx:curl:7.4.1:::::::* cpe:2.3:a:haxx:curl:7.4:::::::* cpe:2.3:a:haxx:curl:7.3:::::::* cpe:2.3:a:haxx:curl:7.23.1:::::::* cpe:2.3:a:haxx:curl:7.23.0:::::::* cpe:2.3:a:haxx:curl:7.22.0:::::::* cpe:2.3:a:haxx:curl:7.21.7:::::::* cpe:2.3:a:haxx:curl:7.21.6:::::::* cpe:2.3:a:haxx:curl:7.21.5:::::::* cpe:2.3:a:haxx:curl:7.21.4:::::::* cpe:2.3:a:haxx:curl:7.21.3:::::::* cpe:2.3:a:haxx:curl:7.21.2:::::::* cpe:2.3:a:haxx:curl:7.21.1:::::::* cpe:2.3:a:haxx:curl:7.21.0:::::::* cpe:2.3:a:haxx:curl:7.20.1:::::::* cpe:2.3:a:haxx:curl:7.20.0:::::::* cpe:2.3:a:haxx:curl:7.2.1:::::::* cpe:2.3:a:haxx:curl:7.2:::::::* cpe:2.3:a:haxx:curl:7.19.7-53:::::::* cpe:2.3:a:haxx:curl:7.19.7:::::::* cpe:2.3:a:haxx:curl:7.19.6:::::::* cpe:2.3:a:haxx:curl:7.19.5:::::::* cpe:2.3:a:haxx:curl:7.19.4:::::::* cpe:2.3:a:haxx:curl:7.19.3:::::::* cpe:2.3:a:haxx:curl:7.19.2:::::::* cpe:2.3:a:haxx:curl:7.19.1:::::::* cpe:2.3:a:haxx:curl:7.19.0:::::::* cpe:2.3:a:haxx:curl:7.18.2:::::::* cpe:2.3:a:haxx:curl:7.18.1:::::::* cpe:2.3:a:haxx:curl:7.18.0:::::::* cpe:2.3:a:haxx:curl:7.17.1:::::::* cpe:2.3:a:haxx:curl:7.17.0:::::::* cpe:2.3:a:haxx:curl:7.16.4:::::::* cpe:2.3:a:haxx:curl:7.16.3:::::::* cpe:2.3:a:haxx:curl:7.16.2:::::::* cpe:2.3:a:haxx:curl:7.16.1:::::::* cpe:2.3:a:haxx:curl:7.16.0:::::::* cpe:2.3:a:haxx:curl:7.15.5:::::::* cpe:2.3:a:haxx:curl:7.15.4:::::::* cpe:2.3:a:haxx:curl:7.15.3:::::::* cpe:2.3:a:haxx:curl:7.15.2:::::::* cpe:2.3:a:haxx:curl:7.15.1:::::::* cpe:2.3:a:haxx:curl:7.15.0:::::::* cpe:2.3:a:haxx:curl:7.14.1:::::::* cpe:2.3:a:haxx:curl:7.14.0:::::::* cpe:2.3:a:haxx:curl:7.13.2:::::::* cpe:2.3:a:haxx:curl:7.13.1:::::::* cpe:2.3:a:haxx:curl:7.13.0:::::::* cpe:2.3:a:haxx:curl:7.12.3:::::::* cpe:2.3:a:haxx:curl:7.12.2:::::::* cpe:2.3:a:haxx:curl:7.12.1:::::::* cpe:2.3:a:haxx:curl:7.12.0:::::::* cpe:2.3:a:haxx:curl:7.11.2:::::::* cpe:2.3:a:haxx:curl:7.11.1:::::::* cpe:2.3:a:haxx:curl:7.11.0:::::::* cpe:2.3:a:haxx:curl:7.10.8:::::::* cpe:2.3:a:haxx:curl:7.10.7:::::::* cpe:2.3:a:haxx:curl:7.10.6:::::::* cpe:2.3:a:haxx:curl:7.10.5:::::::* cpe:2.3:a:haxx:curl:7.10.4:::::::* cpe:2.3:a:haxx:curl:7.10.3:::::::* cpe:2.3:a:haxx:curl:7.10.2:::::::* cpe:2.3:a:haxx:curl:7.10.1:::::::* cpe:2.3:a:haxx:curl:7.10:::::::* cpe:2.3:a:haxx:curl:7.1.1:::::::* cpe:2.3:a:haxx:curl:7.1:::::::* cpe:2.3:a:haxx:curl:6.5.2:::::::* cpe:2.3:a:haxx:curl:6.5.1:::::::* cpe:2.3:a:haxx:curl:6.5:::::::* cpe:2.3:a:haxx:curl:6.4:::::::* cpe:2.3:a:haxx:curl:6.3.1:::::::* cpe:2.3:a:haxx:curl:6.3:::::::* cpe:2.3:a:haxx:curl:6.2:::::::* cpe:2.3:a:haxx:curl:6.1:::::::* cpe:2.3:a:haxx:curl:6.1:beta:::::: cpe:2.3:a:haxx:curl:6.0:::::::* cpe:2.3:a:haxx:curl::::::::	98
Application	Microsoft Internet Explorer cpe:2.3:a:microsoft:internet_explorer:-:::::::*	1
Application	Mozilla Firefox cpe:2.3:a:mozilla:firefox:-:::::::*	1
Application	Opera Opera Browser cpe:2.3:a:opera:opera_browser:-:::::::*	1
Application	Oracle Glassfish Server cpe:2.3:a:oracle:glassfish_server:3.1.1:::::::* cpe:2.3:a:oracle:glassfish_server:3.0.1:::::::* cpe:2.3:a:oracle:glassfish_server:3.0.1::::open_source::: cpe:2.3:a:oracle:glassfish_server:3.0:::::::* cpe:2.3:a:oracle:glassfish_server:2.1.1:::::::* cpe:2.3:a:oracle:glassfish_server:2.1:::::::* cpe:2.3:a:oracle:glassfish_server:2.0:::::::* cpe:2.3:a:oracle:glassfish_server:1.0:ur1_po1:::::: cpe:2.3:a:oracle:glassfish_server:1.0:::::::* cpe:2.3:a:oracle:glassfish_server:1.0:ur1::::::	10
Application	Oracle Javafx cpe:2.3:a:oracle:javafx:2.0.2:::::::* cpe:2.3:a:oracle:javafx:2.0:::::::* cpe:2.3:a:oracle:javafx:1.3.1:::::::* cpe:2.3:a:oracle:javafx:1.3.0:::::::* cpe:2.3:a:oracle:javafx:1.2.3:::::::* cpe:2.3:a:oracle:javafx:1.2.2:::::::* cpe:2.3:a:oracle:javafx:1.2:::::::*	7
Application	Oracle Jdk cpe:2.3:a:oracle:jdk:1.7.0:-:::::: cpe:2.3:a:oracle:jdk:1.7.0:update4:::::: cpe:2.3:a:oracle:jdk:1.7.0:update1:::::: cpe:2.3:a:oracle:jdk:1.7.0:update2:::::: cpe:2.3:a:oracle:jdk:1.7.0:update3:::::: cpe:2.3:a:oracle:jdk:1.7.0:update5:::::: cpe:2.3:a:oracle:jdk:1.7.0:update7:::::: cpe:2.3:a:oracle:jdk:1.7.0:update6:::::: cpe:2.3:a:oracle:jdk:1.7.0:update11:::::: cpe:2.3:a:oracle:jdk:1.7.0:update9:::::: cpe:2.3:a:oracle:jdk:1.7.0:update10:::::: cpe:2.3:a:oracle:jdk:1.7.0:update13:::::: cpe:2.3:a:oracle:jdk:1.7.0:update15:::::: cpe:2.3:a:oracle:jdk:1.7.0:update17:::::: cpe:2.3:a:oracle:jdk:1.7.0:update21:::::: cpe:2.3:a:oracle:jdk:1.7.0:update25:::::: cpe:2.3:a:oracle:jdk:1.7.0:update10:~~~windows~~:::::* cpe:2.3:a:oracle:jdk:1.7.0:update11:~~~windows~~:::::* cpe:2.3:a:oracle:jdk:1.7.0:update121:::::: cpe:2.3:a:oracle:jdk:1.7.0:update10_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update11_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update17_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update17_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update21_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update25_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update25_b34:::::: cpe:2.3:a:oracle:jdk:1.7.0:update25_b35:::::: cpe:2.3:a:oracle:jdk:1.7.0:update40:::::: cpe:2.3:a:oracle:jdk:1.7.0:update45:::::: cpe:2.3:a:oracle:jdk:1.7.0:update45_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update45_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update45_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update45_b34:::::: cpe:2.3:a:oracle:jdk:1.7.0:update51:::::: cpe:2.3:a:oracle:jdk:1.7.0:update7_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update9_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update9_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update10::::windows::* cpe:2.3:a:oracle:jdk:1.7.0:update11::::windows::* cpe:2.3:a:oracle:jdk:1.7.0:update241:::::: cpe:2.3:a:oracle:jdk:1.7.0:update251:::::: cpe:2.3:a:oracle:jdk:1.7.0:update60:::::: cpe:2.3:a:oracle:jdk:1.7.0:update67:::::: cpe:2.3:a:oracle:jdk:1.7.0:update72:::::: cpe:2.3:a:oracle:jdk:1.7.0:update71:::::: cpe:2.3:a:oracle:jdk:1.7.0:update75:::::: cpe:2.3:a:oracle:jdk:1.7.0:update101:::::: cpe:2.3:a:oracle:jdk:1.7.0:update111:::::: cpe:2.3:a:oracle:jdk:1.7.0:update141:::::: cpe:2.3:a:oracle:jdk:1.7.0:update151:::::: cpe:2.3:a:oracle:jdk:1.7.0:update131:::::: cpe:2.3:a:oracle:jdk:1.7.0:update201:::::: cpe:2.3:a:oracle:jdk:1.7.0:update191:::::: cpe:2.3:a:oracle:jdk:1.7.0:update161:::::: cpe:2.3:a:oracle:jdk:1.7.0:update171:::::: cpe:2.3:a:oracle:jdk:1.7.0:update181:::::: cpe:2.3:a:oracle:jdk:1.7.0:update211:::::: cpe:2.3:a:oracle:jdk:1.7.0:update221:::::: cpe:2.3:a:oracle:jdk:1.7.0:update231:::::: cpe:2.3:a:oracle:jdk:1.7.0:update271:::::: cpe:2.3:a:oracle:jdk:1.7.0:update321:::::: cpe:2.3:a:oracle:jdk:1.7.0:update331:::::: cpe:2.3:a:oracle:jdk:1.7.0:update301:::::: cpe:2.3:a:oracle:jdk:1.7.0:update291:::::: cpe:2.3:a:oracle:jdk:1.7.0:update261:::::: cpe:2.3:a:oracle:jdk:1.7.0:update99:::::: cpe:2.3:a:oracle:jdk:1.7.0:update97:::::: cpe:2.3:a:oracle:jdk:1.7.0:update95:::::: cpe:2.3:a:oracle:jdk:1.7.0:update91:::::: cpe:2.3:a:oracle:jdk:1.7.0:update85:::::: cpe:2.3:a:oracle:jdk:1.7.0:update80:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76:::::: cpe:2.3:a:oracle:jdk:1.7.0:update343:::::: cpe:2.3:a:oracle:jdk:1.7.0:update191_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update191_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update201_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update211_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update211_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update221_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update221_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update221_b34:::::: cpe:2.3:a:oracle:jdk:1.7.0:update221_b35:::::: cpe:2.3:a:oracle:jdk:1.7.0:update231_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update241_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update271_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update281:::::: cpe:2.3:a:oracle:jdk:1.7.0:update281_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update281_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update291_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update291_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update301_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update311_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update321_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update341:::::: cpe:2.3:a:oracle:jdk:1.7.0:update341_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update343_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update51_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update51_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update51_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update55:::::: cpe:2.3:a:oracle:jdk:1.7.0:update55_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update55_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update55_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update55_b35:::::: cpe:2.3:a:oracle:jdk:1.7.0:update60_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update60_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update65:::::: cpe:2.3:a:oracle:jdk:1.7.0:update65_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update67_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update67_b34:::::: cpe:2.3:a:oracle:jdk:1.7.0:update72_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update72_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update72_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76_b34:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76_b35:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76_b36:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76_b37:::::: cpe:2.3:a:oracle:jdk:1.7.0:update76_b38:::::: cpe:2.3:a:oracle:jdk:1.7.0:update79:::::: cpe:2.3:a:oracle:jdk:1.7.0:update80_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update80_b35:::::: cpe:2.3:a:oracle:jdk:1.7.0:update85_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update85_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update85_b34:::::: cpe:2.3:a:oracle:jdk:1.7.0:update91_b17:::::: cpe:2.3:a:oracle:jdk:1.7.0:update91_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update91_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update95_b13:::::: cpe:2.3:a:oracle:jdk:1.7.0:update95_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update95_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update97_b31:::::: cpe:2.3:a:oracle:jdk:1.7.0:update97_b32:::::: cpe:2.3:a:oracle:jdk:1.7.0:update97_b33:::::: cpe:2.3:a:oracle:jdk:1.7.0:update99_b31:::::: cpe:2.3:a:oracle:jdk:1.7:update_131:::::: cpe:2.3:a:oracle:jdk:1.6.0:update19:::::: cpe:2.3:a:oracle:jdk:1.6.0:update131:::::: cpe:2.3:a:oracle:jdk:1.6.0:::::::* cpe:2.3:a:oracle:jdk:1.6.0:-:::::: cpe:2.3:a:oracle:jdk:1.6.0:update201:::::: cpe:2.3:a:oracle:jdk:1.6.0:update191:::::: cpe:2.3:a:oracle:jdk:1.6.0:update181:::::: cpe:2.3:a:oracle:jdk:1.6.0:update171:::::: cpe:2.3:a:oracle:jdk:1.6.0:update161:::::: cpe:2.3:a:oracle:jdk:1.6.0:update151:::::: cpe:2.3:a:oracle:jdk:1.6.0:update141:::::: cpe:2.3:a:oracle:jdk:1.6.0:update121:::::: cpe:2.3:a:oracle:jdk:1.6.0:update115:::::: cpe:2.3:a:oracle:jdk:1.6.0:update113:::::: cpe:2.3:a:oracle:jdk:1.6.0:update111:::::: cpe:2.3:a:oracle:jdk:1.6.0:update105:::::: cpe:2.3:a:oracle:jdk:1.6.0:update101:::::: cpe:2.3:a:oracle:jdk:1.6.0:update95:::::: cpe:2.3:a:oracle:jdk:1.6.0:update91:::::: cpe:2.3:a:oracle:jdk:1.6.0:update85:::::: cpe:2.3:a:oracle:jdk:1.6.0:update81:::::: cpe:2.3:a:oracle:jdk:1.6.0:update75:::::: cpe:2.3:a:oracle:jdk:1.6.0:update71:::::: cpe:2.3:a:oracle:jdk:1.6.0:update65:::::: cpe:2.3:a:oracle:jdk:1.6.0:update32:::::: cpe:2.3:a:oracle:jdk:1.6.0:update31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update23:::::: cpe:2.3:a:oracle:jdk:1.6.0:update22:::::: cpe:2.3:a:oracle:jdk:1.6.0:update29:::::: cpe:2.3:a:oracle:jdk:1.6.0:update33:::::: cpe:2.3:a:oracle:jdk:1.6.0:update25:::::: cpe:2.3:a:oracle:jdk:1.6.0:update24:::::: cpe:2.3:a:oracle:jdk:1.6.0:update27:::::: cpe:2.3:a:oracle:jdk:1.6.0:update43:::::: cpe:2.3:a:oracle:jdk:1.6.0:update45:::::: cpe:2.3:a:oracle:jdk:1.6.0:update51:::::: cpe:2.3:a:oracle:jdk:1.6.0:update30:::::: cpe:2.3:a:oracle:jdk:1.6.0:update34:::::: cpe:2.3:a:oracle:jdk:1.6.0:update39:::::: cpe:2.3:a:oracle:jdk:1.6.0:update41:::::: cpe:2.3:a:oracle:jdk:1.6.0:update38:::::: cpe:2.3:a:oracle:jdk:1.6.0:update37:::::: cpe:2.3:a:oracle:jdk:1.6.0:update35:::::: cpe:2.3:a:oracle:jdk:1.6.0:update26:::::: cpe:2.3:a:oracle:jdk:1.6.0:update60:::::: cpe:2.3:a:oracle:jdk:1.6.0:update10:::::: cpe:2.3:a:oracle:jdk:1.6.0:update1:::::: cpe:2.3:a:oracle:jdk:1.6.0:update2:::::: cpe:2.3:a:oracle:jdk:1.6.0:update3:::::: cpe:2.3:a:oracle:jdk:1.6.0:update4:::::: cpe:2.3:a:oracle:jdk:1.6.0:update11:::::: cpe:2.3:a:oracle:jdk:1.6.0:update12:::::: cpe:2.3:a:oracle:jdk:1.6.0:update13:::::: cpe:2.3:a:oracle:jdk:1.6.0:update14:::::: cpe:2.3:a:oracle:jdk:1.6.0:update5:::::: cpe:2.3:a:oracle:jdk:1.6.0:update6:::::: cpe:2.3:a:oracle:jdk:1.6.0:update7:::::: cpe:2.3:a:oracle:jdk:1.6.0:update15:::::: cpe:2.3:a:oracle:jdk:1.6.0:update16:::::: cpe:2.3:a:oracle:jdk:1.6.0:update17:::::: cpe:2.3:a:oracle:jdk:1.6.0:update18:::::: cpe:2.3:a:oracle:jdk:1.6.0:update20:::::: cpe:2.3:a:oracle:jdk:1.6.0:update21:::::: cpe:2.3:a:oracle:jdk:1.6.0:update8:::::: cpe:2.3:a:oracle:jdk:1.6.0:update9:::::: cpe:2.3:a:oracle:jdk:1.6.0:update32_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update32_b32:::::: cpe:2.3:a:oracle:jdk:1.6.0:update33_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update33_b32:::::: cpe:2.3:a:oracle:jdk:1.6.0:update33_b33:::::: cpe:2.3:a:oracle:jdk:1.6.0:update34_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update34_b32:::::: cpe:2.3:a:oracle:jdk:1.6.0:update35_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update35_b32:::::: cpe:2.3:a:oracle:jdk:1.6.0:update37_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update37_b32:::::: cpe:2.3:a:oracle:jdk:1.6.0:update38_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update43_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update51_b31:::::: cpe:2.3:a:oracle:jdk:1.6.0:update51_b32:::::: cpe:2.3:a:oracle:jdk:1.6:update_141:::::: cpe:2.3:a:oracle:jdk:1.5.0:update_71:::::: cpe:2.3:a:oracle:jdk:1.5.0:update11:::::: cpe:2.3:a:oracle:jdk:1.5.0:-:::::: cpe:2.3:a:oracle:jdk:1.5.0:update1:::::: cpe:2.3:a:oracle:jdk:1.5.0:update10:::::: cpe:2.3:a:oracle:jdk:1.5.0:update12:::::: cpe:2.3:a:oracle:jdk:1.5.0:update13:::::: cpe:2.3:a:oracle:jdk:1.5.0:update14:::::: cpe:2.3:a:oracle:jdk:1.5.0:update15:::::: cpe:2.3:a:oracle:jdk:1.5.0:update16:::::: cpe:2.3:a:oracle:jdk:1.5.0:update17:::::: cpe:2.3:a:oracle:jdk:1.5.0:update18:::::: cpe:2.3:a:oracle:jdk:1.5.0:update19:::::: cpe:2.3:a:oracle:jdk:1.5.0:update2:::::: cpe:2.3:a:oracle:jdk:1.5.0:update3:::::: cpe:2.3:a:oracle:jdk:1.5.0:update4:::::: cpe:2.3:a:oracle:jdk:1.5.0:update5:::::: cpe:2.3:a:oracle:jdk:1.5.0:update6:::::: cpe:2.3:a:oracle:jdk:1.5.0:update7:::::: cpe:2.3:a:oracle:jdk:1.5.0:update8:::::: cpe:2.3:a:oracle:jdk:1.5.0:update9:::::: cpe:2.3:a:oracle:jdk:1.5.0:update75:::::: cpe:2.3:a:oracle:jdk:1.5.0:update65:::::: cpe:2.3:a:oracle:jdk:1.5.0:update61:::::: cpe:2.3:a:oracle:jdk:1.5.0:update55:::::: cpe:2.3:a:oracle:jdk:1.5.0:update38:::::: cpe:2.3:a:oracle:jdk:1.5.0:update36:::::: cpe:2.3:a:oracle:jdk:1.5.0:update40:::::: cpe:2.3:a:oracle:jdk:1.5.0:update41:::::: cpe:2.3:a:oracle:jdk:1.5.0:update45:::::: cpe:2.3:a:oracle:jdk:1.5.0:update51:::::: cpe:2.3:a:oracle:jdk:1.5.0:update39:::::: cpe:2.3:a:oracle:jdk:1.5.0:update20:::::: cpe:2.3:a:oracle:jdk:1.5.0:update21:::::: cpe:2.3:a:oracle:jdk:1.5.0:update22:::::: cpe:2.3:a:oracle:jdk:1.5.0:update23:::::: cpe:2.3:a:oracle:jdk:1.5.0:update24:::::: cpe:2.3:a:oracle:jdk:1.5.0:update25:::::: cpe:2.3:a:oracle:jdk:1.5.0:update26:::::: cpe:2.3:a:oracle:jdk:1.5.0:update27:::::: cpe:2.3:a:oracle:jdk:1.5.0:update28:::::: cpe:2.3:a:oracle:jdk:1.5.0:update29:::::: cpe:2.3:a:oracle:jdk:1.5.0:update30:::::: cpe:2.3:a:oracle:jdk:1.5.0:update31:::::: cpe:2.3:a:oracle:jdk:1.5.0:update32:::::: cpe:2.3:a:oracle:jdk:1.5.0:update33:::::: cpe:2.3:a:oracle:jdk:1.5.0:update34:::::: cpe:2.3:a:oracle:jdk:1.5.0:update35:::::: cpe:2.3:a:oracle:jdk:1.4.2_40:::::::* cpe:2.3:a:oracle:jdk:1.4.2_38:::::::* cpe:2.3:a:oracle:jdk::::::::	269
Application	Oracle Jre cpe:2.3:a:oracle:jre:1.7.0:update1:::::: cpe:2.3:a:oracle:jre:1.7.0:update2:::::: cpe:2.3:a:oracle:jre:1.7.0:-:::::: cpe:2.3:a:oracle:jre:1.7.0:update4:::::: cpe:2.3:a:oracle:jre:1.7.0:update3:::::: cpe:2.3:a:oracle:jre:1.7.0:update5:::::: cpe:2.3:a:oracle:jre:1.7.0:update7:::::: cpe:2.3:a:oracle:jre:1.7.0:update6:::::: cpe:2.3:a:oracle:jre:1.7.0:update11:::::: cpe:2.3:a:oracle:jre:1.7.0:update10:::::: cpe:2.3:a:oracle:jre:1.7.0:update9:::::: cpe:2.3:a:oracle:jre:1.7.0:update13:::::: cpe:2.3:a:oracle:jre:1.7.0:update15:::::: cpe:2.3:a:oracle:jre:1.7.0:update17:::::: cpe:2.3:a:oracle:jre:1.7.0:update21:::::: cpe:2.3:a:oracle:jre:1.7.0:update25:::::: cpe:2.3:a:oracle:jre:1.7.0:update11:~~~windows~~:::::* cpe:2.3:a:oracle:jre:1.7.0:update10:~~~windows~~:::::* cpe:2.3:a:oracle:jre:1.7.0:update_67:::::: cpe:2.3:a:oracle:jre:1.7.0:update_75:::::: cpe:2.3:a:oracle:jre:1.7.0:update_80:::::: cpe:2.3:a:oracle:jre:1.7.0:update_85:::::: cpe:2.3:a:oracle:jre:1.7.0:update121:::::: cpe:2.3:a:oracle:jre:1.7.0:update10_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update11_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update17_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update17_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update21_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update25_b33:::::: cpe:2.3:a:oracle:jre:1.7.0:update25_b34:::::: cpe:2.3:a:oracle:jre:1.7.0:update25_b35:::::: cpe:2.3:a:oracle:jre:1.7.0:update40:::::: cpe:2.3:a:oracle:jre:1.7.0:update45:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b33:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b34:::::: cpe:2.3:a:oracle:jre:1.7.0:update51:::::: cpe:2.3:a:oracle:jre:1.7.0:update7_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update9_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update9_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update_131:::::: cpe:2.3:a:oracle:jre:1.7.0:update10::::windows::* cpe:2.3:a:oracle:jre:1.7.0:update11::::windows::* cpe:2.3:a:oracle:jre:1.7.0:update_241:::::: cpe:2.3:a:oracle:jre:1.7.0:update301:::::: cpe:2.3:a:oracle:jre:1.7.0:update321:::::: cpe:2.3:a:oracle:jre:1.7.0:update331:::::: cpe:2.3:a:oracle:jre:1.7.0:update251:::::: cpe:2.3:a:oracle:jre:1.7.0:update231:::::: cpe:2.3:a:oracle:jre:1.7.0:update221:::::: cpe:2.3:a:oracle:jre:1.7.0:update211:::::: cpe:2.3:a:oracle:jre:1.7.0:update201:::::: cpe:2.3:a:oracle:jre:1.7.0:update191:::::: cpe:2.3:a:oracle:jre:1.7.0:update181:::::: cpe:2.3:a:oracle:jre:1.7.0:update171:::::: cpe:2.3:a:oracle:jre:1.7.0:update161:::::: cpe:2.3:a:oracle:jre:1.7.0:update151:::::: cpe:2.3:a:oracle:jre:1.7.0:update141:::::: cpe:2.3:a:oracle:jre:1.7.0:update111:::::: cpe:2.3:a:oracle:jre:1.7.0:update101:::::: cpe:2.3:a:oracle:jre:1.7.0:update99:::::: cpe:2.3:a:oracle:jre:1.7.0:update97:::::: cpe:2.3:a:oracle:jre:1.7.0:update95:::::: cpe:2.3:a:oracle:jre:1.7.0:update91:::::: cpe:2.3:a:oracle:jre:1.7.0:update76:::::: cpe:2.3:a:oracle:jre:1.7.0:update72:::::: cpe:2.3:a:oracle:jre:1.7.0:update71:::::: cpe:2.3:a:oracle:jre:1.7.0:update60:::::: cpe:2.3:a:oracle:jre:1.7.0:update343:::::: cpe:2.3:a:oracle:jre:1.7:update_131:::::: cpe:2.3:a:oracle:jre:1.6.0:update19:::::: cpe:2.3:a:oracle:jre:1.6.0:update_10:::::: cpe:2.3:a:oracle:jre:1.6.0:update_81:::::: cpe:2.3:a:oracle:jre:1.6.0:update_95:::::: cpe:2.3:a:oracle:jre:1.6.0:update_101:::::: cpe:2.3:a:oracle:jre:1.6.0:update131:::::: cpe:2.3:a:oracle:jre:1.6.0:update201:::::: cpe:2.3:a:oracle:jre:1.6.0:update191:::::: cpe:2.3:a:oracle:jre:1.6.0:update181:::::: cpe:2.3:a:oracle:jre:1.6.0:update171:::::: cpe:2.3:a:oracle:jre:1.6.0:update161:::::: cpe:2.3:a:oracle:jre:1.6.0:update151:::::: cpe:2.3:a:oracle:jre:1.6.0:update141:::::: cpe:2.3:a:oracle:jre:1.6.0:update121:::::: cpe:2.3:a:oracle:jre:1.6.0:update115:::::: cpe:2.3:a:oracle:jre:1.6.0:update113:::::: cpe:2.3:a:oracle:jre:1.6.0:update111:::::: cpe:2.3:a:oracle:jre:1.6.0:update105:::::: cpe:2.3:a:oracle:jre:1.6.0:update91:::::: cpe:2.3:a:oracle:jre:1.6.0:update85:::::: cpe:2.3:a:oracle:jre:1.6.0:update75:::::: cpe:2.3:a:oracle:jre:1.6.0:update71:::::: cpe:2.3:a:oracle:jre:1.6.0:update65:::::: cpe:2.3:a:oracle:jre:1.6.0:update45:::::: cpe:2.3:a:oracle:jre:1.6.0:update30:::::: cpe:2.3:a:oracle:jre:1.6.0:update33:::::: cpe:2.3:a:oracle:jre:1.6.0:update32:::::: cpe:2.3:a:oracle:jre:1.6.0:update24:::::: cpe:2.3:a:oracle:jre:1.6.0:update35:::::: cpe:2.3:a:oracle:jre:1.6.0:update25:::::: cpe:2.3:a:oracle:jre:1.6.0:update39:::::: cpe:2.3:a:oracle:jre:1.6.0:update51:::::: cpe:2.3:a:oracle:jre:1.6.0:update31:::::: cpe:2.3:a:oracle:jre:1.6.0:update22:::::: cpe:2.3:a:oracle:jre:1.6.0:update38:::::: cpe:2.3:a:oracle:jre:1.6.0:update37:::::: cpe:2.3:a:oracle:jre:1.6.0:update29:::::: cpe:2.3:a:oracle:jre:1.6.0:update27:::::: cpe:2.3:a:oracle:jre:1.6.0:update23:::::: cpe:2.3:a:oracle:jre:1.6.0:update41:::::: cpe:2.3:a:oracle:jre:1.6.0:update43:::::: cpe:2.3:a:oracle:jre:1.6.0:update34:::::: cpe:2.3:a:oracle:jre:1.6.0:update26:::::: cpe:2.3:a:oracle:jre:1.6.0:update60:::::: cpe:2.3:a:oracle:jre:1.6.0:-:::::: cpe:2.3:a:oracle:jre:1.6.0:update1:::::: cpe:2.3:a:oracle:jre:1.6.0:update10:::::: cpe:2.3:a:oracle:jre:1.6.0:update11:::::: cpe:2.3:a:oracle:jre:1.6.0:update12:::::: cpe:2.3:a:oracle:jre:1.6.0:update13:::::: cpe:2.3:a:oracle:jre:1.6.0:update14:::::: cpe:2.3:a:oracle:jre:1.6.0:update15:::::: cpe:2.3:a:oracle:jre:1.6.0:update16:::::: cpe:2.3:a:oracle:jre:1.6.0:update17:::::: cpe:2.3:a:oracle:jre:1.6.0:update18:::::: cpe:2.3:a:oracle:jre:1.6.0:update2:::::: cpe:2.3:a:oracle:jre:1.6.0:update20:::::: cpe:2.3:a:oracle:jre:1.6.0:update21:::::: cpe:2.3:a:oracle:jre:1.6.0:update3:::::: cpe:2.3:a:oracle:jre:1.6.0:update5:::::: cpe:2.3:a:oracle:jre:1.6.0:update4:::::: cpe:2.3:a:oracle:jre:1.6.0:update6:::::: cpe:2.3:a:oracle:jre:1.6.0:update7:::::: cpe:2.3:a:oracle:jre:1.6.0:update8:::::: cpe:2.3:a:oracle:jre:1.6.0:update9:::::: cpe:2.3:a:oracle:jre:1.6:update_141:::::: cpe:2.3:a:oracle:jre:1.5.0:update_71:::::: cpe:2.3:a:oracle:jre:1.5.0:update81:::::: cpe:2.3:a:oracle:jre:1.5.0:update75:::::: cpe:2.3:a:oracle:jre:1.5.0:update65:::::: cpe:2.3:a:oracle:jre:1.5.0:update61:::::: cpe:2.3:a:oracle:jre:1.5.0:update55:::::: cpe:2.3:a:oracle:jre:1.5.0:update38:::::: cpe:2.3:a:oracle:jre:1.5.0:update36:::::: cpe:2.3:a:oracle:jre:1.5.0:update40:::::: cpe:2.3:a:oracle:jre:1.5.0:update41:::::: cpe:2.3:a:oracle:jre:1.5.0:update45:::::: cpe:2.3:a:oracle:jre:1.5.0:update51:::::: cpe:2.3:a:oracle:jre:1.5.0:update39:::::: cpe:2.3:a:oracle:jre:1.5.0:update2:::::: cpe:2.3:a:oracle:jre:1.5.0:update3:::::: cpe:2.3:a:oracle:jre:1.5.0:update4:::::: cpe:2.3:a:oracle:jre:1.5.0:update5:::::: cpe:2.3:a:oracle:jre:1.5.0:update6:::::: cpe:2.3:a:oracle:jre:1.5.0:update7:::::: cpe:2.3:a:oracle:jre:1.5.0:update8:::::: cpe:2.3:a:oracle:jre:1.5.0:update9:::::: cpe:2.3:a:oracle:jre:1.5.0:update10:::::: cpe:2.3:a:oracle:jre:1.5.0:update11:::::: cpe:2.3:a:oracle:jre:1.5.0:update12:::::: cpe:2.3:a:oracle:jre:1.5.0:update13:::::: cpe:2.3:a:oracle:jre:1.5.0:update14:::::: cpe:2.3:a:oracle:jre:1.5.0:update15:::::: cpe:2.3:a:oracle:jre:1.5.0:update16:::::: cpe:2.3:a:oracle:jre:1.5.0:update17:::::: cpe:2.3:a:oracle:jre:1.5.0:update18:::::: cpe:2.3:a:oracle:jre:1.5.0:update19:::::: cpe:2.3:a:oracle:jre:1.5.0:update20:::::: cpe:2.3:a:oracle:jre:1.5.0:update21:::::: cpe:2.3:a:oracle:jre:1.5.0:update22:::::: cpe:2.3:a:oracle:jre:1.5.0:update23:::::: cpe:2.3:a:oracle:jre:1.5.0:update24:::::: cpe:2.3:a:oracle:jre:1.5.0:update25:::::: cpe:2.3:a:oracle:jre:1.5.0:update26:::::: cpe:2.3:a:oracle:jre:1.5.0:update27:::::: cpe:2.3:a:oracle:jre:1.5.0:update28:::::: cpe:2.3:a:oracle:jre:1.5.0:update29:::::: cpe:2.3:a:oracle:jre:1.5.0:update30:::::: cpe:2.3:a:oracle:jre:1.5.0:update31:::::: cpe:2.3:a:oracle:jre:1.5.0:update32:::::: cpe:2.3:a:oracle:jre:1.5.0:update33:::::: cpe:2.3:a:oracle:jre:1.5.0:update34:::::: cpe:2.3:a:oracle:jre:1.5.0:update35:::::: cpe:2.3:a:oracle:jre:1.5.0:-:::::: cpe:2.3:a:oracle:jre:1.5.0:update1:::::: cpe:2.3:a:oracle:jre:1.4.2_40:::::::* cpe:2.3:a:oracle:jre:1.4.2_38:::::::* cpe:2.3:a:oracle:jre::::::::	189
Application	Oracle Jrockit cpe:2.3:a:oracle:jrockit:r28.1.4:::::::* cpe:2.3:a:oracle:jrockit:r28.1.3:::::::* cpe:2.3:a:oracle:jrockit:r28.1.1:::::::* cpe:2.3:a:oracle:jrockit:r28.1.0:::::::* cpe:2.3:a:oracle:jrockit:r28.0.2:::::::* cpe:2.3:a:oracle:jrockit:r28.0.1:::::::* cpe:2.3:a:oracle:jrockit:r28.0.0:::::::* cpe:2.3:a:oracle:jrockit:r27.8.4:::::::* cpe:2.3:a:oracle:jrockit:r27.8.3:::::::* cpe:2.3:a:oracle:jrockit:r27.8.2:::::::* cpe:2.3:a:oracle:jrockit:r27.8.1:::::::* cpe:2.3:a:oracle:jrockit:r27.7.7:::::::* cpe:2.3:a:oracle:jrockit:r27.7.6:::::::* cpe:2.3:a:oracle:jrockit:r27.7.5:::::::* cpe:2.3:a:oracle:jrockit:r27.7.4:::::::* cpe:2.3:a:oracle:jrockit:r27.7.3:::::::* cpe:2.3:a:oracle:jrockit:r27.7.2:::::::* cpe:2.3:a:oracle:jrockit:r27.7.1:::::::* cpe:2.3:a:oracle:jrockit:r27.7.0:::::::* cpe:2.3:a:oracle:jrockit:r27.6.2:::::::* cpe:2.3:a:oracle:jrockit:r27.6.1:::::::* cpe:2.3:a:oracle:jrockit:r27.6.0:::::::* cpe:2.3:a:oracle:jrockit:r27.6:::::::* cpe:2.3:a:oracle:jrockit:r27.5:::::::* cpe:2.3:a:oracle:jrockit:r27.4:::::::* cpe:2.3:a:oracle:jrockit:r27.3.1:::::::* cpe:2.3:a:oracle:jrockit:r27.3:::::::* cpe:2.3:a:oracle:jrockit:r27.2:::::::* cpe:2.3:a:oracle:jrockit:r27.1:::::::* cpe:2.3:a:oracle:jrockit:r26.4:::::::* cpe:2.3:a:oracle:jrockit:r26.3:::::::* cpe:2.3:a:oracle:jrockit:r26.2:::::::* cpe:2.3:a:oracle:jrockit:r26.1:::::::* cpe:2.3:a:oracle:jrockit:r26.0:::::::*	34
