10 - USN-1373-2

Executive Summary

Summary
Title	OpenJDK 6 (ARM) vulnerabilities

Informations
Name	USN-1373-2	First vendor Publication	2012-03-01
Vendor	Ubuntu	Last vendor Modification	2012-03-01
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS

Summary:

Multiple vulnerabilities in OpenJDK 6 for the ARM architecture have been fixed.

Software Description: - openjdk-6b18: Open Source Java implementation

Details:

USN 1373-1 fixed vulnerabilities in OpenJDK 6 in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04 for all architectures except for ARM (armel). This provides the corresponding OpenJDK 6 update for use with the ARM (armel) architecture in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04.

Original advisory details:

It was discovered that the Java HttpServer class did not limit the
number of headers read from a HTTP request. A remote attacker could
cause a denial of service by sending special requests that trigger
hash collisions predictably. (CVE-2011-5035)

ATTENTION: this update changes previous Java HttpServer class behavior
by limiting the number of request headers to 200. This may be increased
by adjusting the sun.net.httpserver.maxReqHeaders property.

It was discovered that the Java Sound component did not properly
check buffer boundaries. A remote attacker could use this to cause
a denial of service or view confidential data. (CVE-2011-3563)

It was discovered that the Java2D implementation does not properly
check graphics rendering objects before passing them to the native
renderer. A remote attacker could use this to cause a denial of
service or to bypass Java sandbox restrictions. (CVE-2012-0497)

It was discovered that an off-by-one error exists in the Java ZIP
file processing code. An attacker could us this to cause a denial of
service through a maliciously crafted ZIP file. (CVE-2012-0501)

It was discovered that the Java AWT KeyboardFocusManager did not
properly enforce keyboard focus security policy. A remote attacker
could use this with an untrusted application or applet to grab keyboard
focus and possibly expose confidential data. (CVE-2012-0502)

It was discovered that the Java TimeZone class did not properly enforce
security policy around setting the default time zone. A remote attacker
could use this with an untrusted application or applet to set a new
default time zone and bypass Java sandbox restrictions. (CVE-2012-0503)

It was discovered the Java ObjectStreamClass did not throw
an accurately identifiable exception when a deserialization
failure occurred. A remote attacker could use this with
an untrusted application or applet to bypass Java sandbox
restrictions. (CVE-2012-0505)

It was discovered that the Java CORBA implementation did not properly
protect repository identifiers on certain CORBA objects. A remote
attacker could use this to corrupt object data. (CVE-2012-0506)

It was discovered that the Java AtomicReferenceArray class
implementation did not properly check if an array was of
the expected Object[] type. A remote attacker could use this
with a malicious application or applet to bypass Java sandbox
restrictions. (CVE-2012-0507)

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 11.04:
icedtea-6-jre-cacao 6b18-1.8.13-0ubuntu1~11.04.1
icedtea-6-jre-jamvm 6b18-1.8.13-0ubuntu1~11.04.1
openjdk-6-jre 6b18-1.8.13-0ubuntu1~11.04.1
openjdk-6-jre-headless 6b18-1.8.13-0ubuntu1~11.04.1
openjdk-6-jre-zero 6b18-1.8.13-0ubuntu1~11.04.1

Ubuntu 10.10:
icedtea-6-jre-cacao 6b18-1.8.13-0ubuntu1~10.10.1
openjdk-6-jre 6b18-1.8.13-0ubuntu1~10.10.1
openjdk-6-jre-headless 6b18-1.8.13-0ubuntu1~10.10.1
openjdk-6-jre-zero 6b18-1.8.13-0ubuntu1~10.10.1

Ubuntu 10.04 LTS:
icedtea-6-jre-cacao 6b18-1.8.13-0ubuntu1~10.04.1
openjdk-6-jre 6b18-1.8.13-0ubuntu1~10.04.1
openjdk-6-jre-headless 6b18-1.8.13-0ubuntu1~10.04.1
openjdk-6-jre-zero 6b18-1.8.13-0ubuntu1~10.04.1

After a standard system update you need to restart any Java applications or applets to make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1373-2
http://www.ubuntu.com/usn/usn-1373-1
CVE-2011-3563, CVE-2011-5035, CVE-2012-0497, CVE-2012-0501,
CVE-2012-0502, CVE-2012-0503, CVE-2012-0505, CVE-2012-0506,
CVE-2012-0507

Package Information:
https://launchpad.net/ubuntu/+source/openjdk-6b18/6b18-1.8.13-0ubuntu1~11.04.1
https://launchpad.net/ubuntu/+source/openjdk-6b18/6b18-1.8.13-0ubuntu1~10.10.1
https://launchpad.net/ubuntu/+source/openjdk-6b18/6b18-1.8.13-0ubuntu1~10.04.1

Original Source

Url : http://www.ubuntu.com/usn/USN-1373-2

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-20	Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:13976

Oval ID:	oval:org.mitre.oval:def:13976
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0505	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14082

Oval ID:	oval:org.mitre.oval:def:14082
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to CORBA.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to CORBA.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0506	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14772

Oval ID:	oval:org.mitre.oval:def:14772
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0497	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14813

Oval ID:	oval:org.mitre.oval:def:14813
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to I18n.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to I18n.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0503	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14900

Oval ID:	oval:org.mitre.oval:def:14900
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0502	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:14942

Oval ID:	oval:org.mitre.oval:def:14942
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-3563	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:15069

Oval ID:	oval:org.mitre.oval:def:15069
Title:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors.
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-0501	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Runtime Environment is less than 1.5.0:update34 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update34 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_31 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 and is greater than or equal to 1.7.0 Determine if the version of Java Runtime Environment is less than 1.7.0:update_3 AND Java SE Runtime Environment 7 is installed

Definition Id: oval:org.mitre.oval:def:15259

Oval ID:	oval:org.mitre.oval:def:15259
Title:	DSA-2420-1 openjdk-6 -- several
Description:	Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform. CVE-2011-3377 The Iced Tea browser plugin included in the openjdk-6 package does not properly enforce the Same Origin Policy on web content served under a domain name which has a common suffix with the required domain name. CVE-2011-3563 The Java Sound component did not properly check for array boundaries. A malicious input or an untrusted Java application or applet could use this flaw to cause Java Virtual Machine to crash or disclose portion of its memory. CVE-2011-5035 The OpenJDK embedded web server did not guard against an excessive number of a request parameters, leading to a denial of service vulnerability involving hash collisions. CVE-2012-0497 It was discovered that Java2D did not properly check graphics rendering objects before passing them to the native renderer. This could lead to JVM crash or Java sandbox bypass. CVE-2012-0501 The ZIP central directory parser used by java.util.zip.ZipFile entered an infinite recursion in native code when processing a crafted ZIP file, leading to a denial of service. CVE-2012-0502 A flaw was found in the AWT KeyboardFocusManager class that could allow untrusted Java applets to acquire keyboard focus and possibly steal sensitive information. CVE-2012-0503 The java.util.TimeZone.setDefault method lacked a security manager invocation, allowing an untrusted Java application or applet to set a new default time zone. CVE-2012-0505 The Java serialization code leaked references to serialization exceptions, possibly leaking critical objects to untrusted code in Java applets and applications. CVE-2012-0506 It was discovered that CORBA implementation in Java did not properly protect repository identifiers on certain Corba objects. This could have been used to perform modification of the data that should have been immutable. CVE-2012-0507 The AtomicReferenceArray class implementation did not properly check if the array is of an expected Object[] type. A malicious Java application or applet could use this flaw to cause Java Virtual Machine to crash or bypass Java sandbox restrictions
Family:	unix	Class:	patch
Reference(s):	DSA-2420-1 CVE-2011-3377 CVE-2011-3563 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	openjdk-6
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND Installed architecture is all AND openjdk-6 DPKG is earlier than 6b18-1.8.13-0+squeeze1

Definition Id: oval:org.mitre.oval:def:15326

Oval ID:	oval:org.mitre.oval:def:15326
Title:	USN-1373-1 -- OpenJDK 6 vulnerabilities
Description:	openjdk-6: Open Source Java implementation Multiple OpenJDK 6 vulnerabilities have been fixed.
Family:	unix	Class:	patch
Reference(s):	USN-1373-1 CVE-2011-5035 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 11.10 Ubuntu 10.04 Ubuntu 10.10	Product(s):	OpenJDK
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND icedtea-6-jre-cacao DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND icedtea-6-jre-jamvm DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND openjdk-6-jre-lib DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND openjdk-6-jre-zero DPKG is earlier than 6b22-1.10.6-0ubuntu1 AND openjdk-6-jre DPKG is earlier than 6b22-1.10.6-0ubuntu1 OR Release section Ubuntu 11.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND icedtea-6-jre-cacao DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND icedtea-6-jre-jamvm DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND openjdk-6-jre-lib DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND openjdk-6-jre-zero DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 AND openjdk-6-jre DPKG is earlier than 6b23~pre11-0ubuntu1.11.10.2 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.04.1 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND openjdk-6-jre-lib DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND openjdk-6-jre-zero DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1 AND openjdk-6-jre DPKG is earlier than 6b20-1.9.13-0ubuntu1~10.10.1