Application	Sun Jdk cpe:2.3:a:sun:jdk:1.7.0:::::::* cpe:2.3:a:sun:jdk:1.6.0:update_4:::::: cpe:2.3:a:sun:jdk:1.6.0:update_18:::::: cpe:2.3:a:sun:jdk:1.6.0:update1:::::: cpe:2.3:a:sun:jdk:1.6.0:update1_b06:::::: cpe:2.3:a:sun:jdk:1.6.0:update2:::::: cpe:2.3:a:sun:jdk:1.6.0:update_14:::::: cpe:2.3:a:sun:jdk:1.6.0:update_10:::::: cpe:2.3:a:sun:jdk:1.6.0:update_7:::::: cpe:2.3:a:sun:jdk:1.6.0:update_17:::::: cpe:2.3:a:sun:jdk:1.6.0:update_13:::::: cpe:2.3:a:sun:jdk:1.6.0:update_6:::::: cpe:2.3:a:sun:jdk:1.6.0:update_20:::::: cpe:2.3:a:sun:jdk:1.6.0:update_5:::::: cpe:2.3:a:sun:jdk:1.6.0:update_16:::::: cpe:2.3:a:sun:jdk:1.6.0:update_3:::::: cpe:2.3:a:sun:jdk:1.6.0:update_19:::::: cpe:2.3:a:sun:jdk:1.6.0:update_15:::::: cpe:2.3:a:sun:jdk:1.6.0:update_21:::::: cpe:2.3:a:sun:jdk:1.6.0:update_12:::::: cpe:2.3:a:sun:jdk:1.6.0:update_11:::::: cpe:2.3:a:sun:jdk:1.6.0:update9:::::: cpe:2.3:a:sun:jdk:1.6.0:update10:::::: cpe:2.3:a:sun:jdk:1.6.0:update14:::::: cpe:2.3:a:sun:jdk:1.6.0:update6:::::: cpe:2.3:a:sun:jdk:1.6.0:update11:::::: cpe:2.3:a:sun:jdk:1.6.0:update3:::::: cpe:2.3:a:sun:jdk:1.6.0:update5:::::: cpe:2.3:a:sun:jdk:1.6.0:update13:::::: cpe:2.3:a:sun:jdk:1.6.0:update12:::::: cpe:2.3:a:sun:jdk:1.6.0:update4:::::: cpe:2.3:a:sun:jdk:1.6.0:update15:::::: cpe:2.3:a:sun:jdk:1.6.0:update7:::::: cpe:2.3:a:sun:jdk:1.6.0:update8:::::: cpe:2.3:a:sun:jdk:1.6.0:update16:::::: cpe:2.3:a:sun:jdk:1.6.0:update_8:::::: cpe:2.3:a:sun:jdk:1.6.0:update_1:::::: cpe:2.3:a:sun:jdk:1.6.0:update_9:::::: cpe:2.3:a:sun:jdk:1.6.0:update18:::::: cpe:2.3:a:sun:jdk:1.6.0:update17:::::: cpe:2.3:a:sun:jdk:1.6.0:update19:::::: cpe:2.3:a:sun:jdk:1.6.0:update_22:::::: cpe:2.3:a:sun:jdk:1.6.0:update_23:::::: cpe:2.3:a:sun:jdk:1.6.0:update_25:::::: cpe:2.3:a:sun:jdk:1.6.0:update_24:::::: cpe:2.3:a:sun:jdk:1.6.0:update_26:::::: cpe:2.3:a:sun:jdk:1.6.0:update_27:::::: cpe:2.3:a:sun:jdk:1.6.0:update_20:x64:::::* cpe:2.3:a:sun:jdk:1.6.0:-:::::: cpe:2.3:a:sun:jdk:1.6:::::::* cpe:2.3:a:sun:jdk:1.5.0_03::solaris::::: cpe:2.3:a:sun:jdk:1.5.0_03::windows::::: cpe:2.3:a:sun:jdk:1.5.0_03::linux::::: cpe:2.3:a:sun:jdk:1.5.0:update25:::::: cpe:2.3:a:sun:jdk:1.5.0:update10:::::: cpe:2.3:a:sun:jdk:1.5.0:update5:::::: cpe:2.3:a:sun:jdk:1.5.0:update7:::::: cpe:2.3:a:sun:jdk:1.5.0:update6:::::: cpe:2.3:a:sun:jdk:1.5.0:update3:::::: cpe:2.3:a:sun:jdk:1.5.0:update16:::::: cpe:2.3:a:sun:jdk:1.5.0:update4:::::: cpe:2.3:a:sun:jdk:1.5.0:update17:::::: cpe:2.3:a:sun:jdk:1.5.0:update9:::::: cpe:2.3:a:sun:jdk:1.5.0:update19:::::: cpe:2.3:a:sun:jdk:1.5.0:update15:::::: cpe:2.3:a:sun:jdk:1.5.0:update21:::::: cpe:2.3:a:sun:jdk:1.5.0:update2:::::: cpe:2.3:a:sun:jdk:1.5.0:update12:::::: cpe:2.3:a:sun:jdk:1.5.0:update23:::::: cpe:2.3:a:sun:jdk:1.5.0:update8:::::: cpe:2.3:a:sun:jdk:1.5.0:update18:::::: cpe:2.3:a:sun:jdk:1.5.0:update11:::::: cpe:2.3:a:sun:jdk:1.5.0:update24:::::: cpe:2.3:a:sun:jdk:1.5.0:update22:::::: cpe:2.3:a:sun:jdk:1.5.0:update20:::::: cpe:2.3:a:sun:jdk:1.5.0:update14:::::: cpe:2.3:a:sun:jdk:1.5.0:update13:::::: cpe:2.3:a:sun:jdk:1.5.0:update1:::::: cpe:2.3:a:sun:jdk:1.5.0:update_1:::::: cpe:2.3:a:sun:jdk:1.5.0:update_16:::::: cpe:2.3:a:sun:jdk:1.5.0:update11_b03:::::: cpe:2.3:a:sun:jdk:1.5.0:update_10:::::: cpe:2.3:a:sun:jdk:1.5.0:update_4:::::: cpe:2.3:a:sun:jdk:1.5.0:update_9:::::: cpe:2.3:a:sun:jdk:1.5.0:update_14:::::: cpe:2.3:a:sun:jdk:1.5.0:update_20:::::: cpe:2.3:a:sun:jdk:1.5.0:update_21:::::: cpe:2.3:a:sun:jdk:1.5.0:update_7:::::: cpe:2.3:a:sun:jdk:1.5.0:update_18:::::: cpe:2.3:a:sun:jdk:1.5.0:update_6:::::: cpe:2.3:a:sun:jdk:1.5.0:update7_b03:::::: cpe:2.3:a:sun:jdk:1.5.0:update_12:::::: cpe:2.3:a:sun:jdk:1.5.0:update_2:::::: cpe:2.3:a:sun:jdk:1.5.0:update_13:::::: cpe:2.3:a:sun:jdk:1.5.0:update_3:::::: cpe:2.3:a:sun:jdk:1.5.0:update_15:::::: cpe:2.3:a:sun:jdk:1.5.0:update_17:::::: cpe:2.3:a:sun:jdk:1.5.0:update_19:::::: cpe:2.3:a:sun:jdk:1.5.0:update_5:::::: cpe:2.3:a:sun:jdk:1.5.0:update_22:::::: cpe:2.3:a:sun:jdk:1.5.0:update_8:::::: cpe:2.3:a:sun:jdk:1.5.0:update_11:::::: cpe:2.3:a:sun:jdk:1.5.0:update26:::::: cpe:2.3:a:sun:jdk:1.5.0:update27:::::: cpe:2.3:a:sun:jdk:1.5.0:update35:::::: cpe:2.3:a:sun:jdk:1.5.0:update29:::::: cpe:2.3:a:sun:jdk:1.5.0:update33:::::: cpe:2.3:a:sun:jdk:1.5.0:update31:::::: cpe:2.3:a:sun:jdk:1.5.0:update28:::::: cpe:2.3:a:sun:jdk:1.5.0:-:::::: cpe:2.3:a:sun:jdk:1.4.2_9:::::::* cpe:2.3:a:sun:jdk:1.4.2_8:::::::* cpe:2.3:a:sun:jdk:1.4.2_7:::::::* cpe:2.3:a:sun:jdk:1.4.2_6:::::::* cpe:2.3:a:sun:jdk:1.4.2_5:::::::* cpe:2.3:a:sun:jdk:1.4.2_4:::::::* cpe:2.3:a:sun:jdk:1.4.2_37:::::::* cpe:2.3:a:sun:jdk:1.4.2_36:::::::* cpe:2.3:a:sun:jdk:1.4.2_35:::::::* cpe:2.3:a:sun:jdk:1.4.2_34:::::::* cpe:2.3:a:sun:jdk:1.4.2_33:::::::* cpe:2.3:a:sun:jdk:1.4.2_32:::::::* cpe:2.3:a:sun:jdk:1.4.2_31:::::::* cpe:2.3:a:sun:jdk:1.4.2_30:::::::* cpe:2.3:a:sun:jdk:1.4.2_3:::::::* cpe:2.3:a:sun:jdk:1.4.2_29:::::::* cpe:2.3:a:sun:jdk:1.4.2_28:::::::* cpe:2.3:a:sun:jdk:1.4.2_27:::::::* cpe:2.3:a:sun:jdk:1.4.2_26:::::::* cpe:2.3:a:sun:jdk:1.4.2_25:::::::* cpe:2.3:a:sun:jdk:1.4.2_24:::::::* cpe:2.3:a:sun:jdk:1.4.2_24::solaris::::: cpe:2.3:a:sun:jdk:1.4.2_23:::::::* cpe:2.3:a:sun:jdk:1.4.2_22:::::::* cpe:2.3:a:sun:jdk:1.4.2_21:::::::* cpe:2.3:a:sun:jdk:1.4.2_20:::::::* cpe:2.3:a:sun:jdk:1.4.2_2:::::::* cpe:2.3:a:sun:jdk:1.4.2_19:::::::* cpe:2.3:a:sun:jdk:1.4.2_18:::::::* cpe:2.3:a:sun:jdk:1.4.2_17:::::::* cpe:2.3:a:sun:jdk:1.4.2_16:::::::* cpe:2.3:a:sun:jdk:1.4.2_15:::::::* cpe:2.3:a:sun:jdk:1.4.2_14:::::::* cpe:2.3:a:sun:jdk:1.4.2_13:::::::* cpe:2.3:a:sun:jdk:1.4.2_12:::::::* cpe:2.3:a:sun:jdk:1.4.2_11:::::::* cpe:2.3:a:sun:jdk:1.4.2_10:::::::* cpe:2.3:a:sun:jdk:1.4.2_1:::::::* cpe:2.3:a:sun:jdk:1.4.2_08::windows::::: cpe:2.3:a:sun:jdk:1.4.2_08::solaris::::: cpe:2.3:a:sun:jdk:1.4.2_08::linux::::: cpe:2.3:a:sun:jdk:1.4.2_05::windows::::: cpe:2.3:a:sun:jdk:1.4.2_05::linux::::: cpe:2.3:a:sun:jdk:1.4.2_05::solaris::::: cpe:2.3:a:sun:jdk:1.4.2_04::linux::::: cpe:2.3:a:sun:jdk:1.4.2_04::solaris::::: cpe:2.3:a:sun:jdk:1.4.2_04::windows::::: cpe:2.3:a:sun:jdk:1.4.2_03::windows::::: cpe:2.3:a:sun:jdk:1.4.2_03::linux::::: cpe:2.3:a:sun:jdk:1.4.2_03::solaris::::: cpe:2.3:a:sun:jdk:1.4.2_02::linux::::: cpe:2.3:a:sun:jdk:1.4.2_01::linux::::: cpe:2.3:a:sun:jdk:1.4.2::solaris::::: cpe:2.3:a:sun:jdk:1.4.2::windows::::: cpe:2.3:a:sun:jdk:1.4.2::linux::::: cpe:2.3:a:sun:jdk:1.4.2:-:::::: cpe:2.3:a:sun:jdk:1.4.1_07:::::::* cpe:2.3:a:sun:jdk:1.4.1_06:::::::* cpe:2.3:a:sun:jdk:1.4.1_05:::::::* cpe:2.3:a:sun:jdk:1.4.1_04:::::::* cpe:2.3:a:sun:jdk:1.4.1_03:::::::* cpe:2.3:a:sun:jdk:1.4.1_03::solaris::::: cpe:2.3:a:sun:jdk:1.4.1_03::windows::::: cpe:2.3:a:sun:jdk:1.4.1_03::linux::::: cpe:2.3:a:sun:jdk:1.4.1_02:::::::* cpe:2.3:a:sun:jdk:1.4.1_02::windows::::: cpe:2.3:a:sun:jdk:1.4.1_02::linux::::: cpe:2.3:a:sun:jdk:1.4.1_02::solaris::::: cpe:2.3:a:sun:jdk:1.4.1_01:::::::* cpe:2.3:a:sun:jdk:1.4.1_01::linux::::: cpe:2.3:a:sun:jdk:1.4.1_01::solaris::::: cpe:2.3:a:sun:jdk:1.4.1_01::windows::::: cpe:2.3:a:sun:jdk:1.4.1:::::::* cpe:2.3:a:sun:jdk:1.4.1::windows::::: cpe:2.3:a:sun:jdk:1.4.1::solaris::::: cpe:2.3:a:sun:jdk:1.4.1::linux::::: cpe:2.3:a:sun:jdk:1.4.0_4::solaris::::: cpe:2.3:a:sun:jdk:1.4.0_4::windows::::: cpe:2.3:a:sun:jdk:1.4.0_4::linux::::: cpe:2.3:a:sun:jdk:1.4.0_04:::::::* cpe:2.3:a:sun:jdk:1.4.0_03:::::::* cpe:2.3:a:sun:jdk:1.4.0_03::linux::::: cpe:2.3:a:sun:jdk:1.4.0_03::solaris::::: cpe:2.3:a:sun:jdk:1.4.0_03::windows::::: cpe:2.3:a:sun:jdk:1.4.0_02:::::::* cpe:2.3:a:sun:jdk:1.4.0_02::linux::::: cpe:2.3:a:sun:jdk:1.4.0_02::solaris::::: cpe:2.3:a:sun:jdk:1.4.0_02::windows::::: cpe:2.3:a:sun:jdk:1.4.0_01:::::::* cpe:2.3:a:sun:jdk:1.4.0_01::windows::::: cpe:2.3:a:sun:jdk:1.4.0:-:::::: cpe:2.3:a:sun:jdk:1.4::linux::::: cpe:2.3:a:sun:jdk:1.4::windows::::: cpe:2.3:a:sun:jdk:1.4::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_28:::::::* cpe:2.3:a:sun:jdk:1.3.1_27:::::::* cpe:2.3:a:sun:jdk:1.3.1_26:::::::* cpe:2.3:a:sun:jdk:1.3.1_25:::::::* cpe:2.3:a:sun:jdk:1.3.1_24:::::::* cpe:2.3:a:sun:jdk:1.3.1_23:::::::* cpe:2.3:a:sun:jdk:1.3.1_22:::::::* cpe:2.3:a:sun:jdk:1.3.1_21:::::::* cpe:2.3:a:sun:jdk:1.3.1_20:::::::* cpe:2.3:a:sun:jdk:1.3.1_19:::::::* cpe:2.3:a:sun:jdk:1.3.1_18:::::::* cpe:2.3:a:sun:jdk:1.3.1_17:::::::* cpe:2.3:a:sun:jdk:1.3.1_16:::::::* cpe:2.3:a:sun:jdk:1.3.1_15:::::::* cpe:2.3:a:sun:jdk:1.3.1_15::linux::::: cpe:2.3:a:sun:jdk:1.3.1_15::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_15::windows::::: cpe:2.3:a:sun:jdk:1.3.1_14:::::::* cpe:2.3:a:sun:jdk:1.3.1_14::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_14::windows::::: cpe:2.3:a:sun:jdk:1.3.1_14::linux::::: cpe:2.3:a:sun:jdk:1.3.1_13:::::::* cpe:2.3:a:sun:jdk:1.3.1_13::windows::::: cpe:2.3:a:sun:jdk:1.3.1_13::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_13::linux::::: cpe:2.3:a:sun:jdk:1.3.1_12:::::::* cpe:2.3:a:sun:jdk:1.3.1_12::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_12::windows::::: cpe:2.3:a:sun:jdk:1.3.1_12::linux::::: cpe:2.3:a:sun:jdk:1.3.1_11:::::::* cpe:2.3:a:sun:jdk:1.3.1_11::linux::::: cpe:2.3:a:sun:jdk:1.3.1_11::windows::::: cpe:2.3:a:sun:jdk:1.3.1_11::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_10:::::::* cpe:2.3:a:sun:jdk:1.3.1_10::linux::::: cpe:2.3:a:sun:jdk:1.3.1_10::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_10::windows::::: cpe:2.3:a:sun:jdk:1.3.1_09:::::::* cpe:2.3:a:sun:jdk:1.3.1_09::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_09::linux::::: cpe:2.3:a:sun:jdk:1.3.1_09::windows::::: cpe:2.3:a:sun:jdk:1.3.1_08:::::::* cpe:2.3:a:sun:jdk:1.3.1_08::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_08::windows::::: cpe:2.3:a:sun:jdk:1.3.1_08::linux::::: cpe:2.3:a:sun:jdk:1.3.1_07:::::::* cpe:2.3:a:sun:jdk:1.3.1_07::windows::::: cpe:2.3:a:sun:jdk:1.3.1_07::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_07::linux::::: cpe:2.3:a:sun:jdk:1.3.1_06:::::::* cpe:2.3:a:sun:jdk:1.3.1_06::windows::::: cpe:2.3:a:sun:jdk:1.3.1_06::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_06::linux::::: cpe:2.3:a:sun:jdk:1.3.1_05:::::::* cpe:2.3:a:sun:jdk:1.3.1_05::linux::::: cpe:2.3:a:sun:jdk:1.3.1_05::windows::::: cpe:2.3:a:sun:jdk:1.3.1_05::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_04:::::::* cpe:2.3:a:sun:jdk:1.3.1_04::windows::::: cpe:2.3:a:sun:jdk:1.3.1_03:::::::* cpe:2.3:a:sun:jdk:1.3.1_03::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_03::windows::::: cpe:2.3:a:sun:jdk:1.3.1_03::linux::::: cpe:2.3:a:sun:jdk:1.3.1_02:::::::* cpe:2.3:a:sun:jdk:1.3.1_02::windows::::: cpe:2.3:a:sun:jdk:1.3.1_02::linux::::: cpe:2.3:a:sun:jdk:1.3.1_02::solaris::::: cpe:2.3:a:sun:jdk:1.3.1_01a:::::::* cpe:2.3:a:sun:jdk:1.3.1_01a::windows::::: cpe:2.3:a:sun:jdk:1.3.1_01:::::::* cpe:2.3:a:sun:jdk:1.3.1_01::linux::::: cpe:2.3:a:sun:jdk:1.3.1_01::solaris::::: cpe:2.3:a:sun:jdk:1.3.1:update19:::::: cpe:2.3:a:sun:jdk:1.3.1:update20:::::: cpe:2.3:a:sun:jdk:1.3.1:-:::::: cpe:2.3:a:sun:jdk:1.3.0_05:::::::* cpe:2.3:a:sun:jdk:1.3.0_05::linux::::: cpe:2.3:a:sun:jdk:1.3.0_05::windows::::: cpe:2.3:a:sun:jdk:1.3.0_05::solaris::::: cpe:2.3:a:sun:jdk:1.3.0_04:::::::* cpe:2.3:a:sun:jdk:1.3.0_03:::::::* cpe:2.3:a:sun:jdk:1.3.0_02:::::::* cpe:2.3:a:sun:jdk:1.3.0_02::windows::::: cpe:2.3:a:sun:jdk:1.3.0_02::solaris::::: cpe:2.3:a:sun:jdk:1.3.0_02::linux::::: cpe:2.3:a:sun:jdk:1.3.0_01:::::::* cpe:2.3:a:sun:jdk:1.3.0:::::::* cpe:2.3:a:sun:jdk:1.3_05::solaris::::: cpe:2.3:a:sun:jdk:1.3_02::solaris::::: cpe:2.3:a:sun:jdk:1.3::solaris::::: cpe:2.3:a:sun:jdk:1.2.2_12::windows::::: cpe:2.3:a:sun:jdk:1.2.2_11::linux::::: cpe:2.3:a:sun:jdk:1.2.2_11::windows::::: cpe:2.3:a:sun:jdk:1.2.2_11::solaris::::: cpe:2.3:a:sun:jdk:1.2.2_10::solaris::::: cpe:2.3:a:sun:jdk:1.2.2_10::windows::::: cpe:2.3:a:sun:jdk:1.2.2_10::linux::::: cpe:2.3:a:sun:jdk:1.2.2_07a::solaris::::: cpe:2.3:a:sun:jdk:1.2.2_07::windows::::: cpe:2.3:a:sun:jdk:1.2.2_07::linux::::: cpe:2.3:a:sun:jdk:1.2.2_07::solaris::::: cpe:2.3:a:sun:jdk:1.2.2:update4:::::: cpe:2.3:a:sun:jdk:1.2.2:update5:::::: cpe:2.3:a:sun:jdk:1.2.2::solaris::::: cpe:2.3:a:sun:jdk:1.2.1:update3:::::: cpe:2.3:a:sun:jdk:1.2.1:-:::::: cpe:2.3:a:sun:jdk:1.2.0:::::::* cpe:2.3:a:sun:jdk:1.1.8:update13:::::: cpe:2.3:a:sun:jdk:1.1.8:update14:::::: cpe:2.3:a:sun:jdk:1.1.8:update2:::::: cpe:2.3:a:sun:jdk:1.1.8:update8:::::: cpe:2.3:a:sun:jdk:1.1.8:update10:::::: cpe:2.3:a:sun:jdk:1.1.8:update7:::::: cpe:2.3:a:sun:jdk:1.1.7b:update5:::::: cpe:2.3:a:sun:jdk:1.1.7b:-:::::: cpe:2.3:a:sun:jdk:1.1.6:update7:::::: cpe:2.3:a:sun:jdk:1.1.6:-:::::: cpe:2.3:a:sun:jdk:1.1.0:::::::*	322
Application	Sun Jre cpe:2.3:a:sun:jre:1.7.0:::::::* cpe:2.3:a:sun:jre:1.6.0:update_4:::::: cpe:2.3:a:sun:jre:1.6.0:update_16:::::: cpe:2.3:a:sun:jre:1.6.0:update_14:::::: cpe:2.3:a:sun:jre:1.6.0:update_10:::::: cpe:2.3:a:sun:jre:1.6.0:update_20:::::: cpe:2.3:a:sun:jre:1.6.0:update_18:::::: cpe:2.3:a:sun:jre:1.6.0:update_11:::::: cpe:2.3:a:sun:jre:1.6.0:update_13:::::: cpe:2.3:a:sun:jre:1.6.0:update_6:::::: cpe:2.3:a:sun:jre:1.6.0:update_1:::::: cpe:2.3:a:sun:jre:1.6.0:update_17:::::: cpe:2.3:a:sun:jre:1.6.0:update_7:::::: cpe:2.3:a:sun:jre:1.6.0:update_12:::::: cpe:2.3:a:sun:jre:1.6.0:update_15:::::: cpe:2.3:a:sun:jre:1.6.0:update_3:::::: cpe:2.3:a:sun:jre:1.6.0:update_2:::::: cpe:2.3:a:sun:jre:1.6.0:update_21:::::: cpe:2.3:a:sun:jre:1.6.0:update_5:::::: cpe:2.3:a:sun:jre:1.6.0:update_19:::::: cpe:2.3:a:sun:jre:1.6.0:update11:::::: cpe:2.3:a:sun:jre:1.6.0:update15:::::: cpe:2.3:a:sun:jre:1.6.0:update16:::::: cpe:2.3:a:sun:jre:1.6.0:update5:::::: cpe:2.3:a:sun:jre:1.6.0:update10:::::: cpe:2.3:a:sun:jre:1.6.0:update9:::::: cpe:2.3:a:sun:jre:1.6.0:update8:::::: cpe:2.3:a:sun:jre:1.6.0:update14:::::: cpe:2.3:a:sun:jre:1.6.0:update7:::::: cpe:2.3:a:sun:jre:1.6.0:update12:::::: cpe:2.3:a:sun:jre:1.6.0:update6:::::: cpe:2.3:a:sun:jre:1.6.0:update13:::::: cpe:2.3:a:sun:jre:1.6.0:update4:::::: cpe:2.3:a:sun:jre:1.6.0:update_8:::::: cpe:2.3:a:sun:jre:1.6.0:update_9:::::: cpe:2.3:a:sun:jre:1.6.0:update17:::::: cpe:2.3:a:sun:jre:1.6.0:update19:::::: cpe:2.3:a:sun:jre:1.6.0:update18:::::: cpe:2.3:a:sun:jre:1.6.0:update_22:::::: cpe:2.3:a:sun:jre:1.6.0:update_23:::::: cpe:2.3:a:sun:jre:1.6.0:update_25:::::: cpe:2.3:a:sun:jre:1.6.0:update_24:::::: cpe:2.3:a:sun:jre:1.6.0:update_26:::::: cpe:2.3:a:sun:jre:1.6.0:update_27:::::: cpe:2.3:a:sun:jre:1.6.0:-:::::: cpe:2.3:a:sun:jre:1.5.0_11-b03:::::::* cpe:2.3:a:sun:jre:1.5.0:update16:::::: cpe:2.3:a:sun:jre:1.5.0:update17:::::: cpe:2.3:a:sun:jre:1.5.0:update15:::::: cpe:2.3:a:sun:jre:1.5.0:update22:::::: cpe:2.3:a:sun:jre:1.5.0:update12:::::: cpe:2.3:a:sun:jre:1.5.0:update10:::::: cpe:2.3:a:sun:jre:1.5.0:update6:::::: cpe:2.3:a:sun:jre:1.5.0:update13:::::: cpe:2.3:a:sun:jre:1.5.0:update14:::::: cpe:2.3:a:sun:jre:1.5.0:update24:::::: cpe:2.3:a:sun:jre:1.5.0:update11:::::: cpe:2.3:a:sun:jre:1.5.0:update18:::::: cpe:2.3:a:sun:jre:1.5.0:update8:::::: cpe:2.3:a:sun:jre:1.5.0:update1:::::: cpe:2.3:a:sun:jre:1.5.0:update9:::::: cpe:2.3:a:sun:jre:1.5.0:update21:::::: cpe:2.3:a:sun:jre:1.5.0:update20:::::: cpe:2.3:a:sun:jre:1.5.0:update3:::::: cpe:2.3:a:sun:jre:1.5.0:update25:::::: cpe:2.3:a:sun:jre:1.5.0:update4:::::: cpe:2.3:a:sun:jre:1.5.0:update5:::::: cpe:2.3:a:sun:jre:1.5.0:update2:::::: cpe:2.3:a:sun:jre:1.5.0:update7:::::: cpe:2.3:a:sun:jre:1.5.0:update23:::::: cpe:2.3:a:sun:jre:1.5.0:update19:::::: cpe:2.3:a:sun:jre:1.5.0:update_6:::::: cpe:2.3:a:sun:jre:1.5.0:update_7:::::: cpe:2.3:a:sun:jre:1.5.0:update_15:::::: cpe:2.3:a:sun:jre:1.5.0:update_1:::::: cpe:2.3:a:sun:jre:1.5.0:update_3:::::: cpe:2.3:a:sun:jre:1.5.0:update_8:::::: cpe:2.3:a:sun:jre:1.5.0:update_17:::::: cpe:2.3:a:sun:jre:1.5.0:update_2:::::: cpe:2.3:a:sun:jre:1.5.0:update_18:::::: cpe:2.3:a:sun:jre:1.5.0:update_12:::::: cpe:2.3:a:sun:jre:1.5.0:update_9:::::: cpe:2.3:a:sun:jre:1.5.0:update_21:::::: cpe:2.3:a:sun:jre:1.5.0:update_19:::::: cpe:2.3:a:sun:jre:1.5.0:update_14:::::: cpe:2.3:a:sun:jre:1.5.0:update_16:::::: cpe:2.3:a:sun:jre:1.5.0:update_4:::::: cpe:2.3:a:sun:jre:1.5.0:update_13:::::: cpe:2.3:a:sun:jre:1.5.0:update_20:::::: cpe:2.3:a:sun:jre:1.5.0:update_5:::::: cpe:2.3:a:sun:jre:1.5.0:update_11:::::: cpe:2.3:a:sun:jre:1.5.0:update27:::::: cpe:2.3:a:sun:jre:1.5.0:update26:::::: cpe:2.3:a:sun:jre:1.5.0:update35:::::: cpe:2.3:a:sun:jre:1.5.0:update28:::::: cpe:2.3:a:sun:jre:1.5.0:update31:::::: cpe:2.3:a:sun:jre:1.5.0:update33:::::: cpe:2.3:a:sun:jre:1.5.0:update29:::::: cpe:2.3:a:sun:jre:1.5.0:-:::::: cpe:2.3:a:sun:jre:1.4.2_9:::::::* cpe:2.3:a:sun:jre:1.4.2_8:::::::* cpe:2.3:a:sun:jre:1.4.2_7:::::::* cpe:2.3:a:sun:jre:1.4.2_6:::::::* cpe:2.3:a:sun:jre:1.4.2_5:::::::* cpe:2.3:a:sun:jre:1.4.2_4:::::::* cpe:2.3:a:sun:jre:1.4.2_37:::::::* cpe:2.3:a:sun:jre:1.4.2_36:::::::* cpe:2.3:a:sun:jre:1.4.2_35:::::::* cpe:2.3:a:sun:jre:1.4.2_34:::::::* cpe:2.3:a:sun:jre:1.4.2_33:::::::* cpe:2.3:a:sun:jre:1.4.2_32:::::::* cpe:2.3:a:sun:jre:1.4.2_31:::::::* cpe:2.3:a:sun:jre:1.4.2_30:::::::* cpe:2.3:a:sun:jre:1.4.2_3:::::::* cpe:2.3:a:sun:jre:1.4.2_29:::::::* cpe:2.3:a:sun:jre:1.4.2_28:::::::* cpe:2.3:a:sun:jre:1.4.2_27:::::::* cpe:2.3:a:sun:jre:1.4.2_26:::::::* cpe:2.3:a:sun:jre:1.4.2_25:::::::* cpe:2.3:a:sun:jre:1.4.2_24:::::::* cpe:2.3:a:sun:jre:1.4.2_23:::::::* cpe:2.3:a:sun:jre:1.4.2_22:::::::* cpe:2.3:a:sun:jre:1.4.2_21:::::::* cpe:2.3:a:sun:jre:1.4.2_20:::::::* cpe:2.3:a:sun:jre:1.4.2_2:::::::* cpe:2.3:a:sun:jre:1.4.2_19:::::::* cpe:2.3:a:sun:jre:1.4.2_18:::::::* cpe:2.3:a:sun:jre:1.4.2_17:::::::* cpe:2.3:a:sun:jre:1.4.2_16:::::::* cpe:2.3:a:sun:jre:1.4.2_15:::::::* cpe:2.3:a:sun:jre:1.4.2_14:::::::* cpe:2.3:a:sun:jre:1.4.2_13:::::::* cpe:2.3:a:sun:jre:1.4.2_12:::::::* cpe:2.3:a:sun:jre:1.4.2_11:::::::* cpe:2.3:a:sun:jre:1.4.2_10:::::::* cpe:2.3:a:sun:jre:1.4.2_1:::::::* cpe:2.3:a:sun:jre:1.4.2_09:::::::* cpe:2.3:a:sun:jre:1.4.2_08:::::::* cpe:2.3:a:sun:jre:1.4.2_07:::::::* cpe:2.3:a:sun:jre:1.4.2_06:::::::* cpe:2.3:a:sun:jre:1.4.2_05:::::::* cpe:2.3:a:sun:jre:1.4.2_04:::::::* cpe:2.3:a:sun:jre:1.4.2_03:::::::* cpe:2.3:a:sun:jre:1.4.2_02:::::::* cpe:2.3:a:sun:jre:1.4.2_01:::::::* cpe:2.3:a:sun:jre:1.4.2:update1:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update4:linux:::::* cpe:2.3:a:sun:jre:1.4.2::solaris::::: cpe:2.3:a:sun:jre:1.4.2:update2:linux:::::* cpe:2.3:a:sun:jre:1.4.2:update1:linux:::::* cpe:2.3:a:sun:jre:1.4.2:update1:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update4:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update3:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update2:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update5:windows:::::* cpe:2.3:a:sun:jre:1.4.2::linux::::: cpe:2.3:a:sun:jre:1.4.2:update5:linux:::::* cpe:2.3:a:sun:jre:1.4.2:update2:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update3:linux:::::* cpe:2.3:a:sun:jre:1.4.2::windows::::: cpe:2.3:a:sun:jre:1.4.2:update3:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update4:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update5:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update20:::::: cpe:2.3:a:sun:jre:1.4.2:update17:::::: cpe:2.3:a:sun:jre:1.4.2:update19:::::: cpe:2.3:a:sun:jre:1.4.2:update18:::::: cpe:2.3:a:sun:jre:1.4.2:update16:::::: cpe:2.3:a:sun:jre:1.4.2:update28:::::: cpe:2.3:a:sun:jre:1.4.2:-:::::: cpe:2.3:a:sun:jre:1.4.1_07::windows::::: cpe:2.3:a:sun:jre:1.4.1_07::solaris::::: cpe:2.3:a:sun:jre:1.4.1_07::linux::::: cpe:2.3:a:sun:jre:1.4.1_07:::::::* cpe:2.3:a:sun:jre:1.4.1_06::solaris::::: cpe:2.3:a:sun:jre:1.4.1_06:::::::* cpe:2.3:a:sun:jre:1.4.1_06::linux::::: cpe:2.3:a:sun:jre:1.4.1_06::windows::::: cpe:2.3:a:sun:jre:1.4.1_05::linux::::: cpe:2.3:a:sun:jre:1.4.1_05::windows::::: cpe:2.3:a:sun:jre:1.4.1_05:::::::* cpe:2.3:a:sun:jre:1.4.1_05::solaris::::: cpe:2.3:a:sun:jre:1.4.1_04:::::::* cpe:2.3:a:sun:jre:1.4.1_04::windows::::: cpe:2.3:a:sun:jre:1.4.1_04::linux::::: cpe:2.3:a:sun:jre:1.4.1_04::solaris::::: cpe:2.3:a:sun:jre:1.4.1_03::solaris::::: cpe:2.3:a:sun:jre:1.4.1_03:::::::* cpe:2.3:a:sun:jre:1.4.1_03::windows::::: cpe:2.3:a:sun:jre:1.4.1_03::linux::::: cpe:2.3:a:sun:jre:1.4.1_02::solaris::::: cpe:2.3:a:sun:jre:1.4.1_02::linux::::: cpe:2.3:a:sun:jre:1.4.1_02::windows::::: cpe:2.3:a:sun:jre:1.4.1_02:::::::* cpe:2.3:a:sun:jre:1.4.1_01::solaris::::: cpe:2.3:a:sun:jre:1.4.1_01::windows::::: cpe:2.3:a:sun:jre:1.4.1_01::linux::::: cpe:2.3:a:sun:jre:1.4.1_01:::::::* cpe:2.3:a:sun:jre:1.4.1:update3:::::: cpe:2.3:a:sun:jre:1.4.1::linux::::: cpe:2.3:a:sun:jre:1.4.1:update3:linux:::::* cpe:2.3:a:sun:jre:1.4.1:update3:solaris:::::* cpe:2.3:a:sun:jre:1.4.1::windows::::: cpe:2.3:a:sun:jre:1.4.1::solaris::::: cpe:2.3:a:sun:jre:1.4.1:update3:windows:::::* cpe:2.3:a:sun:jre:1.4.1:update2:::::: cpe:2.3:a:sun:jre:1.4.1:update4:::::: cpe:2.3:a:sun:jre:1.4.1:update1:::::: cpe:2.3:a:sun:jre:1.4.1:update7:::::: cpe:2.3:a:sun:jre:1.4.1:update6:::::: cpe:2.3:a:sun:jre:1.4.1:update5:::::: cpe:2.3:a:sun:jre:1.4.1:-:::::: cpe:2.3:a:sun:jre:1.4.0_04::solaris::::: cpe:2.3:a:sun:jre:1.4.0_04::windows::::: cpe:2.3:a:sun:jre:1.4.0_04::linux::::: cpe:2.3:a:sun:jre:1.4.0_04:::::::* cpe:2.3:a:sun:jre:1.4.0_03::solaris::::: cpe:2.3:a:sun:jre:1.4.0_03::linux::::: cpe:2.3:a:sun:jre:1.4.0_03::windows::::: cpe:2.3:a:sun:jre:1.4.0_03:::::::* cpe:2.3:a:sun:jre:1.4.0_02::linux::::: cpe:2.3:a:sun:jre:1.4.0_02::windows::::: cpe:2.3:a:sun:jre:1.4.0_02::solaris::::: cpe:2.3:a:sun:jre:1.4.0_02:::::::* cpe:2.3:a:sun:jre:1.4.0_01::solaris::::: cpe:2.3:a:sun:jre:1.4.0_01::windows::::: cpe:2.3:a:sun:jre:1.4.0_01::linux::::: cpe:2.3:a:sun:jre:1.4.0_01:::::::* cpe:2.3:a:sun:jre:1.4.0:::::::* cpe:2.3:a:sun:jre:1.4:::::::* cpe:2.3:a:sun:jre:1.4::linux::::: cpe:2.3:a:sun:jre:1.4::solaris::::: cpe:2.3:a:sun:jre:1.4::windows::::: cpe:2.3:a:sun:jre:1.3.1_9:::::::* cpe:2.3:a:sun:jre:1.3.1_8:::::::* cpe:2.3:a:sun:jre:1.3.1_7:::::::* cpe:2.3:a:sun:jre:1.3.1_6:::::::* cpe:2.3:a:sun:jre:1.3.1_5:::::::* cpe:2.3:a:sun:jre:1.3.1_4:::::::* cpe:2.3:a:sun:jre:1.3.1_3:::::::* cpe:2.3:a:sun:jre:1.3.1_28:::::::* cpe:2.3:a:sun:jre:1.3.1_27:::::::* cpe:2.3:a:sun:jre:1.3.1_26:::::::* cpe:2.3:a:sun:jre:1.3.1_25:::::::* cpe:2.3:a:sun:jre:1.3.1_24:::::::* cpe:2.3:a:sun:jre:1.3.1_23:::::::* cpe:2.3:a:sun:jre:1.3.1_22:::::::* cpe:2.3:a:sun:jre:1.3.1_21:::::::* cpe:2.3:a:sun:jre:1.3.1_20:::::::* cpe:2.3:a:sun:jre:1.3.1_2:::::::* cpe:2.3:a:sun:jre:1.3.1_19:::::::* cpe:2.3:a:sun:jre:1.3.1_18:::::::* cpe:2.3:a:sun:jre:1.3.1_17:::::::* cpe:2.3:a:sun:jre:1.3.1_16:::::::* cpe:2.3:a:sun:jre:1.3.1_15:::::::* cpe:2.3:a:sun:jre:1.3.1_14:::::::* cpe:2.3:a:sun:jre:1.3.1_13:::::::* cpe:2.3:a:sun:jre:1.3.1_12:::::::* cpe:2.3:a:sun:jre:1.3.1_11:::::::* cpe:2.3:a:sun:jre:1.3.1_10:::::::* cpe:2.3:a:sun:jre:1.3.1_1:::::::* cpe:2.3:a:sun:jre:1.3.1_09:::::::* cpe:2.3:a:sun:jre:1.3.1_09::linux::::: cpe:2.3:a:sun:jre:1.3.1_09::solaris::::: cpe:2.3:a:sun:jre:1.3.1_09::windows::::: cpe:2.3:a:sun:jre:1.3.1_08:::::::* cpe:2.3:a:sun:jre:1.3.1_07:::::::* cpe:2.3:a:sun:jre:1.3.1_07::solaris::::: cpe:2.3:a:sun:jre:1.3.1_07::linux::::: cpe:2.3:a:sun:jre:1.3.1_07::windows::::: cpe:2.3:a:sun:jre:1.3.1_06:::::::* cpe:2.3:a:sun:jre:1.3.1_06::solaris::::: cpe:2.3:a:sun:jre:1.3.1_06::linux::::: cpe:2.3:a:sun:jre:1.3.1_06::windows::::: cpe:2.3:a:sun:jre:1.3.1_05:::::::* cpe:2.3:a:sun:jre:1.3.1_05::linux::::: cpe:2.3:a:sun:jre:1.3.1_05::windows::::: cpe:2.3:a:sun:jre:1.3.1_05::solaris::::: cpe:2.3:a:sun:jre:1.3.1_04:::::::* cpe:2.3:a:sun:jre:1.3.1_03:::::::* cpe:2.3:a:sun:jre:1.3.1_03::windows::::: cpe:2.3:a:sun:jre:1.3.1_03::solaris::::: cpe:2.3:a:sun:jre:1.3.1_03::linux::::: cpe:2.3:a:sun:jre:1.3.1_02::solaris::::: cpe:2.3:a:sun:jre:1.3.1_02::windows::::: cpe:2.3:a:sun:jre:1.3.1_02::linux::::: cpe:2.3:a:sun:jre:1.3.1_02:::::::* cpe:2.3:a:sun:jre:1.3.1_01a:::::::* cpe:2.3:a:sun:jre:1.3.1_01:::::::* cpe:2.3:a:sun:jre:1.3.1:update2:::::: cpe:2.3:a:sun:jre:1.3.1:update1:::::: cpe:2.3:a:sun:jre:1.3.1:update16:::::: cpe:2.3:a:sun:jre:1.3.1:update18:::::: cpe:2.3:a:sun:jre:1.3.1:update20:::::: cpe:2.3:a:sun:jre:1.3.1:update19:::::: cpe:2.3:a:sun:jre:1.3.1:update1a:::::: cpe:2.3:a:sun:jre:1.3.1:update8:::::: cpe:2.3:a:sun:jre:1.3.1:update15:::::: cpe:2.3:a:sun:jre:1.3.1:update4:::::: cpe:2.3:a:sun:jre:1.3.1:update4:windows:::::* cpe:2.3:a:sun:jre:1.3.1::linux::::: cpe:2.3:a:sun:jre:1.3.1:update8:solaris:::::* cpe:2.3:a:sun:jre:1.3.1:update1a:windows:::::* cpe:2.3:a:sun:jre:1.3.1:update1:linux:::::* cpe:2.3:a:sun:jre:1.3.1:update4:solaris:::::* cpe:2.3:a:sun:jre:1.3.1:update8:windows:::::* cpe:2.3:a:sun:jre:1.3.1:update1:windows:::::* cpe:2.3:a:sun:jre:1.3.1:update1:solaris:::::* cpe:2.3:a:sun:jre:1.3.1:update8:linux:::::* cpe:2.3:a:sun:jre:1.3.1:update12:::::: cpe:2.3:a:sun:jre:1.3.1:update17:::::: cpe:2.3:a:sun:jre:1.3.1:-:::::: cpe:2.3:a:sun:jre:1.3.0:update5:::::: cpe:2.3:a:sun:jre:1.3.0:update4:::::: cpe:2.3:a:sun:jre:1.3.0:update1:::::: cpe:2.3:a:sun:jre:1.3.0:update3:::::: cpe:2.3:a:sun:jre:1.3.0:update2:::::: cpe:2.3:a:sun:jre:1.3.0:update4:windows:::::* cpe:2.3:a:sun:jre:1.3.0:update5:linux:::::* cpe:2.3:a:sun:jre:1.3.0:update5:solaris:::::* cpe:2.3:a:sun:jre:1.3.0:update3:linux:::::* cpe:2.3:a:sun:jre:1.3.0::windows::::: cpe:2.3:a:sun:jre:1.3.0:update4:linux:::::* cpe:2.3:a:sun:jre:1.3.0:update2:solaris:::::* cpe:2.3:a:sun:jre:1.3.0:update1:linux:::::* cpe:2.3:a:sun:jre:1.3.0::linux::::: cpe:2.3:a:sun:jre:1.3.0:update5:windows:::::* cpe:2.3:a:sun:jre:1.3.0:update2:linux:::::* cpe:2.3:a:sun:jre:1.3.0::solaris::::: cpe:2.3:a:sun:jre:1.3.0:update2:windows:::::* cpe:2.3:a:sun:jre:1.3.0:-:::::: cpe:2.3:a:sun:jre:1.2.2_07::solaris::::: cpe:2.3:a:sun:jre:1.2.2_012::solaris::::: cpe:2.3:a:sun:jre:1.2.2_011::solaris::::: cpe:2.3:a:sun:jre:1.2.2_011::linux::::: cpe:2.3:a:sun:jre:1.2.2_011::windows::::: cpe:2.3:a:sun:jre:1.2.2_007::linux::::: cpe:2.3:a:sun:jre:1.2.2_007::solaris::::: cpe:2.3:a:sun:jre:1.2.2_007::windows::::: cpe:2.3:a:sun:jre:1.2.2_006::linux::::: cpe:2.3:a:sun:jre:1.2.2_005::linux::::: cpe:2.3:a:sun:jre:1.2.2_004::linux::::: cpe:2.3:a:sun:jre:1.2.2_003::linux::::: cpe:2.3:a:sun:jre:1.2.2_003::linux_production::::: cpe:2.3:a:sun:jre:1.2.2::solaris::::: cpe:2.3:a:sun:jre:1.2.2:update10:linux:::::* cpe:2.3:a:sun:jre:1.2.2:update10:solaris:::::* cpe:2.3:a:sun:jre:1.2.2::windows::::: cpe:2.3:a:sun:jre:1.2.2:update10:windows:::::* cpe:2.3:a:sun:jre:1.2.2::linux_production::::: cpe:2.3:a:sun:jre:1.2.2:update10:::::: cpe:2.3:a:sun:jre:1.2:::::::* cpe:2.3:a:sun:jre:1.1.8:update13:::::: cpe:2.3:a:sun:jre:1.1.8:update7:::::: cpe:2.3:a:sun:jre:1.1.8:update8:::::: cpe:2.3:a:sun:jre:1.1.8:update14:::::: cpe:2.3:a:sun:jre:1.1:::::::*	357
Application	Sun Sdk cpe:2.3:a:sun:sdk:1.4.2_9:::::::* cpe:2.3:a:sun:sdk:1.4.2_8:::::::* cpe:2.3:a:sun:sdk:1.4.2_7:::::::* cpe:2.3:a:sun:sdk:1.4.2_6:::::::* cpe:2.3:a:sun:sdk:1.4.2_5:::::::* cpe:2.3:a:sun:sdk:1.4.2_4:::::::* cpe:2.3:a:sun:sdk:1.4.2_3:::::::* cpe:2.3:a:sun:sdk:1.4.2_28:::::::* cpe:2.3:a:sun:sdk:1.4.2_27:::::::* cpe:2.3:a:sun:sdk:1.4.2_26:::::::* cpe:2.3:a:sun:sdk:1.4.2_25:::::::* cpe:2.3:a:sun:sdk:1.4.2_24:::::::* cpe:2.3:a:sun:sdk:1.4.2_23:::::::* cpe:2.3:a:sun:sdk:1.4.2_22:::::::* cpe:2.3:a:sun:sdk:1.4.2_21:::::::* cpe:2.3:a:sun:sdk:1.4.2_20:::::::* cpe:2.3:a:sun:sdk:1.4.2_2:::::::* cpe:2.3:a:sun:sdk:1.4.2_19:::::::* cpe:2.3:a:sun:sdk:1.4.2_18:::::::* cpe:2.3:a:sun:sdk:1.4.2_17:::::::* cpe:2.3:a:sun:sdk:1.4.2_16:::::::* cpe:2.3:a:sun:sdk:1.4.2_15:::::::* cpe:2.3:a:sun:sdk:1.4.2_14:::::::* cpe:2.3:a:sun:sdk:1.4.2_13:::::::* cpe:2.3:a:sun:sdk:1.4.2_12:::::::* cpe:2.3:a:sun:sdk:1.4.2_11:::::::* cpe:2.3:a:sun:sdk:1.4.2_10:::::::* cpe:2.3:a:sun:sdk:1.4.2_1:::::::* cpe:2.3:a:sun:sdk:1.4.2_09:::::::* cpe:2.3:a:sun:sdk:1.4.2_08:::::::* cpe:2.3:a:sun:sdk:1.4.2_07:::::::* cpe:2.3:a:sun:sdk:1.4.2_06:::::::* cpe:2.3:a:sun:sdk:1.4.2_05:::::::* cpe:2.3:a:sun:sdk:1.4.2_04:::::::* cpe:2.3:a:sun:sdk:1.4.2_03:::::::* cpe:2.3:a:sun:sdk:1.4.2_02:::::::* cpe:2.3:a:sun:sdk:1.4.2_01:::::::* cpe:2.3:a:sun:sdk:1.4.2:::::::* cpe:2.3:a:sun:sdk:1.4.1_07:::::::* cpe:2.3:a:sun:sdk:1.4.1_06:::::::* cpe:2.3:a:sun:sdk:1.4.1_05:::::::* cpe:2.3:a:sun:sdk:1.4.1_04:::::::* cpe:2.3:a:sun:sdk:1.4.1_03:::::::* cpe:2.3:a:sun:sdk:1.4.1_02:::::::* cpe:2.3:a:sun:sdk:1.4.1_01:::::::* cpe:2.3:a:sun:sdk:1.4.1:::::::* cpe:2.3:a:sun:sdk:1.4.0_04:::::::* cpe:2.3:a:sun:sdk:1.4.0_03:::::::* cpe:2.3:a:sun:sdk:1.4.0_02:::::::* cpe:2.3:a:sun:sdk:1.4.0_01:::::::* cpe:2.3:a:sun:sdk:1.4.0:::::::* cpe:2.3:a:sun:sdk:1.4:::::::* cpe:2.3:a:sun:sdk:1.3.1_9:::::::* cpe:2.3:a:sun:sdk:1.3.1_8:::::::* cpe:2.3:a:sun:sdk:1.3.1_7:::::::* cpe:2.3:a:sun:sdk:1.3.1_6:::::::* cpe:2.3:a:sun:sdk:1.3.1_5:::::::* cpe:2.3:a:sun:sdk:1.3.1_4:::::::* cpe:2.3:a:sun:sdk:1.3.1_3:::::::* cpe:2.3:a:sun:sdk:1.3.1_28:::::::* cpe:2.3:a:sun:sdk:1.3.1_27:::::::* cpe:2.3:a:sun:sdk:1.3.1_26:::::::* cpe:2.3:a:sun:sdk:1.3.1_25:::::::* cpe:2.3:a:sun:sdk:1.3.1_24:::::::* cpe:2.3:a:sun:sdk:1.3.1_23:::::::* cpe:2.3:a:sun:sdk:1.3.1_22:::::::* cpe:2.3:a:sun:sdk:1.3.1_21:::::::* cpe:2.3:a:sun:sdk:1.3.1_20:::::::* cpe:2.3:a:sun:sdk:1.3.1_2:::::::* cpe:2.3:a:sun:sdk:1.3.1_19:::::::* cpe:2.3:a:sun:sdk:1.3.1_18:::::::* cpe:2.3:a:sun:sdk:1.3.1_17:::::::* cpe:2.3:a:sun:sdk:1.3.1_16:::::::* cpe:2.3:a:sun:sdk:1.3.1_15:::::::* cpe:2.3:a:sun:sdk:1.3.1_14:::::::* cpe:2.3:a:sun:sdk:1.3.1_13:::::::* cpe:2.3:a:sun:sdk:1.3.1_12:::::::* cpe:2.3:a:sun:sdk:1.3.1_11:::::::* cpe:2.3:a:sun:sdk:1.3.1_10:::::::* cpe:2.3:a:sun:sdk:1.3.1_1:::::::* cpe:2.3:a:sun:sdk:1.3.1_09:::::::* cpe:2.3:a:sun:sdk:1.3.1_08:::::::* cpe:2.3:a:sun:sdk:1.3.1_07:::::::* cpe:2.3:a:sun:sdk:1.3.1_06:::::::* cpe:2.3:a:sun:sdk:1.3.1_05:::::::* cpe:2.3:a:sun:sdk:1.3.1_04:::::::* cpe:2.3:a:sun:sdk:1.3.1_03:::::::* cpe:2.3:a:sun:sdk:1.3.1_02:::::::* cpe:2.3:a:sun:sdk:1.3.1_01a:::::::* cpe:2.3:a:sun:sdk:1.3.1_01:::::::* cpe:2.3:a:sun:sdk:1.3.1:::::::* cpe:2.3:a:sun:sdk:1.3.0_05:::::::* cpe:2.3:a:sun:sdk:1.3.0_04:::::::* cpe:2.3:a:sun:sdk:1.3.0_03:::::::* cpe:2.3:a:sun:sdk:1.3.0_02:::::::* cpe:2.3:a:sun:sdk:1.3.0_01:::::::* cpe:2.3:a:sun:sdk:1.3.0:::::::* cpe:2.3:a:sun:sdk:1.3.0::standard::::: cpe:2.3:a:sun:sdk:1.3_05:::::::* cpe:2.3:a:sun:sdk:1.3_02:::::::* cpe:2.3:a:sun:sdk:1.2.2_10:::::::* cpe:2.3:a:sun:sdk:1.2.2_010:::::::* cpe:2.3:a:sun:sdk:1.1.8_007:::::::* cpe:2.3:a:sun:sdk:1.1.3:::::::*	104