Definition Id: oval:org.mitre.oval:def:15473

Oval ID:	oval:org.mitre.oval:def:15473
Title:	USN-1373-2 -- OpenJDK 6 (ARM) vulnerabilities
Description:	openjdk-6b18: Open Source Java implementation Details: USN 1373-1 fixed vulnerabilities in OpenJDK 6 in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04 for all architectures except for ARM . This provides the corresponding OpenJDK 6 update for use with the ARM architecture in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04. Original advisory Multiple vulnerabilities in OpenJDK 6 for the ARM architecture have been fixed.
Family:	unix	Class:	patch
Reference(s):	USN-1373-2 CVE-2011-5035 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 10.04 Ubuntu 10.10	Product(s):	OpenJDK
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND openjdk-6-jre-zero DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND openjdk-6-jre DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 AND icedtea-6-jre-jamvm DPKG is earlier than 6b18-1.8.13-0ubuntu1~11.04.1 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 AND openjdk-6-jre-zero DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 AND openjdk-6-jre DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.04.1 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section openjdk-6-jre-headless DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1 AND icedtea-6-jre-cacao DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1 AND openjdk-6-jre-zero DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1 AND openjdk-6-jre DPKG is earlier than 6b18-1.8.13-0ubuntu1~10.10.1

Definition Id: oval:org.mitre.oval:def:16908

Oval ID:	oval:org.mitre.oval:def:16908
Title:	Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 9.2.4, 10.0.2, 10.3.5, 10.3.6 and 12.1.1. Easily exploitable vulnerability allows successful unauthenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server
Description:	Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-5035	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Oracle WebLogic Server
Definition Synopsis:
Oracle WebLogic Server is installed Check if the version of Oracle WebLogic Server is 9.2.4, 10.0.2, 10.3.5.0, 10.3.6, 12.1.1 Check if the version of Oracle WebLogic Server is 9.2.4 AND Check if the version of Oracle WebLogic Server is 10.0.2 AND Check if the version of Oracle WebLogic Server is 10.3.5.0 AND Check if the version of Oracle WebLogic Server is 10.3.6 AND Check if the version of Oracle WebLogic Server is 12.1.1

Definition Id: oval:org.mitre.oval:def:19408

Oval ID:	oval:org.mitre.oval:def:19408
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-5035	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19445

Oval ID:	oval:org.mitre.oval:def:19445
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0502	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19527

Oval ID:	oval:org.mitre.oval:def:19527
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to CORBA.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0506	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19557

Oval ID:	oval:org.mitre.oval:def:19557
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0497	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19599

Oval ID:	oval:org.mitre.oval:def:19599
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0501	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19644

Oval ID:	oval:org.mitre.oval:def:19644
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to I18n.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0503	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19813

Oval ID:	oval:org.mitre.oval:def:19813
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-3563	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19829

Oval ID:	oval:org.mitre.oval:def:19829
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0505	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:19848

Oval ID:	oval:org.mitre.oval:def:19848
Title:	HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-0507	Version:	10
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets test Jdk70.JDK70-COM version is less than 1.7.0.01.00 AND Jdk70.JDK70-DEMO version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF32 version is less than 1.7.0.01.00 AND Jdk70.JDK70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-COM version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF32-HS version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64 version is less than 1.7.0.01.00 AND Jre70.JRE70-IPF64-HS version is less than 1.7.0.01.00

Definition Id: oval:org.mitre.oval:def:20754

Oval ID:	oval:org.mitre.oval:def:20754
Title:	RHSA-2012:0322: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0322-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	133
Platform(s):	Red Hat Enterprise Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8

Definition Id: oval:org.mitre.oval:def:21340

Oval ID:	oval:org.mitre.oval:def:21340
Title:	RHSA-2012:0135: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0135-01 CESA-2012:0135 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	133
Platform(s):	Red Hat Enterprise Linux 6 CentOS Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND The operating system installed on the system is CentOS Linux 6.x Packages section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2

Definition Id: oval:org.mitre.oval:def:21398

Oval ID:	oval:org.mitre.oval:def:21398
Title:	RHSA-2012:0508: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0508-03 CVE-2011-3389 CVE-2011-3557 CVE-2011-3560 CVE-2011-3563 CVE-2012-0498 CVE-2012-0499 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	161
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Red Hat Enterprise Linux 5 release section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages match section java-1.5.0-ibm is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.1-1jpp.1.el5 AND Red Hat Enterprise Linux 6 release section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages match section java-1.5.0-ibm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.1-1jpp.2.el6_2

Definition Id: oval:org.mitre.oval:def:21404

Oval ID:	oval:org.mitre.oval:def:21404
Title:	RHSA-2012:0514: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0514-03 CVE-2011-3563 CVE-2011-5035 CVE-2012-0497 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	161
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Red Hat Enterprise Linux 5 release section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages match section java-1.6.0-ibm is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-accessibility is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.1-1jpp.1.el5 AND Red Hat Enterprise Linux 6 release section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages match section java-1.6.0-ibm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.1-1jpp.5.el6_2

Definition Id: oval:org.mitre.oval:def:21410

Oval ID:	oval:org.mitre.oval:def:21410
Title:	RHSA-2012:0139: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0139-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	159
Platform(s):	Red Hat Enterprise Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section java-1.6.0-sun-jdbc is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-src is earlier than 1:1.6.0.31-1jpp.1.el6_2

Definition Id: oval:org.mitre.oval:def:23287

Oval ID:	oval:org.mitre.oval:def:23287
Title:	ELSA-2012:0322: java-1.6.0-openjdk security update (Important)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0322-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	45
Platform(s):	Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5.x rpm test java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.25.1.10.6.el5_8

Definition Id: oval:org.mitre.oval:def:23323

Oval ID:	oval:org.mitre.oval:def:23323
Title:	ELSA-2012:0514: java-1.6.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0514-03 CVE-2011-3563 CVE-2011-5035 CVE-2012-0497 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	53
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-ibm
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-demo is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-src is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-devel is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.10.1-1jpp.5.el6_2 AND java-1.6.0-ibm-plugin is earlier than 1:1.6.0.10.1-1jpp.5.el6_2

Definition Id: oval:org.mitre.oval:def:23638

Oval ID:	oval:org.mitre.oval:def:23638
Title:	ELSA-2012:0139: java-1.6.0-sun security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0139-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0498 CVE-2012-0499 CVE-2012-0500 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	53
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-sun
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-sun-jdbc is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-plugin is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-devel is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-demo is earlier than 1:1.6.0.31-1jpp.1.el6_2 AND java-1.6.0-sun-src is earlier than 1:1.6.0.31-1jpp.1.el6_2

Definition Id: oval:org.mitre.oval:def:23720

Oval ID:	oval:org.mitre.oval:def:23720
Title:	ELSA-2012:0135: java-1.6.0-openjdk security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0135-01 CVE-2011-3563 CVE-2011-3571 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	45
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.43.1.10.6.el6_2

Definition Id: oval:org.mitre.oval:def:23749

Oval ID:	oval:org.mitre.oval:def:23749
Title:	ELSA-2012:0508: java-1.5.0-ibm security update (Critical)
Description:	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0508-03 CVE-2011-3389 CVE-2011-3557 CVE-2011-3560 CVE-2011-3563 CVE-2012-0498 CVE-2012-0499 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0507	Version:	53
Platform(s):	Oracle Linux 6	Product(s):	java-1.5.0-ibm
Definition Synopsis:
Oracle Linux 6.x rpm test java-1.5.0-ibm-plugin is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-src is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-devel is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.13.1-1jpp.2.el6_2 AND java-1.5.0-ibm-demo is earlier than 1:1.5.0.13.1-1jpp.2.el6_2