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:11.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::	4
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:6.0:::::::* cpe:2.3:o:debian:debian_linux:5.0:::::::*	2
Os	Microsoft Windows cpe:2.3:o:microsoft:windows:-:::::::*	1
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::* cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*	2
Os	Redhat Enterprise Linux Eus cpe:2.3:o:redhat:enterprise_linux_eus:6.2:::::::*	1
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::* cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*	2
Os	Redhat Enterprise Linux Server Aus cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:::::::*	1
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::* cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*	2

SAINT Exploits

Description	Link
Oracle Java Applet2ClassLoader Vulnerability	More info here
Java SE AtomicReferenceArray Unsafe Security Bypass	More info here
Oracle Java Rhino Script Engine Code Execution	More info here
Java Web Start initial heap size command injection	More info here

ExploitDB Exploits

id	Description
2013-06-11	Java Web Start Double Quote Injection Remote Code Execution
2012-03-30	Java AtomicReferenceArray Type Violation Vulnerability
2012-01-03	PHP Hash Table Collision Proof Of Concept
2011-11-30	Java Applet Rhino Script Engine Remote Code Execution
2011-03-16	Sun Java Applet2ClassLoader Remote Code Execution Exploit

OpenVAS Exploits

Date	Description
2012-10-19	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-16351 File : nvt/gb_fedora_2012_16351_java-1.6.0-openjdk_fc16.nasl
2012-10-19	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-16351 File : nvt/gb_fedora_2012_16351_java-1.7.0-openjdk_fc16.nasl
2012-09-25	Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004) File : nvt/gb_macosx_su12-004.nasl
2012-09-22	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-13127 File : nvt/gb_fedora_2012_13127_java-1.6.0-openjdk_fc16.nasl
2012-09-04	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-13138 File : nvt/gb_fedora_2012_13138_java-1.7.0-openjdk_fc16.nasl
2012-09-04	Name : Mandriva Update for fetchmail MDVSA-2012:149 (fetchmail) File : nvt/gb_mandriva_MDVSA_2012_149.nasl
2012-08-31	Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries. File : nvt/gb_VMSA-2012-0013.nasl
2012-08-30	Name : FreeBSD Ports: fetchmail File : nvt/freebsd_fetchmail16.nasl
2012-08-30	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-2595 File : nvt/gb_fedora_2012_2595_java-1.7.0-openjdk_fc17.nasl
2012-08-30	Name : Fedora Update for python3 FEDORA-2012-5785 File : nvt/gb_fedora_2012_5785_python3_fc17.nasl
2012-08-30	Name : Fedora Update for python-docs FEDORA-2012-5892 File : nvt/gb_fedora_2012_5892_python-docs_fc17.nasl
2012-08-30	Name : Fedora Update for python FEDORA-2012-5892 File : nvt/gb_fedora_2012_5892_python_fc17.nasl
2012-08-22	Name : Oracle Java SE Java Runtime Environment Code Execution Vulnerability - (Windows) File : nvt/gb_oracle_java_se_code_exec_vuln_win.nasl
2012-08-03	Name : Mandriva Update for curl MDVSA-2012:058 (curl) File : nvt/gb_mandriva_MDVSA_2012_058.nasl
2012-08-02	Name : SuSE Update for java-1_6_0-openjdk openSUSE-SU-2012:0309-1 (java-1_6_0-openjdk) File : nvt/gb_suse_2012_0309_1.nasl
2012-07-30	Name : CentOS Update for java CESA-2011:0214 centos5 x86_64 File : nvt/gb_CESA-2011_0214_java_centos5_x86_64.nasl
2012-07-30	Name : CentOS Update for java CESA-2011:0281 centos5 x86_64 File : nvt/gb_CESA-2011_0281_java_centos5_x86_64.nasl
2012-07-30	Name : CentOS Update for tomcat5 CESA-2011:0336 centos5 x86_64 File : nvt/gb_CESA-2011_0336_tomcat5_centos5_x86_64.nasl
2012-07-30	Name : CentOS Update for java CESA-2011:0857 centos5 x86_64 File : nvt/gb_CESA-2011_0857_java_centos5_x86_64.nasl
2012-07-30	Name : CentOS Update for java CESA-2011:1380 centos5 x86_64 File : nvt/gb_CESA-2011_1380_java_centos5_x86_64.nasl
2012-07-30	Name : CentOS Update for java CESA-2012:0135 centos6 File : nvt/gb_CESA-2012_0135_java_centos6.nasl
2012-07-30	Name : CentOS Update for firefox CESA-2012:1088 centos5 File : nvt/gb_CESA-2012_1088_firefox_centos5.nasl
2012-07-30	Name : CentOS Update for firefox CESA-2012:1088 centos6 File : nvt/gb_CESA-2012_1088_firefox_centos6.nasl
2012-07-30	Name : CentOS Update for thunderbird CESA-2012:1089 centos5 File : nvt/gb_CESA-2012_1089_thunderbird_centos5.nasl
2012-07-30	Name : CentOS Update for thunderbird CESA-2012:1089 centos6 File : nvt/gb_CESA-2012_1089_thunderbird_centos6.nasl
2012-07-19	Name : RedHat Update for firefox RHSA-2012:1088-01 File : nvt/gb_RHSA-2012_1088-01_firefox.nasl
2012-07-19	Name : RedHat Update for thunderbird RHSA-2012:1089-01 File : nvt/gb_RHSA-2012_1089-01_thunderbird.nasl
2012-07-09	Name : RedHat Update for java-1.6.0-openjdk RHSA-2012:0135-01 File : nvt/gb_RHSA-2012_0135-01_java-1.6.0-openjdk.nasl
2012-06-22	Name : Fedora Update for python3 FEDORA-2012-9135 File : nvt/gb_fedora_2012_9135_python3_fc16.nasl
2012-06-22	Name : Mandriva Update for python MDVSA-2012:096 (python) File : nvt/gb_mandriva_MDVSA_2012_096.nasl
2012-06-22	Name : Mandriva Update for python MDVSA-2012:097 (python) File : nvt/gb_mandriva_MDVSA_2012_097.nasl
2012-06-19	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-9541 File : nvt/gb_fedora_2012_9541_java-1.6.0-openjdk_fc15.nasl
2012-06-19	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-9545 File : nvt/gb_fedora_2012_9545_java-1.6.0-openjdk_fc16.nasl
2012-06-19	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-9593 File : nvt/gb_fedora_2012_9593_java-1.7.0-openjdk_fc16.nasl
2012-06-06	Name : RedHat Update for tomcat6 RHSA-2011:0335-01 File : nvt/gb_RHSA-2011_0335-01_tomcat6.nasl
2012-06-06	Name : RedHat Update for java-1.6.0-openjdk RHSA-2011:0856-01 File : nvt/gb_RHSA-2011_0856-01_java-1.6.0-openjdk.nasl
2012-05-18	Name : Mac OS X Multiple Vulnerabilities (2012-002) File : nvt/gb_macosx_su12-002.nasl
2012-05-08	Name : Fedora Update for python-docs FEDORA-2012-5924 File : nvt/gb_fedora_2012_5924_python-docs_fc16.nasl
2012-05-08	Name : Fedora Update for python FEDORA-2012-5924 File : nvt/gb_fedora_2012_5924_python_fc16.nasl
2012-05-04	Name : Fedora Update for python3 FEDORA-2012-5916 File : nvt/gb_fedora_2012_5916_python3_fc15.nasl
2012-04-30	Name : Debian Security Advisory DSA 2398-2 (curl) File : nvt/deb_2398_2.nasl
2012-04-09	Name : Java Runtime Environment Multiple Vulnerabilities (MAC OS X) File : nvt/gb_jre_mult_vuln_macosx.nasl
2012-04-06	Name : Opera Extended Validation Information Disclosure Vulnerabilities (Linux) File : nvt/gb_opera_extented_validation_info_disc_vuln_lin.nasl
2012-04-02	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-15020 File : nvt/gb_fedora_2011_15020_java-1.6.0-openjdk_fc16.nasl
2012-04-02	Name : Fedora Update for firefox FEDORA-2011-17400 File : nvt/gb_fedora_2011_17400_firefox_fc16.nasl
2012-04-02	Name : Fedora Update for nss-softokn FEDORA-2011-17400 File : nvt/gb_fedora_2011_17400_nss-softokn_fc16.nasl
2012-04-02	Name : Fedora Update for nss-util FEDORA-2011-17400 File : nvt/gb_fedora_2011_17400_nss-util_fc16.nasl
2012-04-02	Name : Fedora Update for thunderbird-lightning FEDORA-2011-17400 File : nvt/gb_fedora_2011_17400_thunderbird-lightning_fc16.nasl
2012-04-02	Name : Fedora Update for thunderbird FEDORA-2011-17400 File : nvt/gb_fedora_2011_17400_thunderbird_fc16.nasl
2012-04-02	Name : Fedora Update for xulrunner FEDORA-2011-17400 File : nvt/gb_fedora_2011_17400_xulrunner_fc16.nasl
2012-04-02	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-1690 File : nvt/gb_fedora_2012_1690_java-1.7.0-openjdk_fc16.nasl
2012-04-02	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-1711 File : nvt/gb_fedora_2012_1711_java-1.6.0-openjdk_fc16.nasl
2012-03-19	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2011-15555 File : nvt/gb_fedora_2011_15555_java-1.7.0-openjdk_fc16.nasl
2012-03-19	Name : Fedora Update for nss FEDORA-2011-17400 File : nvt/gb_fedora_2011_17400_nss_fc16.nasl
2012-03-15	Name : VMSA-2011-0013.2 VMware third party component updates for VMware vCenter Serv... File : nvt/gb_VMSA-2011-0013.nasl
2012-03-12	Name : Debian Security Advisory DSA 2420-1 (openjdk-6) File : nvt/deb_2420_1.nasl
2012-03-12	Name : Gentoo Security Advisory GLSA 201203-02 (cURL) File : nvt/glsa_201203_02.nasl
2012-03-09	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-1721 File : nvt/gb_fedora_2012_1721_java-1.6.0-openjdk_fc15.nasl
2012-03-09	Name : Ubuntu Update for openjdk-6 USN-1373-1 File : nvt/gb_ubuntu_USN_1373_1.nasl
2012-03-07	Name : Ubuntu Update for openjdk-6b18 USN-1373-2 File : nvt/gb_ubuntu_USN_1373_2.nasl
2012-02-27	Name : RedHat Update for java-1.6.0-openjdk RHSA-2012:0322-01 File : nvt/gb_RHSA-2012_0322-01_java-1.6.0-openjdk.nasl
2012-02-21	Name : Mandriva Update for java-1.6.0-openjdk MDVSA-2012:021 (java-1.6.0-openjdk) File : nvt/gb_mandriva_MDVSA_2012_021.nasl
2012-02-21	Name : Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 01) File : nvt/gb_oracle_java_se_jdk_mult_vuln_feb12_win_01.nasl
2012-02-21	Name : Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 02) File : nvt/gb_oracle_java_se_jdk_mult_vuln_feb12_win_02.nasl
2012-02-21	Name : Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 03) File : nvt/gb_oracle_java_se_jdk_mult_vuln_feb12_win_03.nasl
2012-02-21	Name : Oracle Java SE JRE Multiple Vulnerabilities - February 2012 (Windows - 01) File : nvt/gb_oracle_java_se_mult_vuln_feb12_win_01.nasl
2012-02-21	Name : Oracle Java SE JRE Multiple Vulnerabilities - February 2012 (Windows - 02) File : nvt/gb_oracle_java_se_mult_vuln_feb12_win_02.nasl
2012-02-21	Name : Oracle Java SE JRE Multiple Vulnerabilities - February 2012 (Windows - 03) File : nvt/gb_oracle_java_se_mult_vuln_feb12_win_03.nasl
2012-02-12	Name : Debian Security Advisory DSA 2398-1 (curl) File : nvt/deb_2398_1.nasl
2012-02-12	Name : Gentoo Security Advisory GLSA 201111-02 (sun-jre-bin sun-jdk emul-linux-x86-j... File : nvt/glsa_201111_02.nasl
2012-02-11	Name : Debian Security Advisory DSA 2356-1 (openjdk-6) File : nvt/deb_2356_1.nasl
2012-02-11	Name : Debian Security Advisory DSA 2358-1 (openjdk-6) File : nvt/deb_2358_1.nasl
2012-02-11	Name : Debian Security Advisory DSA 2368-1 (lighttpd) File : nvt/deb_2368_1.nasl
2012-02-06	Name : Mac OS X Multiple Vulnerabilities (2012-001) File : nvt/gb_macosx_su12-001.nasl
2012-01-25	Name : Ubuntu Update for openjdk-6 USN-1263-2 File : nvt/gb_ubuntu_USN_1263_2.nasl
2012-01-23	Name : Fedora Update for firefox FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_firefox_fc15.nasl
2012-01-23	Name : Fedora Update for gnome-python2-extras FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_gnome-python2-extras_fc15.nasl
2012-01-23	Name : Fedora Update for nspr FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_nspr_fc15.nasl
2012-01-23	Name : Fedora Update for nss-softokn FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_nss-softokn_fc15.nasl
2012-01-23	Name : Fedora Update for nss-util FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_nss-util_fc15.nasl
2012-01-23	Name : Fedora Update for nss FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_nss_fc15.nasl
2012-01-23	Name : Fedora Update for perl-Gtk2-MozEmbed FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_perl-Gtk2-MozEmbed_fc15.nasl
2012-01-23	Name : Fedora Update for thunderbird-lightning FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_thunderbird-lightning_fc15.nasl
2012-01-23	Name : Fedora Update for thunderbird FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_thunderbird_fc15.nasl
2012-01-23	Name : Fedora Update for xulrunner FEDORA-2011-17399 File : nvt/gb_fedora_2011_17399_xulrunner_fc15.nasl
2012-01-11	Name : Microsoft Windows SSL/TLS Information Disclosure Vulnerability (2643584) File : nvt/secpod_ms12-006.nasl
2012-01-05	Name : Oracle GlassFish Server Hash Collision Denial of Service Vulnerability File : nvt/gb_glassfish_hash_collision_dos_vuln.nasl
2011-11-18	Name : Ubuntu Update for icedtea-web USN-1263-1 File : nvt/gb_ubuntu_USN_1263_1.nasl
2011-11-15	Name : Oracle Java SE Java Runtime Environment Unspecified Vulnerability - October 2... File : nvt/gb_oracle_java_se_deployment_unspec_vuln_win.nasl
2011-11-15	Name : Oracle Java SE Java Runtime Environment Unspecified Vulnerability - October 2... File : nvt/gb_oracle_java_se_java_runtime_env_unspec_vuln_win.nasl
2011-11-15	Name : Oracle Java SE Multiple Vulnerabilities - October 2011 (Windows01) File : nvt/gb_oracle_java_se_mult_vuln_oct11_win_01.nasl
2011-11-15	Name : Oracle Java SE Multiple Vulnerabilities - October 2011 (Windows02) File : nvt/gb_oracle_java_se_mult_vuln_oct11_win_02.nasl
2011-11-15	Name : Oracle Java SE Multiple Vulnerabilities - October 2011 (Windows03) File : nvt/gb_oracle_java_se_mult_vuln_oct11_win_03.nasl