Definition Id: oval:org.mitre.oval:def:27767

Oval ID:	oval:org.mitre.oval:def:27767
Title:	DEPRECATED: ELSA-2012-0322 -- java-1.6.0-openjdk security update (important)
Description:	[1.6.0.0-1.25.1.10.6.0.1.el5_8] - Add oracle-enterprise.patch [1:1.6.0.0-1.25.1.10.6] - Updated to IcedTea6 1.10.6 - Resolves: rhbz#787142 - Security fixes - S7082299: Fix in AtomicReferenceArray - S7088367: Fix issues in java sound - S7110683: Issues with some KeyboardFocusManager method - S7110687: Issues with TimeZone class - S7110700: Enhance exception throwing mechanism in ObjectStreamClass - S7110704: Issues with some method in corba - S7112642: Incorrect checking for graphics rendering object - S7118283: Better input parameter checking in zip file processing - S7126960: Add property to limit number of request headers to the HTTP Server - Bug fixes - RH580478: Desktop files should not use hardcoded path - Removed and deleted upstreamed patch7 - name-rmi-fix.patch - Removed and deleted upstreamed Hugepages patches: - Source100: 7034464-hugepage.patch - Source101: 7037939-hugepage.patch - Source102: 7043564-hugepage.patch
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-0322 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2011-3571 CVE-2011-5035 CVE-2012-0507	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 5.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.25.1.10.6.0.1.el5_8

Definition Id: oval:org.mitre.oval:def:27922

Oval ID:	oval:org.mitre.oval:def:27922
Title:	DEPRECATED: ELSA-2012-0135 -- java-1.6.0-openjdk security update (critical)
Description:	[1:1.6.0.0-1.43.1.10.6] - Updated to IcedTea6 1.10.6 - Resolves: rhbz#787144 - Security fixes - S7082299: Fix in AtomicReferenceArray - S7088367: Fix issues in java sound - S7110683: Issues with some KeyboardFocusManager method - S7110687: Issues with TimeZone class - S7110700: Enhance exception throwing mechanism in ObjectStreamClass - S7110704: Issues with some method in corba - S7112642: Incorrect checking for graphics rendering object - S7118283: Better input parameter checking in zip file processing - S7126960: Add property to limit number of request headers to the HTTP Server - Bug fixes - RH580478: Desktop files should not use hardcoded path - Removed upstreamed patch7 - java-1.6.0-openjdk-6_2-Z-rmi-fix.patch
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-0135 CVE-2011-3563 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2011-3571 CVE-2011-5035 CVE-2012-0507	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	java-1.6.0-openjdk
Definition Synopsis:
Oracle Linux 6.x Packages match section java-1.6.0-openjdk is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-demo is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-devel is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-javadoc is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2 AND java-1.6.0-openjdk-src is earlier than 0:1.6.0.0-1.43.1.10.6.el6_2

CPE : Common Platform Enumeration

Type	Description	Count
Application	Oracle Glassfish Server cpe:2.3:a:oracle:glassfish_server:3.1.1:::::::* cpe:2.3:a:oracle:glassfish_server:3.0.1:::::::* cpe:2.3:a:oracle:glassfish_server:3.0.1::::open_source::: cpe:2.3:a:oracle:glassfish_server:3.0:::::::* cpe:2.3:a:oracle:glassfish_server:2.1.1:::::::* cpe:2.3:a:oracle:glassfish_server:2.1:::::::* cpe:2.3:a:oracle:glassfish_server:2.0:::::::* cpe:2.3:a:oracle:glassfish_server:1.0:ur1_po1:::::: cpe:2.3:a:oracle:glassfish_server:1.0:::::::* cpe:2.3:a:oracle:glassfish_server:1.0:ur1::::::	10
Application	Oracle Jre cpe:2.3:a:oracle:jre:1.7.0:update1:::::: cpe:2.3:a:oracle:jre:1.7.0:update2:::::: cpe:2.3:a:oracle:jre:1.7.0:-:::::: cpe:2.3:a:oracle:jre:1.7.0:update4:::::: cpe:2.3:a:oracle:jre:1.7.0:update3:::::: cpe:2.3:a:oracle:jre:1.7.0:update5:::::: cpe:2.3:a:oracle:jre:1.7.0:update7:::::: cpe:2.3:a:oracle:jre:1.7.0:update6:::::: cpe:2.3:a:oracle:jre:1.7.0:update11:::::: cpe:2.3:a:oracle:jre:1.7.0:update10:::::: cpe:2.3:a:oracle:jre:1.7.0:update9:::::: cpe:2.3:a:oracle:jre:1.7.0:update13:::::: cpe:2.3:a:oracle:jre:1.7.0:update15:::::: cpe:2.3:a:oracle:jre:1.7.0:update17:::::: cpe:2.3:a:oracle:jre:1.7.0:update21:::::: cpe:2.3:a:oracle:jre:1.7.0:update25:::::: cpe:2.3:a:oracle:jre:1.7.0:update11:~~~windows~~:::::* cpe:2.3:a:oracle:jre:1.7.0:update10:~~~windows~~:::::* cpe:2.3:a:oracle:jre:1.7.0:update_67:::::: cpe:2.3:a:oracle:jre:1.7.0:update_75:::::: cpe:2.3:a:oracle:jre:1.7.0:update_80:::::: cpe:2.3:a:oracle:jre:1.7.0:update_85:::::: cpe:2.3:a:oracle:jre:1.7.0:update121:::::: cpe:2.3:a:oracle:jre:1.7.0:update10_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update11_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update17_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update17_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update21_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update25_b33:::::: cpe:2.3:a:oracle:jre:1.7.0:update25_b34:::::: cpe:2.3:a:oracle:jre:1.7.0:update25_b35:::::: cpe:2.3:a:oracle:jre:1.7.0:update40:::::: cpe:2.3:a:oracle:jre:1.7.0:update45:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b33:::::: cpe:2.3:a:oracle:jre:1.7.0:update45_b34:::::: cpe:2.3:a:oracle:jre:1.7.0:update51:::::: cpe:2.3:a:oracle:jre:1.7.0:update7_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update9_b31:::::: cpe:2.3:a:oracle:jre:1.7.0:update9_b32:::::: cpe:2.3:a:oracle:jre:1.7.0:update_131:::::: cpe:2.3:a:oracle:jre:1.7.0:update10::::windows::* cpe:2.3:a:oracle:jre:1.7.0:update11::::windows::* cpe:2.3:a:oracle:jre:1.7.0:update_241:::::: cpe:2.3:a:oracle:jre:1.7.0:update301:::::: cpe:2.3:a:oracle:jre:1.7.0:update321:::::: cpe:2.3:a:oracle:jre:1.7.0:update331:::::: cpe:2.3:a:oracle:jre:1.7.0:update251:::::: cpe:2.3:a:oracle:jre:1.7.0:update231:::::: cpe:2.3:a:oracle:jre:1.7.0:update221:::::: cpe:2.3:a:oracle:jre:1.7.0:update211:::::: cpe:2.3:a:oracle:jre:1.7.0:update201:::::: cpe:2.3:a:oracle:jre:1.7.0:update191:::::: cpe:2.3:a:oracle:jre:1.7.0:update181:::::: cpe:2.3:a:oracle:jre:1.7.0:update171:::::: cpe:2.3:a:oracle:jre:1.7.0:update161:::::: cpe:2.3:a:oracle:jre:1.7.0:update151:::::: cpe:2.3:a:oracle:jre:1.7.0:update141:::::: cpe:2.3:a:oracle:jre:1.7.0:update111:::::: cpe:2.3:a:oracle:jre:1.7.0:update101:::::: cpe:2.3:a:oracle:jre:1.7.0:update99:::::: cpe:2.3:a:oracle:jre:1.7.0:update97:::::: cpe:2.3:a:oracle:jre:1.7.0:update95:::::: cpe:2.3:a:oracle:jre:1.7.0:update91:::::: cpe:2.3:a:oracle:jre:1.7.0:update76:::::: cpe:2.3:a:oracle:jre:1.7.0:update72:::::: cpe:2.3:a:oracle:jre:1.7.0:update71:::::: cpe:2.3:a:oracle:jre:1.7.0:update60:::::: cpe:2.3:a:oracle:jre:1.7.0:update343:::::: cpe:2.3:a:oracle:jre:1.7:update_131:::::: cpe:2.3:a:oracle:jre:1.6.0:update19:::::: cpe:2.3:a:oracle:jre:1.6.0:update_10:::::: cpe:2.3:a:oracle:jre:1.6.0:update_81:::::: cpe:2.3:a:oracle:jre:1.6.0:update_95:::::: cpe:2.3:a:oracle:jre:1.6.0:update_101:::::: cpe:2.3:a:oracle:jre:1.6.0:update131:::::: cpe:2.3:a:oracle:jre:1.6.0:update201:::::: cpe:2.3:a:oracle:jre:1.6.0:update191:::::: cpe:2.3:a:oracle:jre:1.6.0:update181:::::: cpe:2.3:a:oracle:jre:1.6.0:update171:::::: cpe:2.3:a:oracle:jre:1.6.0:update161:::::: cpe:2.3:a:oracle:jre:1.6.0:update151:::::: cpe:2.3:a:oracle:jre:1.6.0:update141:::::: cpe:2.3:a:oracle:jre:1.6.0:update121:::::: cpe:2.3:a:oracle:jre:1.6.0:update115:::::: cpe:2.3:a:oracle:jre:1.6.0:update113:::::: cpe:2.3:a:oracle:jre:1.6.0:update111:::::: cpe:2.3:a:oracle:jre:1.6.0:update105:::::: cpe:2.3:a:oracle:jre:1.6.0:update91:::::: cpe:2.3:a:oracle:jre:1.6.0:update85:::::: cpe:2.3:a:oracle:jre:1.6.0:update75:::::: cpe:2.3:a:oracle:jre:1.6.0:update71:::::: cpe:2.3:a:oracle:jre:1.6.0:update65:::::: cpe:2.3:a:oracle:jre:1.6.0:update45:::::: cpe:2.3:a:oracle:jre:1.6.0:update30:::::: cpe:2.3:a:oracle:jre:1.6.0:update33:::::: cpe:2.3:a:oracle:jre:1.6.0:update32:::::: cpe:2.3:a:oracle:jre:1.6.0:update24:::::: cpe:2.3:a:oracle:jre:1.6.0:update35:::::: cpe:2.3:a:oracle:jre:1.6.0:update25:::::: cpe:2.3:a:oracle:jre:1.6.0:update39:::::: cpe:2.3:a:oracle:jre:1.6.0:update51:::::: cpe:2.3:a:oracle:jre:1.6.0:update31:::::: cpe:2.3:a:oracle:jre:1.6.0:update22:::::: cpe:2.3:a:oracle:jre:1.6.0:update38:::::: cpe:2.3:a:oracle:jre:1.6.0:update37:::::: cpe:2.3:a:oracle:jre:1.6.0:update29:::::: cpe:2.3:a:oracle:jre:1.6.0:update27:::::: cpe:2.3:a:oracle:jre:1.6.0:update23:::::: cpe:2.3:a:oracle:jre:1.6.0:update41:::::: cpe:2.3:a:oracle:jre:1.6.0:update43:::::: cpe:2.3:a:oracle:jre:1.6.0:update34:::::: cpe:2.3:a:oracle:jre:1.6.0:update26:::::: cpe:2.3:a:oracle:jre:1.6.0:update60:::::: cpe:2.3:a:oracle:jre:1.6.0:-:::::: cpe:2.3:a:oracle:jre:1.6.0:update1:::::: cpe:2.3:a:oracle:jre:1.6.0:update10:::::: cpe:2.3:a:oracle:jre:1.6.0:update11:::::: cpe:2.3:a:oracle:jre:1.6.0:update12:::::: cpe:2.3:a:oracle:jre:1.6.0:update13:::::: cpe:2.3:a:oracle:jre:1.6.0:update14:::::: cpe:2.3:a:oracle:jre:1.6.0:update15:::::: cpe:2.3:a:oracle:jre:1.6.0:update16:::::: cpe:2.3:a:oracle:jre:1.6.0:update17:::::: cpe:2.3:a:oracle:jre:1.6.0:update18:::::: cpe:2.3:a:oracle:jre:1.6.0:update2:::::: cpe:2.3:a:oracle:jre:1.6.0:update20:::::: cpe:2.3:a:oracle:jre:1.6.0:update21:::::: cpe:2.3:a:oracle:jre:1.6.0:update3:::::: cpe:2.3:a:oracle:jre:1.6.0:update5:::::: cpe:2.3:a:oracle:jre:1.6.0:update4:::::: cpe:2.3:a:oracle:jre:1.6.0:update6:::::: cpe:2.3:a:oracle:jre:1.6.0:update7:::::: cpe:2.3:a:oracle:jre:1.6.0:update8:::::: cpe:2.3:a:oracle:jre:1.6.0:update9:::::: cpe:2.3:a:oracle:jre:1.6:update_141:::::: cpe:2.3:a:oracle:jre:1.5.0:update_71:::::: cpe:2.3:a:oracle:jre:1.5.0:update81:::::: cpe:2.3:a:oracle:jre:1.5.0:update75:::::: cpe:2.3:a:oracle:jre:1.5.0:update65:::::: cpe:2.3:a:oracle:jre:1.5.0:update61:::::: cpe:2.3:a:oracle:jre:1.5.0:update55:::::: cpe:2.3:a:oracle:jre:1.5.0:update38:::::: cpe:2.3:a:oracle:jre:1.5.0:update36:::::: cpe:2.3:a:oracle:jre:1.5.0:update40:::::: cpe:2.3:a:oracle:jre:1.5.0:update41:::::: cpe:2.3:a:oracle:jre:1.5.0:update45:::::: cpe:2.3:a:oracle:jre:1.5.0:update51:::::: cpe:2.3:a:oracle:jre:1.5.0:update39:::::: cpe:2.3:a:oracle:jre:1.5.0:update2:::::: cpe:2.3:a:oracle:jre:1.5.0:update3:::::: cpe:2.3:a:oracle:jre:1.5.0:update4:::::: cpe:2.3:a:oracle:jre:1