2011-11-15	Name : Oracle Java SE Multiple Vulnerabilities - October 2011 (Windows04) File : nvt/gb_oracle_java_se_mult_vuln_oct11_win_04.nasl
2011-11-14	Name : Mandriva Update for java-1.6.0-openjdk MDVSA-2011:170 (java-1.6.0-openjdk) File : nvt/gb_mandriva_MDVSA_2011_170.nasl
2011-10-21	Name : CentOS Update for java CESA-2011:1380 centos5 i386 File : nvt/gb_CESA-2011_1380_java_centos5_i386.nasl
2011-10-21	Name : RedHat Update for java-1.6.0-openjdk RHSA-2011:1380-01 File : nvt/gb_RHSA-2011_1380-01_java-1.6.0-openjdk.nasl
2011-10-21	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-14638 File : nvt/gb_fedora_2011_14638_java-1.6.0-openjdk_fc14.nasl
2011-10-21	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-14648 File : nvt/gb_fedora_2011_14648_java-1.6.0-openjdk_fc15.nasl
2011-10-16	Name : Debian Security Advisory DSA 2311-1 (openjdk-6) File : nvt/deb_2311_1.nasl
2011-09-09	Name : Opera Extended Validation Information Disclosure Vulnerabilities (Mac OS X) File : nvt/gb_opera_extented_validation_info_disc_vuln_macosx.nasl
2011-09-09	Name : Opera Extended Validation Information Disclosure Vulnerabilities (Windows) File : nvt/gb_opera_extented_validation_info_disc_vuln_win.nasl
2011-08-29	Name : Java for Mac OS X 10.5 Update 9 File : nvt/secpod_macosx_java_10_5_upd_9.nasl
2011-08-29	Name : Java for Mac OS X 10.6 Update 4 File : nvt/secpod_macosx_java_10_6_upd_4.nasl
2011-08-26	Name : Java for Mac OS X 10.5 Update 10 File : nvt/secpod_macosx_java_10_5_upd_10.nasl
2011-08-26	Name : Java for Mac OS X 10.6 Update 5 File : nvt/secpod_macosx_java_10_6_upd_5.nasl
2011-08-18	Name : Mandriva Update for java-1.6.0-openjdk MDVSA-2011:126 (java-1.6.0-openjdk) File : nvt/gb_mandriva_MDVSA_2011_126.nasl
2011-08-12	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-9523 File : nvt/gb_fedora_2011_9523_java-1.6.0-openjdk_fc14.nasl
2011-08-09	Name : CentOS Update for java CESA-2011:0214 centos5 i386 File : nvt/gb_CESA-2011_0214_java_centos5_i386.nasl
2011-08-09	Name : CentOS Update for java CESA-2011:0281 centos5 i386 File : nvt/gb_CESA-2011_0281_java_centos5_i386.nasl
2011-08-09	Name : CentOS Update for tomcat5 CESA-2011:0336 centos5 i386 File : nvt/gb_CESA-2011_0336_tomcat5_centos5_i386.nasl
2011-08-09	Name : CentOS Update for java CESA-2011:0857 centos5 i386 File : nvt/gb_CESA-2011_0857_java_centos5_i386.nasl
2011-07-12	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-8028 File : nvt/gb_fedora_2011_8028_java-1.6.0-openjdk_fc15.nasl
2011-06-24	Name : Ubuntu Update for openjdk-6 USN-1154-1 File : nvt/gb_ubuntu_USN_1154_1.nasl
2011-06-24	Name : Oracle Java SE Multiple Unspecified Vulnerabilities 01 - June11 (Windows) File : nvt/secpod_oracle_java_mult_unspecified_vuln_win01_jun11.nasl
2011-06-24	Name : Oracle Java SE Multiple Unspecified Vulnerabilities - June11 (Windows) File : nvt/secpod_oracle_java_mult_unspecified_vuln_win_jun11.nasl
2011-06-20	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-8003 File : nvt/gb_fedora_2011_8003_java-1.6.0-openjdk_fc14.nasl
2011-06-20	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-8020 File : nvt/gb_fedora_2011_8020_java-1.6.0-openjdk_fc13.nasl
2011-06-10	Name : RedHat Update for java-1.6.0-openjdk RHSA-2011:0857-01 File : nvt/gb_RHSA-2011_0857-01_java-1.6.0-openjdk.nasl
2011-06-06	Name : HP-UX Update for Java HPSBUX02685 File : nvt/gb_hp_ux_HPSBUX02685.nasl
2011-05-12	Name : Debian Security Advisory DSA 2224-1 (openjdk-6) File : nvt/deb_2224_1.nasl
2011-05-05	Name : HP-UX Update for Apache Web Server HPSBUX02645 File : nvt/gb_hp_ux_HPSBUX02645.nasl
2011-04-01	Name : Mandriva Update for java-1.6.0-openjdk MDVSA-2011:054 (java-1.6.0-openjdk) File : nvt/gb_mandriva_MDVSA_2011_054.nasl
2011-03-15	Name : RedHat Update for tomcat5 RHSA-2011:0336-01 File : nvt/gb_RHSA-2011_0336-01_tomcat5.nasl
2011-03-07	Name : Debian Security Advisory DSA 2161-1 (openjdk-6) File : nvt/deb_2161_1.nasl
2011-03-07	Name : Debian Security Advisory DSA 2161-2 (openjdk-6) File : nvt/deb_2161_2.nasl
2011-03-07	Name : Ubuntu Update for openjdk-6 vulnerabilities USN-1079-1 File : nvt/gb_ubuntu_USN_1079_1.nasl
2011-02-28	Name : SuSE Update for java-1_6_0-sun SUSE-SA:2011:010 File : nvt/gb_suse_2011_010.nasl
2011-02-28	Name : Oracle Java SE Code Execution Vulnerability (Windows) File : nvt/secpod_oracle_java_code_exec_vuln_win.nasl
2011-02-28	Name : Oracle Java SE Code Execution Vulnerability (Windows-01) File : nvt/secpod_oracle_java_code_exec_vuln_win01.nasl
2011-02-28	Name : Oracle Java SE Code Execution Vulnerabilities (Windows) File : nvt/secpod_oracle_java_mult_code_exec_vuln_win.nasl
2011-02-28	Name : Oracle Java SE Multiple Unspecified Vulnerabilities (Windows) File : nvt/secpod_oracle_java_mult_unspecified_vuln_win.nasl
2011-02-28	Name : Oracle Java SE Multiple Unspecified Vulnerabilities (Windows) File : nvt/secpod_oracle_java_mult_unspecified_vuln_win_feb11.nasl
2011-02-18	Name : RedHat Update for java-1.6.0-openjdk RHSA-2011:0281-01 File : nvt/gb_RHSA-2011_0281-01_java-1.6.0-openjdk.nasl
2011-02-18	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-1631 File : nvt/gb_fedora_2011_1631_java-1.6.0-openjdk_fc13.nasl
2011-02-18	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-1645 File : nvt/gb_fedora_2011_1645_java-1.6.0-openjdk_fc14.nasl
2011-02-16	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-1231 File : nvt/gb_fedora_2011_1231_java-1.6.0-openjdk_fc13.nasl
2011-02-16	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2011-1263 File : nvt/gb_fedora_2011_1263_java-1.6.0-openjdk_fc14.nasl
2011-02-11	Name : RedHat Update for java-1.6.0-openjdk RHSA-2011:0214-01 File : nvt/gb_RHSA-2011_0214-01_java-1.6.0-openjdk.nasl
0000-00-00	Name : FreeBSD Ports: opera, linux-opera File : nvt/freebsd_opera25.nasl
0000-00-00	Name : Java for Mac OS X 10.6 Update 6 And 10.7 Update 1 File : nvt/secpod_macosx_java_10_6_upd_6_and_10_7_upd_1.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
78114	Oracle GlassFish Server Hash Collission Form Parameter Parsing Remote DoS Oracle GlassFish Server contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends multiple crafted parameters which trigger hash collisions, and will result in loss of availability for the program via CPU consumption.
76513	Oracle Java SE JRE Deployment Component Unspecified Remote Information Disclo... Oracle Java SE contains a flaw related to the Deployment sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information. No further details have been provided.
76512	Oracle Java SE JRE JAXWS Component Unspecified Remote Information Disclosure Oracle Java SE contains a flaw related to the JAXWS sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information. No further details have been provided.
76511	Oracle Java SE JRE Networking Component Unspecified Remote Information Disclo... Oracle Java SE contains a flaw related to the Networking sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information. No further details have been provided.
76510	Oracle Java SE JRE HotSpot Component Unspecified Remote Information Disclosure Oracle Java SE contains a flaw related to the HotSpot sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information. No further details have been provided.
76509	Oracle Java SE JRE Deployment Component Unspecified Remote Issue (2011-3546) Oracle Java SE contains a flaw related to the Deployment sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information and manipulate unspecified data. No further details have been provided.
76508	Oracle Java SE JRE Component Unspecified Remote Issue (2011-3555) Oracle Java SE contains a flaw related to the Java Runtime Environment component that may allow a remote attacker to manipulate unspecified data and cause a denial of service. No further details have been provided.
76507	Oracle Java SE JRE JSSE Component Unspecified Remote Issue Oracle Java SE contains a flaw related to the JSSE sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information and manipulate unspecified data. No further details have been provided.
76506	Oracle Java SE JRE RMI Component Unspecified Remote Issue (2011-3557) Oracle Java SE contains a flaw related to the RMI sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
76505	Oracle Java SE JRE RMI Component Unspecified Remote Issue (2011-3556) Oracle Java SE contains a flaw related to the RMI sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
76504	Oracle Java SE JRE Deployment Component Unspecified Remote Issue (2011-3516) Oracle Java SE contains a flaw related to the Deployment sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
76503	Oracle Java SE JRE AWT Component Unspecified Remote Issue (2011-3550) Oracle Java SE contains a flaw related to the AWT sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
76502	Oracle Java SE JRE 2D Component Unspecified Remote Issue Oracle Java SE contains a flaw related to the 2D sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
76501	Oracle Java SE JRE Swing Component Unspecified Remote Issue Oracle Java SE contains a flaw related to the Swing sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
76500	Oracle Java SE JRE Rhino Javascript Error Parsing Input Sanitation Weakness R...
76499	Oracle Java SE JRE jsound.dll MixerSequencer.nAddControllerEventCallback Func...
76498	Oracle Java SE JRE Component Unspecified Remote Issue (2011-3554) Oracle Java SE contains a flaw related to the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
76497	Oracle Java SE JRE Networking Component java.net.Socket API UDP Socket Satura...
76496	Oracle Java SE JRE IIOP Deserialization Applet Handling Remote Code Execution
76495	Oracle Java SE JRE AWT Component Unspecified Remote Issue (2011-3548) Oracle Java SE contains a flaw related to the AWT sub-component within the Java Runtime Environment component that may allow a remote attacker to gain unauthorized access to unspecified information, manipulate unspecified data, and cause a denial of service. No further details have been provided.
74829	SSL Chained Initialization Vector CBC Mode MiTM Weakness
73176	Oracle Java SE / JRE AWT FileDialog.show() String Copy Overflow
73085	Oracle Java SE / JRE Deserialization Unspecified Remote Issue
73084	Oracle Java SE / JRE SAAJ Unspecified Remote Information Disclosure
73083	Oracle Java SE / JRE Networking Unspecified Remote Information Disclosure
73082	Oracle Java SE / JRE NIO Unspecified Remote DoS
73081	Oracle Java SE / JRE 2D Unspecified Remote Information Disclosure
73080	Oracle Java SE / JRE Java Web Start DLL Search Path Subversion Arbitrary DLL ...
73079	Oracle Java SE / JRE Java Web Start File Search Path Policy File Loading Remo...
73078	Oracle Java SE / JRE Java Web Start File Search Path Settings Files Loading R...
73077	Oracle Java SE / JRE Swing Unspecified Remote Code Execution
73076	Oracle Java SE / JRE Soundbank Pointer Dereference Overflow
73075	Oracle Java SE / JRE Soundbank Compressed Data Handling Overflow
73074	Oracle Java SE / JRE Hotspot Unspecified Remote Code Execution
73073	Oracle Java SE / JRE jnlp File Properties Handling Web Start Command Argument...
73072	Oracle Java SE / JRE JP2IEXP.dll Plugin Corrupted Window Procedure Hook Remot...
73071	Oracle Java SE / JRE AWT Unspecified Remote Code Execution
73070	Oracle Java SE / JRE 2D Unspecified Remote Code Execution
73069	Oracle Java SE / JRE ICC Profile Multiple Tag Parsing Memory Corruption
71623	Oracle Java SE / Java for Business DB Security Component Unspecified Local In...
71622	Oracle Java SE / Java for Business XML Digital Signature Unspecified Remote DoS
71621	Oracle Java SE / Java for Business Networking Unspecified Remote DoS
71620	Oracle Java SE / Java for Business Launcher Unspecified Local Issue
71619	Oracle Java SE / Java for Business JDBC Unspecified Remote Issue
71618	Oracle Java SE / Java for Business Deployment Unspecified Remote Information ...
71617	Oracle Java SE / Java for Business Deployment Unspecified Remote Information ...
71616	Oracle Java SE / Java for Business 2D Unspecified Remote Information Disclosure
71615	Oracle Java SE / Java for Business JAXP Unspecified Remote DoS
71614	Oracle Java SE / Java for Business Deployment Java Runtime WWW-Authenticate R...
71613	Oracle Java SE / Java for Business Install Unspecified Remote Compromise
71612	Oracle Java SE / Java for Business Deployment Unspecified Remote Compromise (...
71611	Oracle Java SE / Java for Business Sound Unspecified Remote Compromise (2010-...
71610	Oracle Java SE / Java for Business Hotspot Unspecified Remote Compromise
71609	Oracle Java SE / Java for Business Deployment Unspecified Remote Compromise (...
71608	Oracle Java SE / Java for Business Swing Clipboard Handle Arbitrary Command I...
71607	Oracle Java SE / Java for Business Deployment Java Webstart JNLP Extension Pe...
71606	Oracle Java SE / Java for Business Sound Component XGetSamplePtrFromSnd PV_Sw...
71605	Oracle Java SE / Java for Business Sound Unspecified Remote Compromise (2010-...
71193	Oracle Java SE / Java for Business sun.plugin2.applet.Applet2ClassLoader fin... Oracle Java contains a flaw related to the findClass method of the sun.plugin2.applet.Applet2ClassLoader class failing to properly validate URLS supplied by a trusted applet. This may allow a context-dependent attacker to use a crafted file or page to execute arbitrary code.
70965	Oracle Java SE / Java for Business Double.parseDouble Method Floating Point ... Oracle Java SE and Java for Business contain a flaw that may allow a remote denial of service. The issue is triggered when the 'Double.parseDouble' method in JRE allows remote attackers to trigger an infinite loop with a crafted string, resulting in a denial of service.

Information Assurance Vulnerability Management (IAVM)

Date	Description
2014-02-27	IAVM : 2014-A-0030 - Apple Mac OS X Security Update 2014-001 Severity : Category I - VMSKEY : V0044547
2013-10-17	IAVM : 2013-A-0199 - Multiple Vulnerabilities in Oracle Fusion Middleware Severity : Category I - VMSKEY : V0040786
2012-09-13	IAVM : 2012-A-0147 - Multiple Vulnerabilities in VMware vCenter Server 4.1 Severity : Category I - VMSKEY : V0033793
2012-09-13	IAVM : 2012-A-0148 - Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1 Severity : Category I - VMSKEY : V0033794
2012-08-16	IAVM : 2012-A-0136 - Multiple Vulnerabilities in Juniper Network Management Products Severity : Category I - VMSKEY : V0033662
2012-05-03	IAVM : 2012-B-0048 - Multiple Vulnerabilities in HP Systems Insight Manager Severity : Category I - VMSKEY : V0032178
2012-03-29	IAVM : 2012-A-0048 - Multiple Vulnerabilities in VMware vCenter Update Manager 5.0 Severity : Category I - VMSKEY : V0031901
2012-01-13	IAVM : 2012-B-0006 - Microsoft SSL/TLS Information Disclosure Vulnerability Severity : Category I - VMSKEY : V0031054
2011-12-15	IAVM : 2011-A-0173 - Multiple Vulnerabilities in VMware ESX 4.0 Severity : Category I - VMSKEY : V0030824
2011-12-01	IAVM : 2011-A-0160 - Multiple Vulnerabilities in VMware vCenter Server 4.0 and vCenter Update Mana... Severity : Category I - VMSKEY : V0030769

Snort® IPS/IDS

Date	Description
2015-04-30	Nuclear exploit kit obfuscated file download RuleID : 33983 - Revision : 5 - Type : EXPLOIT-KIT
2015-04-30	Nuclear exploit kit landing page detected RuleID : 33982 - Revision : 3 - Type : EXPLOIT-KIT
2014-11-16	Oracle Java Web Start arbitrary command execution attempt RuleID : 31946 - Revision : 2 - Type : FILE-JAVA
2014-03-13	Java FileDialog heap buffer overflow attempt RuleID : 29643 - Revision : 3 - Type : MALWARE-OTHER
2014-03-13	Java FileDialog heap buffer overflow attempt RuleID : 29642 - Revision : 3 - Type : MALWARE-OTHER
2014-03-13	Java FileDialog heap buffer overflow attempt RuleID : 29641 - Revision : 2 - Type : MALWARE-OTHER
2014-03-13	Java FileDialog heap buffer overflow attempt RuleID : 29640 - Revision : 2 - Type : MALWARE-OTHER
2014-03-06	Oracle Java Rhino script engine remote code execution attempt RuleID : 29535 - Revision : 4 - Type : FILE-JAVA
2014-02-21	Styx exploit kit eot outbound connection RuleID : 29453 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit landing page request RuleID : 29452 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit outbound jar request RuleID : 29451 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit outbound connection attempt RuleID : 29450 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit landing page RuleID : 29449 - Revision : 3 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit landing page RuleID : 29448 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit jar outbound connection RuleID : 29446 - Revision : 9 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit fonts download page RuleID : 29445 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-30	Stamp exploit kit PDF exploit retrieval attempt RuleID : 29131 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-30	Stamp exploit kit malicious payload download attempt RuleID : 29130 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-30	Stamp exploit kit jar exploit download - specific structure RuleID : 29129 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-30	Stamp exploit kit plugin detection page RuleID : 29128 - Revision : 2 - Type : EXPLOIT-KIT
2018-06-15	Goon/Infinity exploit kit payload download attempt RuleID : 28795-community - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Goon/Infinity exploit kit payload download attempt RuleID : 28795 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page request RuleID : 28478 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit outbound pdf request RuleID : 28477 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Himan exploit kit payload - Oracle Java compromise RuleID : 28310 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Himan exploit kit landing page RuleID : 28307 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - readme.dll RuleID : 27898 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - calc.dll RuleID : 27897 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - contacts.dll RuleID : 27896 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - info.dll RuleID : 27895 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - about.dll RuleID : 27894 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit malicious redirection attempt RuleID : 27815 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page request RuleID : 27814 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page with payload RuleID : 27813 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit possible jar download RuleID : 27706 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit Java exploit requested RuleID : 27705 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit Java exploit requested RuleID : 27704 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit plugin detection RuleID : 27703 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit landing page RuleID : 27702 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da Jar file download RuleID : 27701 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	iFramer toolkit injected iframe detected - specific structure RuleID : 27271 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Private exploit kit outbound traffic RuleID : 27144-community - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Private exploit kit outbound traffic RuleID : 27144 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Private exploit kit landing page RuleID : 27143 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Private exploit kit landing page RuleID : 27142 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Private exploit kit landing page RuleID : 27141 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Private exploit kit numerically named exe file dowload RuleID : 27140 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Nailed exploit kit rhino remote code execution exploit download - autopwn RuleID : 27084 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 27072 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 27071 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit JNLP request RuleID : 27070 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific structure RuleID : 27067 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jovf RuleID : 27042-community - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jovf RuleID : 27042 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jlnp RuleID : 27041-community - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jlnp RuleID : 27041 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jorg RuleID : 27040-community - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jorg RuleID : 27040 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Goon/Infinity/Redkit exploit kit short jar request RuleID : 26808 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26807 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit short JNLP request RuleID : 26806 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit encrypted binary download RuleID : 26805 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit landing page - specific structure RuleID : 26653 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	iFramer injection - specific structure RuleID : 26617 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Impact/Stamp exploit kit landing page RuleID : 26600 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Impact/Stamp exploit kit landing page RuleID : 26599 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit successful redirection - jnlp bypass RuleID : 26541 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	iFramer injection - specific structure RuleID : 26540 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Sakura exploit kit pdf download detection RuleID : 26539 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Sakura exploit kit landing page received RuleID : 26538 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Sakura exploit kit jar download detection RuleID : 26537 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Stamp exploit kit landing page RuleID : 26536 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit landing page - specific structure RuleID : 26535 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java payload detection RuleID : 26512 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Sakura exploit kit redirection structure RuleID : 26511 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf payload detection RuleID : 26510 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit java payload detection RuleID : 26509 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - info.dll RuleID : 26508 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page - specific structure RuleID : 26507 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit jar file redirection RuleID : 26506 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit jar file downloaded RuleID : 26434 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26384 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26383 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit java exploit request RuleID : 26377 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page redirection RuleID : 26351 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	TDS redirection - may lead to exploit kit RuleID : 26350 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit obfuscated portable executable RuleID : 26349 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit java exploit delivery RuleID : 26348 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit java exploit request RuleID : 26347 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit payload requested RuleID : 26346 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26345 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page redirection RuleID : 26344 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Nuclear exploit kit landing page RuleID : 26343 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Nuclear exploit kit landing page - specific structure RuleID : 26342 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Nuclear exploit kit landing page RuleID : 26341 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval - ff.php RuleID : 26339 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	IFRAMEr injection detection - leads to exploit kit RuleID : 26338 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page - specific structure RuleID : 26337 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit redirection page RuleID : 26297 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page RuleID : 26296 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Watering Hole Campaign applet download RuleID : 26295 - Revision : 6 - Type : FILE-OTHER
2014-01-10	Cool exploit kit malicious jar download RuleID : 26256 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit redirection page RuleID : 26254 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 26253 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit MyApplet class retrieval RuleID : 26229 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit redirection page RuleID : 26228 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 26227 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Crimeboss exploit kit redirection attempt RuleID : 26226 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Gmbal package sandbox breach attempt RuleID : 26186 - Revision : 7 - Type : FILE-JAVA
2014-01-10	Oracle Java Gmbal package sandbox breach attempt RuleID : 26185 - Revision : 7 - Type : FILE-JAVA
2014-01-10	Cool exploit kit landing page RuleID : 26091 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page RuleID : 26090 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit Portable Executable download RuleID : 26056 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26055 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26054 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26053 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26052 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious jar file download RuleID : 26051 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit SWF file download RuleID : 26050 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 26049 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit PDF exploit RuleID : 26048 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit redirection structure RuleID : 26047 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 26046 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit iframe redirection attempt RuleID : 26033 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page RuleID : 26031 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit redirection page received RuleID : 26013 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 25989 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 25988 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit three number PDF Request RuleID : 25972 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit redirection RuleID : 25971 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit Portable Executable download RuleID : 25968 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25967 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25966 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25965 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25964 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit SWF file download RuleID : 25963 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25962 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit former location - has been removed RuleID : 25960 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25959 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25958 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25957 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25956 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious jar file download RuleID : 25955 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit SWF file download RuleID : 25954 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 25953 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 25952 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25951 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit PDF exploit RuleID : 25950 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25862 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25861 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 25860 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious jar file download RuleID : 25859 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit Java exploit download RuleID : 25858 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit PDF exploit RuleID : 25857 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Whitehole exploit kit landing page RuleID : 25806 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Whitehole exploit kit Java exploit retrieval RuleID : 25805 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Whitehole exploit kit malicious jar download attempt RuleID : 25804 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit 32-alpha jar request RuleID : 25798 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection successful RuleID : 25611 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25598 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25597 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25596 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25595 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25594 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25593 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page - specific structure RuleID : 25591 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific structure RuleID : 25590 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25576 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25575 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25574 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25573 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page RuleID : 25569 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 25568 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Multiple Exploit Kit Payload detection - setup.exe RuleID : 25526 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25510 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25509 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25508 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25507 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25506 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25505 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Rhino script engine remote code execution attempt RuleID : 25392 - Revision : 8 - Type : FILE-JAVA
2014-01-10	Sweet Orange exploit kit obfuscated payload download RuleID : 25391 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Sweet Orange exploit kit landing page - specific structure RuleID : 25390 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Sweet Orange exploit kit landing page - specific structure RuleID : 25389 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection successful RuleID : 25388 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - readme.exe RuleID : 25387 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - about.exe RuleID : 25386 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - calc.exe RuleID : 25385 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - contacts.exe RuleID : 25384 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - info.exe RuleID : 25383 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit malicious jar file dropped RuleID : 25382 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25328 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25327 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25326 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25325 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page detected RuleID : 25324 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25323 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25322 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit redirection attempt RuleID : 25255 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit portable executable download request RuleID : 25140 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit eot outbound connection RuleID : 25139 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit pdf outbound connection RuleID : 25138 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit jar outbound connection RuleID : 25137 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection RuleID : 25136 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Styx Exploit Kit outbound connection RuleID : 25135 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 32-bit font file download RuleID : 25056 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 64-bit font file download RuleID : 25055 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit outbound class retrieval RuleID : 25053 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit Java Exploit requested - 3 digit RuleID : 25052 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page redirection RuleID : 25051 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit requesting payload RuleID : 25045 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Sweet Orange exploit kit landing page - specific structure RuleID : 25044 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit url structure detected RuleID : 25043 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Applet remote code execution attempt RuleID : 24993 - Revision : 9 - Type : FILE-JAVA
2014-01-10	Oracle Java Runtime true type font idef opcode heap buffer overflow attempt RuleID : 24915 - Revision : 8 - Type : FILE-JAVA
2014-01-10	Nuclear exploit kit landing page detected RuleID : 24888 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page in an email RuleID : 24865 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific-structure RuleID : 24864 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page in an email RuleID : 24863 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific-structure RuleID : 24862 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page in an email RuleID : 24861 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific-structure RuleID : 24860 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Sweet Orange exploit kit landing page - JAR redirection RuleID : 24840 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Sweet Orange exploit kit landing page - specific structure RuleID : 24839 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Sweet Orange User-Agent - contype RuleID : 24838 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Sweet Orange initial landing page RuleID : 24837 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	KaiXin exploit kit Java Class download RuleID : 24793 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 64-bit font file download RuleID : 24784 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 32-bit font file download RuleID : 24783 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit outbound request RuleID : 24782 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit outbound request RuleID : 24781 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit - PDF Exploit RuleID : 24780 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit - PDF Exploit RuleID : 24779 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page - Title RuleID : 24778 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Runtime true type font idef opcode heap buffer overflow attempt RuleID : 24701 - Revision : 12 - Type : FILE-JAVA
2014-01-10	KaiXin exploit kit attack vector attempt RuleID : 24670 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	KaiXin exploit kit attack vector attempt RuleID : 24669 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	KaiXin exploit kit attack vector attempt RuleID : 24668 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	KaiXin exploit kit attack vector attempt RuleID : 24667 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection successful RuleID : 24638 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection page - specific structure RuleID : 24637 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection page - specific structure RuleID : 24636 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page download attempt RuleID : 24608 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page received - specific structure RuleID : 24593 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page download attempt RuleID : 24548 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page download attempt RuleID : 24547 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page download attempt RuleID : 24546 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole admin page outbound access attempt RuleID : 24544 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole admin page inbound access attempt RuleID : 24543 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java XGetSamplePtrFromSnd memory corruption attempt RuleID : 24511 - Revision : 8 - Type : FILE-JAVA
2014-01-10	Oracle Java XGetSamplePtrFromSnd memory corruption attempt RuleID : 24510 - Revision : 6 - Type : FILE-JAVA
2014-01-10	Blackholev2 exploit kit fallback executable download RuleID : 24501 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole - Cookie Set RuleID : 24475 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Crimeboss exploit kit outbound connection RuleID : 24234 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Crimeboss exploit kit outbound connection RuleID : 24233 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Crimeboss exploit kit outbound connection RuleID : 24232 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Crimeboss exploit kit redirection attempt RuleID : 24231 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page Received RuleID : 24228 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 - URI Structure RuleID : 24227 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page received RuleID : 24226 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole possible email Landing to 8 chr folder RuleID : 24171 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure RuleID : 24054 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure RuleID : 24053 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - fewbgazr catch RuleID : 23962 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - hwehes RuleID : 23850 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole redirection attempt RuleID : 23849 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole redirection attempt RuleID : 23848 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole redirection page RuleID : 23797 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - Math.round catch RuleID : 23786 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - Math.floor catch RuleID : 23785 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 23781 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page request - tkr RuleID : 23622 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch ... RuleID : 23619 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Zip file directory record overflow attempt RuleID : 23560 - Revision : 8 - Type : FILE-JAVA
2014-01-10	Oracle Java MixerSequencer RMF MIDI structure handling exploit attempt RuleID : 23490 - Revision : 8 - Type : FILE-MULTIMEDIA
2014-01-10	Oracle Java Zip file directory record overflow attempt RuleID : 23243 - Revision : 13 - Type : FILE-JAVA
2014-01-10	Redkit exploit kit landing page Received - applet and flowbit RuleID : 23225 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page Requested - 8Digit.html RuleID : 23224 - Revision : 13 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page Received - applet and code RuleID : 23223 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page Received - applet and 5 digit jar attempt RuleID : 23222 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Redkit Jar File Naming Algorithm RuleID : 23221 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit Java Exploit Requested - 5 digit jar RuleID : 23220 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit Java Exploit request to .class file RuleID : 23219 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Redkit Repeated Exploit Request Pattern RuleID : 23218 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page download attempt RuleID : 23159 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 23158 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Nuclear Pack exploit kit binary download RuleID : 23157 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Nuclear Pack exploit kit landing page RuleID : 23156 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Rhino script engine remote code execution attempt RuleID : 23008 - Revision : 9 - Type : FILE-JAVA
2014-01-10	Blackhole redirection attempt RuleID : 22949 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole Exploit Kit javascript service method RuleID : 22088 - Revision : 12 - Type : EXPLOIT-KIT
2014-01-10	Blackhole landing redirection page RuleID : 22041 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole suspected landing page RuleID : 22040 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole suspected landing page RuleID : 22039 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit landing page with specific structure - Loading RuleID : 21876 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Possible exploit kit post compromise activity - taskkill RuleID : 21875 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Possible exploit kit post compromise activity - StrReverse RuleID : 21874 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Java JRE sandbox breach attempt RuleID : 21869 - Revision : 8 - Type : FILE-OTHER
2014-01-10	Phoenix exploit kit post-compromise behavior RuleID : 21860 - Revision : 5 - Type : MALWARE-CNC
2014-01-10	Java exploit kit iframe drive by attempt RuleID : 21668 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21667 - Revision : 11 - Type : FILE-JAVA
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21666 - Revision : 11 - Type : FILE-JAVA
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21665 - Revision : 9 - Type : FILE-JAVA
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21664 - Revision : 9 - Type : FILE-JAVA
2014-01-10	Blackhole exploit kit landing page with specific structure - catch RuleID : 21661 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page Requested - /Index/index.php RuleID : 21660 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page Requested - /Home/index.php RuleID : 21659 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 21658 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page - specific structure RuleID : 21657 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21646-community - Revision : 16 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21646 - Revision : 16 - Type : EXPLOIT-KIT