.5.0:update5:::::: cpe:2.3:a:oracle:jre:1.5.0:update6:::::: cpe:2.3:a:oracle:jre:1.5.0:update7:::::: cpe:2.3:a:oracle:jre:1.5.0:update8:::::: cpe:2.3:a:oracle:jre:1.5.0:update9:::::: cpe:2.3:a:oracle:jre:1.5.0:update10:::::: cpe:2.3:a:oracle:jre:1.5.0:update11:::::: cpe:2.3:a:oracle:jre:1.5.0:update12:::::: cpe:2.3:a:oracle:jre:1.5.0:update13:::::: cpe:2.3:a:oracle:jre:1.5.0:update14:::::: cpe:2.3:a:oracle:jre:1.5.0:update15:::::: cpe:2.3:a:oracle:jre:1.5.0:update16:::::: cpe:2.3:a:oracle:jre:1.5.0:update17:::::: cpe:2.3:a:oracle:jre:1.5.0:update18:::::: cpe:2.3:a:oracle:jre:1.5.0:update19:::::: cpe:2.3:a:oracle:jre:1.5.0:update20:::::: cpe:2.3:a:oracle:jre:1.5.0:update21:::::: cpe:2.3:a:oracle:jre:1.5.0:update22:::::: cpe:2.3:a:oracle:jre:1.5.0:update23:::::: cpe:2.3:a:oracle:jre:1.5.0:update24:::::: cpe:2.3:a:oracle:jre:1.5.0:update25:::::: cpe:2.3:a:oracle:jre:1.5.0:update26:::::: cpe:2.3:a:oracle:jre:1.5.0:update27:::::: cpe:2.3:a:oracle:jre:1.5.0:update28:::::: cpe:2.3:a:oracle:jre:1.5.0:update29:::::: cpe:2.3:a:oracle:jre:1.5.0:update30:::::: cpe:2.3:a:oracle:jre:1.5.0:update31:::::: cpe:2.3:a:oracle:jre:1.5.0:update32:::::: cpe:2.3:a:oracle:jre:1.5.0:update33:::::: cpe:2.3:a:oracle:jre:1.5.0:update34:::::: cpe:2.3:a:oracle:jre:1.5.0:update35:::::: cpe:2.3:a:oracle:jre:1.5.0:-:::::: cpe:2.3:a:oracle:jre:1.5.0:update1:::::: cpe:2.3:a:oracle:jre:1.4.2_40:::::::* cpe:2.3:a:oracle:jre:1.4.2_38:::::::* cpe:2.3:a:oracle:jre::::::::	189
Application	Sun Jre cpe:2.3:a:sun:jre:1.6.0:update_4:::::: cpe:2.3:a:sun:jre:1.6.0:update_16:::::: cpe:2.3:a:sun:jre:1.6.0:update_14:::::: cpe:2.3:a:sun:jre:1.6.0:update_10:::::: cpe:2.3:a:sun:jre:1.6.0:update_20:::::: cpe:2.3:a:sun:jre:1.6.0:update_18:::::: cpe:2.3:a:sun:jre:1.6.0:update_11:::::: cpe:2.3:a:sun:jre:1.6.0:update_13:::::: cpe:2.3:a:sun:jre:1.6.0:update_6:::::: cpe:2.3:a:sun:jre:1.6.0:update_1:::::: cpe:2.3:a:sun:jre:1.6.0:update_17:::::: cpe:2.3:a:sun:jre:1.6.0:update_7:::::: cpe:2.3:a:sun:jre:1.6.0:update_12:::::: cpe:2.3:a:sun:jre:1.6.0:update_15:::::: cpe:2.3:a:sun:jre:1.6.0:update_3:::::: cpe:2.3:a:sun:jre:1.6.0:update_2:::::: cpe:2.3:a:sun:jre:1.6.0:update_21:::::: cpe:2.3:a:sun:jre:1.6.0:update_5:::::: cpe:2.3:a:sun:jre:1.6.0:update_19:::::: cpe:2.3:a:sun:jre:1.6.0:-:::::: cpe:2.3:a:sun:jre:1.5.0:update16:::::: cpe:2.3:a:sun:jre:1.5.0:update17:::::: cpe:2.3:a:sun:jre:1.5.0:update15:::::: cpe:2.3:a:sun:jre:1.5.0:update22:::::: cpe:2.3:a:sun:jre:1.5.0:update12:::::: cpe:2.3:a:sun:jre:1.5.0:update10:::::: cpe:2.3:a:sun:jre:1.5.0:update6:::::: cpe:2.3:a:sun:jre:1.5.0:update13:::::: cpe:2.3:a:sun:jre:1.5.0:update14:::::: cpe:2.3:a:sun:jre:1.5.0:update24:::::: cpe:2.3:a:sun:jre:1.5.0:update11:::::: cpe:2.3:a:sun:jre:1.5.0:update18:::::: cpe:2.3:a:sun:jre:1.5.0:update8:::::: cpe:2.3:a:sun:jre:1.5.0:update1:::::: cpe:2.3:a:sun:jre:1.5.0:update9:::::: cpe:2.3:a:sun:jre:1.5.0:update21:::::: cpe:2.3:a:sun:jre:1.5.0:update20:::::: cpe:2.3:a:sun:jre:1.5.0:update3:::::: cpe:2.3:a:sun:jre:1.5.0:update25:::::: cpe:2.3:a:sun:jre:1.5.0:update4:::::: cpe:2.3:a:sun:jre:1.5.0:update5:::::: cpe:2.3:a:sun:jre:1.5.0:update2:::::: cpe:2.3:a:sun:jre:1.5.0:update7:::::: cpe:2.3:a:sun:jre:1.5.0:update23:::::: cpe:2.3:a:sun:jre:1.5.0:update19:::::: cpe:2.3:a:sun:jre:1.5.0:update_6:::::: cpe:2.3:a:sun:jre:1.5.0:update_7:::::: cpe:2.3:a:sun:jre:1.5.0:update_15:::::: cpe:2.3:a:sun:jre:1.5.0:update_1:::::: cpe:2.3:a:sun:jre:1.5.0:update_3:::::: cpe:2.3:a:sun:jre:1.5.0:update_8:::::: cpe:2.3:a:sun:jre:1.5.0:update_17:::::: cpe:2.3:a:sun:jre:1.5.0:update_2:::::: cpe:2.3:a:sun:jre:1.5.0:update_18:::::: cpe:2.3:a:sun:jre:1.5.0:update_12:::::: cpe:2.3:a:sun:jre:1.5.0:update_9:::::: cpe:2.3:a:sun:jre:1.5.0:update_21:::::: cpe:2.3:a:sun:jre:1.5.0:update_19:::::: cpe:2.3:a:sun:jre:1.5.0:update_14:::::: cpe:2.3:a:sun:jre:1.5.0:update_16:::::: cpe:2.3:a:sun:jre:1.5.0:update_4:::::: cpe:2.3:a:sun:jre:1.5.0:update_13:::::: cpe:2.3:a:sun:jre:1.5.0:update_20:::::: cpe:2.3:a:sun:jre:1.5.0:update_5:::::: cpe:2.3:a:sun:jre:1.5.0:update_11:::::: cpe:2.3:a:sun:jre:1.5.0:update27:::::: cpe:2.3:a:sun:jre:1.5.0:update26:::::: cpe:2.3:a:sun:jre:1.5.0:update35:::::: cpe:2.3:a:sun:jre:1.5.0:update28:::::: cpe:2.3:a:sun:jre:1.5.0:update31:::::: cpe:2.3:a:sun:jre:1.5.0:update33:::::: cpe:2.3:a:sun:jre:1.5.0:update29:::::: cpe:2.3:a:sun:jre:1.5.0:-:::::: cpe:2.3:a:sun:jre:1.4.2_9:::::::* cpe:2.3:a:sun:jre:1.4.2_8:::::::* cpe:2.3:a:sun:jre:1.4.2_7:::::::* cpe:2.3:a:sun:jre:1.4.2_6:::::::* cpe:2.3:a:sun:jre:1.4.2_5:::::::* cpe:2.3:a:sun:jre:1.4.2_4:::::::* cpe:2.3:a:sun:jre:1.4.2_37:::::::* cpe:2.3:a:sun:jre:1.4.2_36:::::::* cpe:2.3:a:sun:jre:1.4.2_35:::::::* cpe:2.3:a:sun:jre:1.4.2_34:::::::* cpe:2.3:a:sun:jre:1.4.2_33:::::::* cpe:2.3:a:sun:jre:1.4.2_32:::::::* cpe:2.3:a:sun:jre:1.4.2_31:::::::* cpe:2.3:a:sun:jre:1.4.2_30:::::::* cpe:2.3:a:sun:jre:1.4.2_3:::::::* cpe:2.3:a:sun:jre:1.4.2_29:::::::* cpe:2.3:a:sun:jre:1.4.2_28:::::::* cpe:2.3:a:sun:jre:1.4.2_27:::::::* cpe:2.3:a:sun:jre:1.4.2_26:::::::* cpe:2.3:a:sun:jre:1.4.2_25:::::::* cpe:2.3:a:sun:jre:1.4.2_24:::::::* cpe:2.3:a:sun:jre:1.4.2_23:::::::* cpe:2.3:a:sun:jre:1.4.2_22:::::::* cpe:2.3:a:sun:jre:1.4.2_21:::::::* cpe:2.3:a:sun:jre:1.4.2_20:::::::* cpe:2.3:a:sun:jre:1.4.2_2:::::::* cpe:2.3:a:sun:jre:1.4.2_19:::::::* cpe:2.3:a:sun:jre:1.4.2_18:::::::* cpe:2.3:a:sun:jre:1.4.2_17:::::::* cpe:2.3:a:sun:jre:1.4.2_16:::::::* cpe:2.3:a:sun:jre:1.4.2_15:::::::* cpe:2.3:a:sun:jre:1.4.2_14:::::::* cpe:2.3:a:sun:jre:1.4.2_13:::::::* cpe:2.3:a:sun:jre:1.4.2_12:::::::* cpe:2.3:a:sun:jre:1.4.2_11:::::::* cpe:2.3:a:sun:jre:1.4.2_10:::::::* cpe:2.3:a:sun:jre:1.4.2_1:::::::* cpe:2.3:a:sun:jre:1.4.2_09:::::::* cpe:2.3:a:sun:jre:1.4.2_08:::::::* cpe:2.3:a:sun:jre:1.4.2_07:::::::* cpe:2.3:a:sun:jre:1.4.2_06:::::::* cpe:2.3:a:sun:jre:1.4.2_05:::::::* cpe:2.3:a:sun:jre:1.4.2_04:::::::* cpe:2.3:a:sun:jre:1.4.2_03:::::::* cpe:2.3:a:sun:jre:1.4.2_02:::::::* cpe:2.3:a:sun:jre:1.4.2_01:::::::* cpe:2.3:a:sun:jre:1.4.2:update1:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update4:linux:::::* cpe:2.3:a:sun:jre:1.4.2::solaris::::: cpe:2.3:a:sun:jre:1.4.2:update2:linux:::::* cpe:2.3:a:sun:jre:1.4.2:update1:linux:::::* cpe:2.3:a:sun:jre:1.4.2:update1:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update4:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update3:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update2:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update5:windows:::::* cpe:2.3:a:sun:jre:1.4.2::linux::::: cpe:2.3:a:sun:jre:1.4.2:update5:linux:::::* cpe:2.3:a:sun:jre:1.4.2:update2:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update3:linux:::::* cpe:2.3:a:sun:jre:1.4.2::windows::::: cpe:2.3:a:sun:jre:1.4.2:update3:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update4:windows:::::* cpe:2.3:a:sun:jre:1.4.2:update5:solaris:::::* cpe:2.3:a:sun:jre:1.4.2:update20:::::: cpe:2.3:a:sun:jre:1.4.2:update17:::::: cpe:2.3:a:sun:jre:1.4.2:update19:::::: cpe:2.3:a:sun:jre:1.4.2:update18:::::: cpe:2.3:a:sun:jre:1.4.2:update16:::::: cpe:2.3:a:sun:jre:1.4.2:update28:::::: cpe:2.3:a:sun:jre:1.4.2:-:::::: cpe:2.3:a:sun:jre:1.4.1_07::windows::::: cpe:2.3:a:sun:jre:1.4.1_07::solaris::::: cpe:2.3:a:sun:jre:1.4.1_07::linux::::: cpe:2.3:a:sun:jre:1.4.1_07:::::::* cpe:2.3:a:sun:jre:1.4.1_06::solaris::::: cpe:2.3:a:sun:jre:1.4.1_06:::::::* cpe:2.3:a:sun:jre:1.4.1_06::linux::::: cpe:2.3:a:sun:jre:1.4.1_06::windows::::: cpe:2.3:a:sun:jre:1.4.1_05::linux::::: cpe:2.3:a:sun:jre:1.4.1_05::windows::::: cpe:2.3:a:sun:jre:1.4.1_05:::::::* cpe:2.3:a:sun:jre:1.4.1_05::solaris::::: cpe:2.3:a:sun:jre:1.4.1_04:::::::* cpe:2.3:a:sun:jre:1.4.1_04::windows::::: cpe:2.3:a:sun:jre:1.4.1_04::linux::::: cpe:2.3:a:sun:jre:1.4.1_04::solaris::::: cpe:2.3:a:sun:jre:1.4.1_03::solaris::::: cpe:2.3:a:sun:jre:1.4.1_03:::::::* cpe:2.3:a:sun:jre:1.4.1_03::windows::::: cpe:2.3:a:sun:jre:1.4.1_03::linux::::: cpe:2.3:a:sun:jre:1.4.1_02::solaris::::: cpe:2.3:a:sun:jre:1.4.1_02::linux::::: cpe:2.3:a:sun:jre:1.4.1_02::windows::::: cpe:2.3:a:sun:jre:1.4.1_02:::::::* cpe:2.3:a:sun:jre:1.4.1_01::solaris::::: cpe:2.3:a:sun:jre:1.4.1_01::windows::::: cpe:2.3:a:sun:jre:1.4.1_01::linux::::: cpe:2.3:a:sun:jre:1.4.1_01:::::::* cpe:2.3:a:sun:jre:1.4.1:update3:::::: cpe:2.3:a:sun:jre:1.4.1::linux::::: cpe:2.3:a:sun:jre:1.4.1:update3:linux:::::* cpe:2.3:a:sun:jre:1.4.1:update3:solaris:::::* cpe:2.3:a:sun:jre:1.4.1::windows::::: cpe:2.3:a:sun:jre:1.4.1::solaris::::: cpe:2.3:a:sun:jre:1.4.1:update3:windows:::::* cpe:2.3:a:sun:jre:1.4.1:update2:::::: cpe:2.3:a:sun:jre:1.4.1:update4:::::: cpe:2.3:a:sun:jre:1.4.1:update1:::::: cpe:2.3:a:sun:jre:1.4.1:update7:::::: cpe:2.3:a:sun:jre:1.4.1:update6:::::: cpe:2.3:a:sun:jre:1.4.1:update5:::::: cpe:2.3:a:sun:jre:1.4.1:-:::::: cpe:2.3:a:sun:jre:1.4.0_04::solaris::::: cpe:2.3:a:sun:jre:1.4.0_04::windows::::: cpe:2.3:a:sun:jre:1.4.0_04::linux::::: cpe:2.3:a:sun:jre:1.4.0_04:::::::* cpe:2.3:a:sun:jre:1.4.0_03::solaris::::: cpe:2.3:a:sun:jre:1.4.0_03::linux::::: cpe:2.3:a:sun:jre:1.4.0_03::windows::::: cpe:2.3:a:sun:jre:1.4.0_03:::::::* cpe:2.3:a:sun:jre:1.4.0_02::linux::::: cpe:2.3:a:sun:jre:1.4.0_02::windows::::: cpe:2.3:a:sun:jre:1.4.0_02::solaris::::: cpe:2.3:a:sun:jre:1.4.0_02:::::::* cpe:2.3:a:sun:jre:1.4.0_01::solaris::::: cpe:2.3:a:sun:jre:1.4.0_01::windows::::: cpe:2.3:a:sun:jre:1.4.0_01::linux::::: cpe:2.3:a:sun:jre:1.4.0_01:::::::* cpe:2.3:a:sun:jre:1.4.0:::::::* cpe:2.3:a:sun:jre:1.4:::::::* cpe:2.3:a:sun:jre:1.4::linux::::: cpe:2.3:a:sun:jre:1.4::solaris::::: cpe:2.3:a:sun:jre:1.4::windows::::: cpe:2.3:a:sun:jre:1.3.1_9:::::::* cpe:2.3:a:sun:jre:1.3.1_8:::::::* cpe:2.3:a:sun:jre:1.3.1_7:::::::* cpe:2.3:a:sun:jre:1.3.1_6:::::::* cpe:2.3:a:sun:jre:1.3.1_5:::::::* cpe:2.3:a:sun:jre:1.3.1_4:::::::* cpe:2.3:a:sun:jre:1.3.1_3:::::::* cpe:2.3:a:sun:jre:1.3.1_28:::::::* cpe:2.3:a:sun:jre:1.3.1_27:::::::* cpe:2.3:a:sun:jre:1.3.1_26:::::::* cpe:2.3:a:sun:jre:1.3.1_25:::::::* cpe:2.3:a:sun:jre:1.3.1_24:::::::* cpe:2.3:a:sun:jre:1.3.1_23:::::::* cpe:2.3:a:sun:jre:1.3.1_22:::::::* cpe:2.3:a:sun:jre:1.3.1_21:::::::* cpe:2.3:a:sun:jre:1.3.1_20:::::::* cpe:2.3:a:sun:jre:1.3.1_2:::::::* cpe:2.3:a:sun:jre:1.3.1_19:::::::* cpe:2.3:a:sun:jre:1.3.1_18:::::::* cpe:2.3:a:sun:jre:1.3.1_17:::::::* cpe:2.3:a:sun:jre:1.3.1_16:::::::* cpe:2.3:a:sun:jre:1.3.1_15:::::::* cpe:2.3:a:sun:jre:1.3.1_14:::::::* cpe:2.3:a:sun:jre:1.3.1_13:::::::* cpe:2.3:a:sun:jre:1.3.1_12:::::::* cpe:2.3:a:sun:jre:1.3.1_11:::::::* cpe:2.3:a:sun:jre:1.3.1_10:::::::* cpe:2.3:a:sun:jre:1.3.1_1:::::::* cpe:2.3:a:sun:jre:1.3.1_09:::::::* cpe:2.3:a:sun:jre:1.3.1_09::linux::::: cpe:2.3:a:sun:jre:1.3.1_09::solaris::::: cpe:2.3:a:sun:jre:1.3.1_09::windows::::: cpe:2.3:a:sun:jre:1.3.1_08:::::::* cpe:2.3:a:sun:jre:1.3.1_07:::::::* cpe:2.3:a:sun:jre:1.3.1_07::solaris::::: cpe:2.3:a:sun:jre:1.3.1_07::linux::::: cpe:2.3:a:sun:jre:1.3.1_07::windows::::: cpe:2.3:a:sun:jre:1.3.1_06:::::::* cpe:2.3:a:sun:jre:1.3.1_06::solaris::::: cpe:2.3:a:sun:jre:1.3.1_06::linux::::: cpe:2.3:a:sun:jre:1.3.1_06::windows::::: cpe:2.3:a:sun:jre:1.3.1_05:::::::* cpe:2.3:a:sun:jre:1.3.1_05::linux::::: cpe:2.3:a:sun:jre:1.3.1_05::windows::::: cpe:2.3:a:sun:jre:1.3.1_05::solaris::::: cpe:2.3:a:sun:jre:1.3.1_04:::::::* cpe:2.3:a:sun:jre:1.3.1_03:::::::* cpe:2.3:a:sun:jre:1.3.1_03::windows::::: cpe:2.3:a:sun:jre:1.3.1_03::solaris::::: cpe:2.3:a:sun:jre:1.3.1_03::linux::::: cpe:2.3:a:sun:jre:1.3.1_02::solaris::::: cpe:2.3:a:sun:jre:1.3.1_02::windows::::: cpe:2.3:a:sun:jre:1.3.1_02::linux::::: cpe:2.3:a:sun:jre:1.3.1_02:::::::* cpe:2.3:a:sun:jre:1.3.1_01a:::::::* cpe:2.3:a:sun:jre:1.3.1_01:::::::* cpe:2.3:a:sun:jre:1.3.1:update2:::::: cpe:2.3:a:sun:jre:1.3.1:update1:::::: cpe:2.3:a:sun:jre:1.3.1:update16:::::: cpe:2.3:a:sun:jre:1.3.1:update18:::::: cpe:2.3:a:sun:jre:1.3.1:update20:::::: cpe:2.3:a:sun:jre:1.3.1:update19:::::: cpe:2.3:a:sun:jre:1.3.1:update1a:::::: cpe:2.3:a:sun:jre:1.3.1:update8:::::: cpe:2.3:a:sun:jre:1.3.1:update15:::::: cpe:2.3:a:sun:jre:1.3.1:update4:::::: cpe:2.3:a:sun:jre:1.3.1:update4:windows:::::* cpe:2.3:a:sun:jre:1.3.1::linux::::: cpe:2.3:a:sun:jre:1.3.1:update8:solaris:::::* cpe:2.3:a:sun:jre:1.3.1:update1a:windows:::::* cpe:2.3:a:sun:jre:1.3.1:update1:linux:::::* cpe:2.3:a:sun:jre:1.3.1:update4:solaris:::::* cpe:2.3:a:sun:jre:1.3.1:update8:windows:::::* cpe:2.3:a:sun:jre:1.3.1:update1:windows:::::* cpe:2.3:a:sun:jre:1.3.1:update1:solaris:::::* cpe:2.3:a:sun:jre:1.3.1:update8:linux:::::* cpe:2.3:a:sun:jre:1.3.1:update12:::::: cpe:2.3:a:sun:jre:1.3.1:update17:::::: cpe:2.3:a:sun:jre:1.3.1:-:::::: cpe:2.3:a:sun:jre:1.3.0:update5:::::: cpe:2.3:a:sun:jre:1.3.0:update4:::::: cpe:2.3:a:sun:jre:1.3.0:update1:::::: cpe:2.3:a:sun:jre:1.3.0:update3:::::: cpe:2.3:a:sun:jre:1.3.0:update2:::::: cpe:2.3:a:sun:jre:1.3.0:update4:windows:::::* cpe:2.3:a:sun:jre:1.3.0:update5:linux:::::* cpe:2.3:a:sun:jre:1.3.0:update5:solaris:::::* cpe:2.3:a:sun:jre:1.3.0:update3:linux:::::* cpe:2.3:a:sun:jre:1.3.0::windows::::: cpe:2.3:a:sun:jre:1.3.0:update4:linux:::::* cpe:2.3:a:sun:jre:1.3.0:update2:solaris:::::* cpe:2.3:a:sun:jre:1.3.0:update1:linux:::::* cpe:2.3:a:sun:jre:1.3.0::linux::::: cpe:2.3:a:sun:jre:1.3.0:update5:windows:::::* cpe:2.3:a:sun:jre:1.3.0:update2:linux:::::* cpe:2.3:a:sun:jre:1.3.0::solaris::::: cpe:2.3:a:sun:jre:1.3.0:update2:windows:::::* cpe:2.3:a:sun:jre:1.3.0:-:::::: cpe:2.3:a:sun:jre:1.2.2_07::solaris::::: cpe:2.3:a:sun:jre:1.2.2_012::solaris::::: cpe:2.3:a:sun:jre:1.2.2_011::solaris::::: cpe:2.3:a:sun:jre:1.2.2_011::linux::::: cpe:2.3:a:sun:jre:1.2.2_011::windows::::: cpe:2.3:a:sun:jre:1.2.2_007::linux::::: cpe:2.3:a:sun:jre:1.2.2_007::solaris::::: cpe:2.3:a:sun:jre:1.2.2_007::windows::::: cpe:2.3:a:sun:jre:1.2.2_006::linux::::: cpe:2.3:a:sun:jre:1.2.2_005::linux::::: cpe:2.3:a:sun:jre:1.2.2_004::linux::::: cpe:2.3:a:sun:jre:1.2.2_003::linux::::: cpe:2.3:a:sun:jre:1.2.2_003::linux_production::::: cpe:2.3:a:sun:jre:1.2.2::solaris::::: cpe:2.3:a:sun:jre:1.2.2:update10:linux:::::* cpe:2.3:a:sun:jre:1.2.2:update10:solaris:::::* cpe:2.3:a:sun:jre:1.2.2::windows::::: cpe:2.3:a:sun:jre:1.2.2:update10:windows:::::* cpe:2.3:a:sun:jre:1.2.2::linux_production::::: cpe:2.3:a:sun:jre:1.2.2:update10:::::: cpe:2.3:a:sun:jre:1.2:::::::* cpe:2.3:a:sun:jre:1.1.8:update13:::::: cpe:2.3:a:sun:jre:1.1.8:update7:::::: cpe:2.3:a:sun:jre:1.1.8:update8:::::: cpe:2.3:a:sun:jre:1.1.8:update14:::::: cpe:2.3:a:sun:jre:1.1:::::::*	331