2014-01-10	Phoenix exploit kit landing page RuleID : 21640 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - BBB RuleID : 21581 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific header RuleID : 21549 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific header RuleID : 21539 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Sakura exploit kit rhino jar request RuleID : 21509 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21492-community - Revision : 22 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21492 - Revision : 22 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Web Start arbitrary command execution attempt RuleID : 21481 - Revision : 14 - Type : FILE-JAVA
2014-01-10	Blackhole exploit kit JavaScript carat string splitting with hostile applet RuleID : 21438-community - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit JavaScript carat string splitting with hostile applet RuleID : 21438 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit URL - search.php?page= RuleID : 21348 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit URL - .php?page= RuleID : 21347 - Revision : 12 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit malicious jar download RuleID : 21346 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit malicious jar request RuleID : 21345 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit pdf download RuleID : 21344 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit pdf request RuleID : 21343 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit response RuleID : 21259 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit control panel access RuleID : 21141 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Eleanore exploit kit post-exploit page request RuleID : 21071 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Eleanore exploit kit pdf exploit page request RuleID : 21070 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Eleanore exploit kit exploit fetch request RuleID : 21069 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Eleanore exploit kit landing page RuleID : 21068 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Java Applet Rhino script engine remote code execution attempt RuleID : 21057 - Revision : 9 - Type : FILE-OTHER
2014-01-10	Blackhole exploit kit landing page RuleID : 21045 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 21044 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit post-compromise download attempt - .php?e= RuleID : 21043 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit post-compromise download attempt - .php?f= RuleID : 21042 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit URL - main.php?page= RuleID : 21041 - Revision : 12 - Type : EXPLOIT-KIT
2014-01-10	Yang Pack yg.htm landing page RuleID : 21006 - Revision : 5 - Type : MALWARE-CNC
2014-01-10	Oracle Java Applet Rhino script engine remote code execution attempt RuleID : 20831 - Revision : 12 - Type : FILE-JAVA
2014-01-10	Oracle Java Applet remote code execution attempt RuleID : 20622 - Revision : 18 - Type : FILE-JAVA
2014-01-10	SSL CBC encryption mode weakness brute force attempt RuleID : 20212 - Revision : 11 - Type : SERVER-OTHER
2014-01-10	Oracle Java Applet2ClassLoader Remote Code Execution RuleID : 18679 - Revision : 10 - Type : SERVER-OTHER
2014-01-10	Java floating point number denial of service - via POST RuleID : 18471 - Revision : 8 - Type : SERVER-WEBAPP
2014-01-10	Java floating point number denial of service - via URI RuleID : 18470 - Revision : 9 - Type : SERVER-WEBAPP
2014-01-10	Oracle Java Web Start arbitrary command execution attempt RuleID : 16585 - Revision : 5 - Type : WEB-CLIENT

Nessus® Vulnerability Scanner

Date	Description
2016-03-04	Name : The remote VMware ESX / ESXi host is missing a security-related patch. File : vmware_VMSA-2011-0013_remote.nasl - Type : ACT_GATHER_INFO
2016-03-03	Name : The remote VMware ESXi / ESX host is missing a security-related patch. File : vmware_VMSA-2012-0005_remote.nasl - Type : ACT_GATHER_INFO
2016-02-12	Name : A telephony application running on the remote host is affected by multiple vu... File : asterisk_ast_2016_003.nasl - Type : ACT_GATHER_INFO
2016-02-05	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_559f3d1bcb1d11e580a4001999f8d30b.nasl - Type : ACT_GATHER_INFO
2016-01-25	Name : The remote Debian host is missing a security update. File : debian_DLA-400.nasl - Type : ACT_GATHER_INFO
2015-03-26	Name : The remote Debian host is missing a security update. File : debian_DLA-154.nasl - Type : ACT_GATHER_INFO
2015-01-27	Name : The remote web server is affected by an information disclosure vulnerability. File : oracle_http_server_cpu_jan_2015_ldap.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_fetchmail_20121016.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_python_20130410.nasl - Type : ACT_GATHER_INFO
2014-12-12	Name : The remote VMware ESXi 5.1 host is affected by multiple vulnerabilities. File : vmware_esxi_5_1_build_2323236_remote.nasl - Type : ACT_GATHER_INFO
2014-11-12	Name : The remote Fedora host is missing a security update. File : fedora_2014-13777.nasl - Type : ACT_GATHER_INFO
2014-11-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1080.nasl - Type : ACT_GATHER_INFO
2014-11-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-1455.nasl - Type : ACT_GATHER_INFO
2014-11-07	Name : The remote Fedora host is missing a security update. File : fedora_2014-13764.nasl - Type : ACT_GATHER_INFO
2014-07-22	Name : The remote Windows host contains a programming platform that is affected by m... File : oracle_jrockit_cpu_apr_2012.nasl - Type : ACT_GATHER_INFO
2014-06-30	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201406-32.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2011-100.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-136.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-302.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-76.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_icedtea-web-110627.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_java-1_6_0-openjdk-110228.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_java-1_6_0-openjdk-111025.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_java-1_6_0-sun-110217.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_java-1_6_0-sun-110608.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_java-1_6_0-sun-111024.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_nss-201112-111220.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_opera-110906.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_curl-120124.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_icedtea-web-110627.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_java-1_6_0-openjdk-111025.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_java-1_6_0-openjdk-120222.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_java-1_6_0-sun-110314.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_java-1_6_0-sun-110608.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_java-1_6_0-sun-111024.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_nss-201112-111220.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_opera-110906.nasl - Type : ACT_GATHER_INFO
2014-02-25	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_SecUpd2014-001.nasl - Type : ACT_GATHER_INFO
2014-02-07	Name : The remote mail server is affected by an information disclosure vulnerability. File : kerio_connect_810.nasl - Type : ACT_GATHER_INFO
2014-01-27	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201401-30.nasl - Type : ACT_GATHER_INFO
2013-10-23	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_10_9.nasl - Type : ACT_GATHER_INFO
2013-10-16	Name : The remote database server is affected by multiple vulnerabilities. File : oracle_rdbms_cpu_oct_2013.nasl - Type : ACT_GATHER_INFO
2013-09-13	Name : The remote host is affected by multiple vulnerabilities. File : juniper_nsm_psn_2012_08_689.nasl - Type : ACT_GATHER_INFO
2013-09-04	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2011-10.nasl - Type : ACT_GATHER_INFO
2013-09-04	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2012-43.nasl - Type : ACT_GATHER_INFO
2013-07-23	Name : The remote web server is affected by multiple vulnerabilities. File : hpsmh_7_2_1_0.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0214.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0281.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0335.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0336.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0856.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0857.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1380.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0135.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0322.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-1088.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2012-1089.nasl - Type : ACT_GATHER_INFO
2013-06-05	Name : The remote host has a virtualization management application installed that is... File : vmware_vcenter_vmsa-2012-0013.nasl - Type : ACT_GATHER_INFO
2013-04-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2013-037.nasl - Type : ACT_GATHER_INFO
2013-03-09	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1079-2.nasl - Type : ACT_GATHER_INFO
2013-03-09	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1079-3.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote Unix host contains a programming platform that is affected by mult... File : oracle_java_cpu_feb_2011_unix.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote Unix host contains a programming platform that is affected by mult... File : oracle_java_cpu_feb_2012_unix.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote Unix host contains a programming platform that is affected by mult... File : oracle_java_cpu_jun_2011_unix.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote Unix host contains a programming platform that is affected by mult... File : oracle_java_cpu_oct_2011_unix.nasl - Type : ACT_GATHER_INFO
2013-01-25	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_4_2-ibm-120529.nasl - Type : ACT_GATHER_INFO
2013-01-25	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-ibm-120427.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0880.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0702.nasl - Type : ACT_GATHER_INFO
2013-01-08	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201301-01.nasl - Type : ACT_GATHER_INFO
2012-11-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1467.nasl - Type : ACT_GATHER_INFO
2012-09-20	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_10_7_5.nasl - Type : ACT_GATHER_INFO
2012-09-20	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_SecUpd2012-004.nasl - Type : ACT_GATHER_INFO
2012-09-06	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-097.nasl - Type : ACT_GATHER_INFO
2012-09-06	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-149.nasl - Type : ACT_GATHER_INFO
2012-08-30	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_18ce9a90f26911e1be53080027ef73ec.nasl - Type : ACT_GATHER_INFO
2012-08-03	Name : The remote host has an application installed that is affected by multiple vul... File : macosx_xcode_4_4.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110210_java_1_6_0_openjdk_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110217_java_1_6_0_openjdk_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110217_java__jdk_1_6_0__on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110309_tomcat5_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110309_tomcat6_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110608_java_1_6_0_openjdk_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110608_java_1_6_0_openjdk_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110621_java__jdk_1_6_0__on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20111018_java_1_6_0_openjdk_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20111019_java_1_6_0_sun_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120214_java_1_6_0_openjdk_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120216_java_1_6_0_sun_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120221_java_1_6_0_openjdk_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-07-18	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-1088.nasl - Type : ACT_GATHER_INFO
2012-07-18	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2012-1089.nasl - Type : ACT_GATHER_INFO
2012-07-18	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1088.nasl - Type : ACT_GATHER_INFO
2012-07-18	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1089.nasl - Type : ACT_GATHER_INFO
2012-06-21	Name : The remote database server is affected by multiple denial of service vulnerab... File : db2_9fp11.nasl - Type : ACT_GATHER_INFO
2012-06-21	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-096.nasl - Type : ACT_GATHER_INFO
2012-06-20	Name : The remote Fedora host is missing a security update. File : fedora_2012-9135.nasl - Type : ACT_GATHER_INFO
2012-06-15	Name : The remote Windows host contains software that is affected by multiple vulner... File : hp_systems_insight_manager_700_multiple_vulns.nasl - Type : ACT_GATHER_INFO
2012-06-14	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_4_2-ibm-8151.nasl - Type : ACT_GATHER_INFO
2012-05-10	Name : The remote host is missing a Mac OS X update that fixes several security issues. File : macosx_10_7_4.nasl - Type : ACT_GATHER_INFO
2012-05-10	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_SecUpd2012-002.nasl - Type : ACT_GATHER_INFO
2012-05-07	Name : The remote Fedora host is missing a security update. File : fedora_2012-5785.nasl - Type : ACT_GATHER_INFO
2012-05-07	Name : The remote Fedora host is missing one or more security updates. File : fedora_2012-5924.nasl - Type : ACT_GATHER_INFO
2012-05-04	Name : The remote Fedora host is missing a security update. File : fedora_2012-5916.nasl - Type : ACT_GATHER_INFO
2012-05-02	Name : The remote Fedora host is missing one or more security updates. File : fedora_2012-5892.nasl - Type : ACT_GATHER_INFO
2012-04-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0514.nasl - Type : ACT_GATHER_INFO
2012-04-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0508.nasl - Type : ACT_GATHER_INFO
2012-04-16	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-058.nasl - Type : ACT_GATHER_INFO
2012-04-16	Name : It may be possible to obtain sensitive information from the remote host with ... File : ssl3_tls1_iv_impl_info_disclosure.nasl - Type : ACT_GATHER_INFO
2012-04-05	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_6_update7.nasl - Type : ACT_GATHER_INFO
2012-04-05	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_7_2012-001.nasl - Type : ACT_GATHER_INFO
2012-03-16	Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2012-0005.nasl - Type : ACT_GATHER_INFO
2012-03-09	Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2012-0003.nasl - Type : ACT_GATHER_INFO
2012-03-06	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201203-02.nasl - Type : ACT_GATHER_INFO
2012-03-01	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1373-2.nasl - Type : ACT_GATHER_INFO
2012-02-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2420.nasl - Type : ACT_GATHER_INFO
2012-02-29	Name : The remote Fedora host is missing a security update. File : fedora_2012-2595.nasl - Type : ACT_GATHER_INFO
2012-02-29	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-ibm-120223.nasl - Type : ACT_GATHER_INFO
2012-02-28	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-openjdk-120220.nasl - Type : ACT_GATHER_INFO
2012-02-27	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1373-1.nasl - Type : ACT_GATHER_INFO
2012-02-24	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_4_2-ibm-120105.nasl - Type : ACT_GATHER_INFO
2012-02-22	Name : The remote Fedora host is missing a security update. File : fedora_2012-1721.nasl - Type : ACT_GATHER_INFO
2012-02-22	Name : The remote web server is affected by a denial of service vulnerability. File : glassfish_cve-2011-5035.nasl - Type : ACT_GATHER_INFO
2012-02-22	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0322.nasl - Type : ACT_GATHER_INFO
2012-02-20	Name : The remote Fedora host is missing a security update. File : fedora_2012-1711.nasl - Type : ACT_GATHER_INFO
2012-02-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-021.nasl - Type : ACT_GATHER_INFO
2012-02-17	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0139.nasl - Type : ACT_GATHER_INFO
2012-02-16	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-0135.nasl - Type : ACT_GATHER_INFO
2012-02-16	Name : The remote Fedora host is missing a security update. File : fedora_2012-1690.nasl - Type : ACT_GATHER_INFO
2012-02-15	Name : The remote Windows host contains a programming platform that is affected by m... File : oracle_java_cpu_feb_2012.nasl - Type : ACT_GATHER_INFO
2012-02-15	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0135.nasl - Type : ACT_GATHER_INFO
2012-02-02	Name : The remote host is missing a Mac OS X update that fixes several security vuln... File : macosx_10_7_3.nasl - Type : ACT_GATHER_INFO
2012-02-02	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_SecUpd2012-001.nasl - Type : ACT_GATHER_INFO
2012-01-31	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2398.nasl - Type : ACT_GATHER_INFO
2012-01-25	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_4_2-ibm-7908.nasl - Type : ACT_GATHER_INFO
2012-01-25	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1263-2.nasl - Type : ACT_GATHER_INFO
2012-01-24	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_6_0-ibm-7926.nasl - Type : ACT_GATHER_INFO
2012-01-23	Name : The remote Fedora host is missing one or more security updates. File : fedora_2011-17399.nasl - Type : ACT_GATHER_INFO
2012-01-19	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0034.nasl - Type : ACT_GATHER_INFO
2012-01-12	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2358.nasl - Type : ACT_GATHER_INFO
2012-01-12	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2368.nasl - Type : ACT_GATHER_INFO
2012-01-10	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0006.nasl - Type : ACT_GATHER_INFO
2012-01-10	Name : It may be possibe to obtain sensitive information from the remote Windows hos... File : smb_nt_ms12-006.nasl - Type : ACT_GATHER_INFO
2011-12-23	Name : The remote Fedora host is missing one or more security updates. File : fedora_2011-17400.nasl - Type : ACT_GATHER_INFO
2011-12-14	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_a4a809d825c811e1b53100215c6a37bb.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_4_2-ibm-7440.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_4_2-ibm-7698.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_5_0-ibm-7650.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_5_0-ibm-7862.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_6_0-ibm-7443.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_6_0-ibm-7627.nasl - Type : ACT_GATHER_INFO
2011-12-07	Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : opera_1160.nasl - Type : ACT_GATHER_INFO
2011-12-02	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2356.nasl - Type : ACT_GATHER_INFO
2011-11-26	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1478.nasl - Type : ACT_GATHER_INFO
2011-11-23	Name : The remote database server is affected by multiple denial of service vulnerab... File : db2_97fp5.nasl - Type : ACT_GATHER_INFO
2011-11-17	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1263-1.nasl - Type : ACT_GATHER_INFO
2011-11-14	Name : The remote Fedora host is missing a security update. File : fedora_2011-15555.nasl - Type : ACT_GATHER_INFO
2011-11-14	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-170.nasl - Type : ACT_GATHER_INFO
2011-11-09	Name : The remote host has a version of Java installed that is affected by multiple ... File : macosx_java_10_6_update6.nasl - Type : ACT_GATHER_INFO
2011-11-09	Name : The remote host has a version of Java installed that is affected by multiple ... File : macosx_java_10_7_update1.nasl - Type : ACT_GATHER_INFO
2011-11-07	Name : The remote Fedora host is missing a security update. File : fedora_2011-15020.nasl - Type : ACT_GATHER_INFO
2011-11-07	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201111-02.nasl - Type : ACT_GATHER_INFO
2011-10-28	Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2011-0013.nasl - Type : ACT_GATHER_INFO
2011-10-20	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-1380.nasl - Type : ACT_GATHER_INFO
2011-10-20	Name : The remote Windows host contains a programming platform that is affected by m... File : oracle_java_cpu_oct_2011.nasl - Type : ACT_GATHER_INFO
2011-10-20	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1384.nasl - Type : ACT_GATHER_INFO
2011-10-19	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1380.nasl - Type : ACT_GATHER_INFO
2011-09-28	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2311.nasl - Type : ACT_GATHER_INFO
2011-09-01	Name : The remote host contains a web browser that is affected by multiple vulnerabi... File : opera_1151.nasl - Type : ACT_GATHER_INFO
2011-08-30	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12819.nasl - Type : ACT_GATHER_INFO
2011-08-30	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_4_2-ibm-110818.nasl - Type : ACT_GATHER_INFO
2011-08-30	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_4_2-ibm-7697.nasl - Type : ACT_GATHER_INFO
2011-08-16	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-126.nasl - Type : ACT_GATHER_INFO
2011-08-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1159.nasl - Type : ACT_GATHER_INFO
2011-08-05	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12810.nasl - Type : ACT_GATHER_INFO
2011-08-03	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_5_0-ibm-7649.nasl - Type : ACT_GATHER_INFO
2011-07-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1087.nasl - Type : ACT_GATHER_INFO
2011-07-19	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-ibm-110713.nasl - Type : ACT_GATHER_INFO
2011-07-19	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_6_0-ibm-7626.nasl - Type : ACT_GATHER_INFO
2011-07-15	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0938.nasl - Type : ACT_GATHER_INFO
2011-06-29	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_5_update10.nasl - Type : ACT_GATHER_INFO
2011-06-29	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_6_update5.nasl - Type : ACT_GATHER_INFO
2011-06-20	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1154-1.nasl - Type : ACT_GATHER_INFO
2011-06-16	Name : The remote Fedora host is missing a security update. File : fedora_2011-8020.nasl - Type : ACT_GATHER_INFO
2011-06-16	Name : The remote Fedora host is missing a security update. File : fedora_2011-8028.nasl - Type : ACT_GATHER_INFO
2011-06-15	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-sun-110609.nasl - Type : ACT_GATHER_INFO
2011-06-14	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0857.nasl - Type : ACT_GATHER_INFO
2011-06-12	Name : The remote Fedora host is missing a security update. File : fedora_2011-8003.nasl - Type : ACT_GATHER_INFO
2011-06-09	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0856.nasl - Type : ACT_GATHER_INFO
2011-06-09	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0857.nasl - Type : ACT_GATHER_INFO
2011-06-09	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0860.nasl - Type : ACT_GATHER_INFO
2011-06-08	Name : The remote Windows host contains a programming platform that is affected by m... File : oracle_java_cpu_jun_2011.nasl - Type : ACT_GATHER_INFO
2011-05-13	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12706.nasl - Type : ACT_GATHER_INFO
2011-05-13	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_4_2-ibm-110504.nasl - Type : ACT_GATHER_INFO
2011-05-06	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0490.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_java-1_6_0-openjdk-110228.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_java-1_6_0-sun-110217.nasl - Type : ACT_GATHER_INFO
2011-04-21	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2224.nasl - Type : ACT_GATHER_INFO
2011-04-15	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0214.nasl - Type : ACT_GATHER_INFO
2011-04-15	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0281.nasl - Type : ACT_GATHER_INFO
2011-04-15	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0336.nasl - Type : ACT_GATHER_INFO
2011-04-01	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12691.nasl - Type : ACT_GATHER_INFO
2011-03-28	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-054.nasl - Type : ACT_GATHER_INFO
2011-03-22	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-ibm-110307.nasl - Type : ACT_GATHER_INFO
2011-03-22	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_6_0-ibm-7369.nasl - Type : ACT_GATHER_INFO
2011-03-21	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_5_0-ibm-7350.nasl - Type : ACT_GATHER_INFO
2011-03-18	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0364.nasl - Type : ACT_GATHER_INFO
2011-03-17	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0357.nasl - Type : ACT_GATHER_INFO
2011-03-17	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12683.nasl - Type : ACT_GATHER_INFO
2011-03-11	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12682.nasl - Type : ACT_GATHER_INFO
2011-03-11	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_4_2-ibm-110223.nasl - Type : ACT_GATHER_INFO
2011-03-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_4_2-ibm-7348.nasl - Type : ACT_GATHER_INFO
2011-03-10	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0335.nasl - Type : ACT_GATHER_INFO
2011-03-10	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0336.nasl - Type : ACT_GATHER_INFO
2011-03-09	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_5_update9.nasl - Type : ACT_GATHER_INFO
2011-03-09	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_6_update4.nasl - Type : ACT_GATHER_INFO
2011-03-02	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1079-1.nasl - Type : ACT_GATHER_INFO
2011-02-23	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0290.nasl - Type : ACT_GATHER_INFO
2011-02-23	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0291.nasl - Type : ACT_GATHER_INFO
2011-02-23	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0292.nasl - Type : ACT_GATHER_INFO
2011-02-23	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-sun-110217.nasl - Type : ACT_GATHER_INFO
2011-02-23	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_6_0-sun-7342.nasl - Type : ACT_GATHER_INFO
2011-02-18	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0281.nasl - Type : ACT_GATHER_INFO
2011-02-18	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0282.nasl - Type : ACT_GATHER_INFO
2011-02-17	Name : The remote Fedora host is missing a security update. File : fedora_2011-1631.nasl - Type : ACT_GATHER_INFO
2011-02-17	Name : The remote Fedora host is missing a security update. File : fedora_2011-1645.nasl - Type : ACT_GATHER_INFO
2011-02-16	Name : The remote Windows host contains a programming platform that is affected by m... File : oracle_java_cpu_feb_2011.nasl - Type : ACT_GATHER_INFO
2011-02-15	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2161.nasl - Type : ACT_GATHER_INFO
2011-02-14	Name : The remote Fedora host is missing a security update. File : fedora_2011-1231.nasl - Type : ACT_GATHER_INFO
2011-02-14	Name : The remote Fedora host is missing a security update. File : fedora_2011-1263.nasl - Type : ACT_GATHER_INFO
2011-02-11	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0214.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128640-30 File : solaris10_128640.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128641-30 File : solaris10_x86_128641.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128640-30 File : solaris9_128640.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128641-30 File : solaris9_x86_128641.nasl - Type : ACT_GATHER_INFO
2007-10-18	Name : The remote host is missing Sun Security Patch number 124672-20 File : solaris8_124672.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124672-20 File : solaris10_124672.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124673-20 File : solaris10_x86_124673.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124672-20 File : solaris9_124672.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124673-20 File : solaris9_x86_124673.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2016-02-29 21:29:51	Multiple Updates
2016-02-24 09:28:58	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	2
Oval ID(s)	251
CPE ID(s)	1409
Saint Exploit(s)	4
osvdb(s)	60
ExploitDB Exploit(s)	5
Openvas Exploit(s)	141
IAVM(s)	10
Snort® Rule(s)	347
Nessus® Exploit(s)	240

	Related
10	CVE-2012-0508
10	CVE-2012-0507
10	CVE-2012-0500
10	CVE-2012-0499
10	CVE-2012-0498
10	CVE-2012-0497
10	CVE-2011-3554
10	CVE-2011-3549
10	CVE-2011-3548
10	CVE-2011-3545
10	CVE-2011-3544
10	CVE-2011-3521
10	CVE-2011-0873
10	CVE-2011-0871
10	CVE-2011-0864
10	CVE-2011-0863
10	CVE-2011-0862
10	CVE-2011-0817
10	CVE-2011-0815
10	CVE-2011-0814
10	CVE-2011-0802
10	CVE-2010-4473
10	CVE-2010-4469
10	CVE-2010-4467
10	CVE-2010-4465
10	CVE-2010-4463
10	CVE-2010-4462
10	CVE-2010-4454
10	CVE-2010-4452
9.3	CVE-2012-0504
9.3	CVE-2011-3551
7.6	CVE-2011-3550
7.6	CVE-2011-3516
7.6	CVE-2011-0866
7.6	CVE-2011-0788
7.6	CVE-2011-0786
7.6	CVE-2010-4451
7.6	CVE-2010-4422
7.5	CVE-2012-0505
7.5	CVE-2012-0503
7.5	CVE-2011-3556
6.8	CVE-2011-3557
6.4	CVE-2012-0502
6.4	CVE-2011-3563
6.4	CVE-2011-3560
6.1	CVE-2011-3555
5.8	CVE-2011-3546
5	CVE-2012-0501
5	CVE-2011-5035
5	CVE-2011-3558
5	CVE-2011-3547
5	CVE-2011-0872
5	CVE-2011-0869
5	CVE-2011-0868
5	CVE-2011-0867
5	CVE-2010-4476
5	CVE-2010-4471
5	CVE-2010-4470
5	CVE-2010-4466
4.3	CVE-2012-0506
4.3	CVE-2011-3389
4.3	CVE-2010-4475
4.3	CVE-2010-4447
4	CVE-2010-4468
3.7	CVE-2010-4450
3.5	CVE-2011-3553
2.6	CVE-2011-3552
2.6	CVE-2011-0865
2.6	CVE-2010-4472
2.6	CVE-2010-4448
2.1	CVE-2010-4474
1.8	CVE-2011-3561
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 72 more Alert(s)