SAINT Exploits

Description	Link
Java SE AtomicReferenceArray Unsafe Security Bypass	More info here

ExploitDB Exploits

id	Description
2012-03-30	Java AtomicReferenceArray Type Violation Vulnerability
2012-01-03	PHP Hash Table Collision Proof Of Concept

OpenVAS Exploits

Date	Description
2012-10-19	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-16351 File : nvt/gb_fedora_2012_16351_java-1.6.0-openjdk_fc16.nasl
2012-10-19	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-16351 File : nvt/gb_fedora_2012_16351_java-1.7.0-openjdk_fc16.nasl
2012-09-22	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-13127 File : nvt/gb_fedora_2012_13127_java-1.6.0-openjdk_fc16.nasl
2012-09-04	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-13138 File : nvt/gb_fedora_2012_13138_java-1.7.0-openjdk_fc16.nasl
2012-08-31	Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries. File : nvt/gb_VMSA-2012-0013.nasl
2012-08-30	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-2595 File : nvt/gb_fedora_2012_2595_java-1.7.0-openjdk_fc17.nasl
2012-08-22	Name : Oracle Java SE Java Runtime Environment Code Execution Vulnerability - (Windows) File : nvt/gb_oracle_java_se_code_exec_vuln_win.nasl
2012-08-02	Name : SuSE Update for java-1_6_0-openjdk openSUSE-SU-2012:0309-1 (java-1_6_0-openjdk) File : nvt/gb_suse_2012_0309_1.nasl
2012-07-30	Name : CentOS Update for java CESA-2012:0135 centos6 File : nvt/gb_CESA-2012_0135_java_centos6.nasl
2012-07-09	Name : RedHat Update for java-1.6.0-openjdk RHSA-2012:0135-01 File : nvt/gb_RHSA-2012_0135-01_java-1.6.0-openjdk.nasl
2012-06-19	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-9593 File : nvt/gb_fedora_2012_9593_java-1.7.0-openjdk_fc16.nasl
2012-06-19	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-9545 File : nvt/gb_fedora_2012_9545_java-1.6.0-openjdk_fc16.nasl
2012-04-09	Name : Java Runtime Environment Multiple Vulnerabilities (MAC OS X) File : nvt/gb_jre_mult_vuln_macosx.nasl
2012-04-02	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-1711 File : nvt/gb_fedora_2012_1711_java-1.6.0-openjdk_fc16.nasl
2012-04-02	Name : Fedora Update for java-1.7.0-openjdk FEDORA-2012-1690 File : nvt/gb_fedora_2012_1690_java-1.7.0-openjdk_fc16.nasl
2012-03-12	Name : Debian Security Advisory DSA 2420-1 (openjdk-6) File : nvt/deb_2420_1.nasl
2012-03-09	Name : Fedora Update for java-1.6.0-openjdk FEDORA-2012-1721 File : nvt/gb_fedora_2012_1721_java-1.6.0-openjdk_fc15.nasl
2012-03-09	Name : Ubuntu Update for openjdk-6 USN-1373-1 File : nvt/gb_ubuntu_USN_1373_1.nasl
2012-03-07	Name : Ubuntu Update for openjdk-6b18 USN-1373-2 File : nvt/gb_ubuntu_USN_1373_2.nasl
2012-02-27	Name : RedHat Update for java-1.6.0-openjdk RHSA-2012:0322-01 File : nvt/gb_RHSA-2012_0322-01_java-1.6.0-openjdk.nasl
2012-02-21	Name : Mandriva Update for java-1.6.0-openjdk MDVSA-2012:021 (java-1.6.0-openjdk) File : nvt/gb_mandriva_MDVSA_2012_021.nasl
2012-02-21	Name : Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 01) File : nvt/gb_oracle_java_se_jdk_mult_vuln_feb12_win_01.nasl
2012-02-21	Name : Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 02) File : nvt/gb_oracle_java_se_jdk_mult_vuln_feb12_win_02.nasl
2012-02-21	Name : Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 03) File : nvt/gb_oracle_java_se_jdk_mult_vuln_feb12_win_03.nasl
2012-02-21	Name : Oracle Java SE JRE Multiple Vulnerabilities - February 2012 (Windows - 01) File : nvt/gb_oracle_java_se_mult_vuln_feb12_win_01.nasl
2012-02-21	Name : Oracle Java SE JRE Multiple Vulnerabilities - February 2012 (Windows - 02) File : nvt/gb_oracle_java_se_mult_vuln_feb12_win_02.nasl
2012-02-21	Name : Oracle Java SE JRE Multiple Vulnerabilities - February 2012 (Windows - 03) File : nvt/gb_oracle_java_se_mult_vuln_feb12_win_03.nasl
2012-01-05	Name : Oracle GlassFish Server Hash Collision Denial of Service Vulnerability File : nvt/gb_glassfish_hash_collision_dos_vuln.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
78114	Oracle GlassFish Server Hash Collission Form Parameter Parsing Remote DoS Oracle GlassFish Server contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends multiple crafted parameters which trigger hash collisions, and will result in loss of availability for the program via CPU consumption.

Information Assurance Vulnerability Management (IAVM)

Date	Description
2012-09-13	IAVM : 2012-A-0147 - Multiple Vulnerabilities in VMware vCenter Server 4.1 Severity : Category I - VMSKEY : V0033793
2012-09-13	IAVM : 2012-A-0148 - Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1 Severity : Category I - VMSKEY : V0033794

Snort® IPS/IDS

Date	Description
2015-04-30	Nuclear exploit kit obfuscated file download RuleID : 33983 - Revision : 5 - Type : EXPLOIT-KIT
2015-04-30	Nuclear exploit kit landing page detected RuleID : 33982 - Revision : 3 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit eot outbound connection RuleID : 29453 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit landing page request RuleID : 29452 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit outbound jar request RuleID : 29451 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit outbound connection attempt RuleID : 29450 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit landing page RuleID : 29449 - Revision : 3 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit landing page RuleID : 29448 - Revision : 2 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit jar outbound connection RuleID : 29446 - Revision : 9 - Type : EXPLOIT-KIT
2014-02-21	Styx exploit kit fonts download page RuleID : 29445 - Revision : 2 - Type : EXPLOIT-KIT
2018-06-15	Goon/Infinity exploit kit payload download attempt RuleID : 28795-community - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Goon/Infinity exploit kit payload download attempt RuleID : 28795 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page request RuleID : 28478 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit outbound pdf request RuleID : 28477 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - readme.dll RuleID : 27898 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - calc.dll RuleID : 27897 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - contacts.dll RuleID : 27896 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - info.dll RuleID : 27895 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - about.dll RuleID : 27894 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit malicious redirection attempt RuleID : 27815 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page request RuleID : 27814 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page with payload RuleID : 27813 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit possible jar download RuleID : 27706 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit Java exploit requested RuleID : 27705 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit Java exploit requested RuleID : 27704 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit plugin detection RuleID : 27703 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit landing page RuleID : 27702 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Gong Da Jar file download RuleID : 27701 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	iFramer toolkit injected iframe detected - specific structure RuleID : 27271 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 27072 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 27071 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit JNLP request RuleID : 27070 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific structure RuleID : 27067 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jovf RuleID : 27042-community - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jovf RuleID : 27042 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jlnp RuleID : 27041-community - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jlnp RuleID : 27041 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jorg RuleID : 27040-community - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection jorg RuleID : 27040 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Goon/Infinity/Redkit exploit kit short jar request RuleID : 26808 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26807 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit short JNLP request RuleID : 26806 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit encrypted binary download RuleID : 26805 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit landing page - specific structure RuleID : 26653 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	iFramer injection - specific structure RuleID : 26617 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit successful redirection - jnlp bypass RuleID : 26541 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	iFramer injection - specific structure RuleID : 26540 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java payload detection RuleID : 26512 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Sakura exploit kit redirection structure RuleID : 26511 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf payload detection RuleID : 26510 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit java payload detection RuleID : 26509 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - info.dll RuleID : 26508 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page - specific structure RuleID : 26507 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit jar file redirection RuleID : 26506 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit jar file downloaded RuleID : 26434 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26384 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26383 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit java exploit request RuleID : 26377 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page redirection RuleID : 26351 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	TDS redirection - may lead to exploit kit RuleID : 26350 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit obfuscated portable executable RuleID : 26349 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit java exploit delivery RuleID : 26348 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit java exploit request RuleID : 26347 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit payload requested RuleID : 26346 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 26345 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page redirection RuleID : 26344 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Nuclear exploit kit landing page RuleID : 26343 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Nuclear exploit kit landing page - specific structure RuleID : 26342 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Nuclear exploit kit landing page RuleID : 26341 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval - ff.php RuleID : 26339 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	IFRAMEr injection detection - leads to exploit kit RuleID : 26338 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page - specific structure RuleID : 26337 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit redirection page RuleID : 26297 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page RuleID : 26296 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious jar download RuleID : 26256 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit redirection page RuleID : 26254 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit MyApplet class retrieval RuleID : 26229 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit redirection page RuleID : 26228 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 26227 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 26091 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit landing page RuleID : 26090 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit Portable Executable download RuleID : 26056 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26055 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26054 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26053 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 26052 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious jar file download RuleID : 26051 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit SWF file download RuleID : 26050 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 26049 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit PDF exploit RuleID : 26048 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit redirection structure RuleID : 26047 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 26046 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit iframe redirection attempt RuleID : 26033 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page RuleID : 26031 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Gong Da exploit kit redirection page received RuleID : 26013 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 25989 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page RuleID : 25988 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit three number PDF Request RuleID : 25972 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit redirection RuleID : 25971 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit Portable Executable download RuleID : 25968 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25967 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25966 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25965 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25964 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit SWF file download RuleID : 25963 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25962 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit former location - has been removed RuleID : 25960 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25959 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25958 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25957 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious class file download RuleID : 25956 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious jar file download RuleID : 25955 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit SWF file download RuleID : 25954 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 25953 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 25952 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25951 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit PDF exploit RuleID : 25950 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25862 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25861 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page RuleID : 25860 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit malicious jar file download RuleID : 25859 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit Java exploit download RuleID : 25858 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit PDF exploit RuleID : 25857 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit 32-alpha jar request RuleID : 25798 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection successful RuleID : 25611 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25598 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25597 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25596 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25595 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25594 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25593 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page - specific structure RuleID : 25591 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific structure RuleID : 25590 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25576 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25575 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25574 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool Exploit Kit SWF file download RuleID : 25573 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page RuleID : 25569 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page retrieval RuleID : 25568 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Multiple Exploit Kit Payload detection - setup.exe RuleID : 25526 - Revision : 2 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25510 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25509 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25508 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25507 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25506 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25505 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection successful RuleID : 25388 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - readme.exe RuleID : 25387 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - about.exe RuleID : 25386 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - calc.exe RuleID : 25385 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - contacts.exe RuleID : 25384 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit Payload detection - info.exe RuleID : 25383 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Multiple exploit kit malicious jar file dropped RuleID : 25382 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25328 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25327 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit java exploit retrieval RuleID : 25326 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit pdf exploit retrieval RuleID : 25325 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page detected RuleID : 25324 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25323 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit EOT file download RuleID : 25322 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit redirection attempt RuleID : 25255 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit portable executable download request RuleID : 25140 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit eot outbound connection RuleID : 25139 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit pdf outbound connection RuleID : 25138 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit jar outbound connection RuleID : 25137 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Styx exploit kit plugin detection connection RuleID : 25136 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Styx Exploit Kit outbound connection RuleID : 25135 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 32-bit font file download RuleID : 25056 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 64-bit font file download RuleID : 25055 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit outbound class retrieval RuleID : 25053 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit Java Exploit requested - 3 digit RuleID : 25052 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page redirection RuleID : 25051 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit requesting payload RuleID : 25045 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit url structure detected RuleID : 25043 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page in an email RuleID : 24865 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific-structure RuleID : 24864 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page in an email RuleID : 24863 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific-structure RuleID : 24862 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page in an email RuleID : 24861 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page - specific-structure RuleID : 24860 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 64-bit font file download RuleID : 24784 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit 32-bit font file download RuleID : 24783 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit outbound request RuleID : 24782 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit outbound request RuleID : 24781 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit - PDF Exploit RuleID : 24780 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit - PDF Exploit RuleID : 24779 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Cool exploit kit landing page - Title RuleID : 24778 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection successful RuleID : 24638 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection page - specific structure RuleID : 24637 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit redirection page - specific structure RuleID : 24636 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page download attempt RuleID : 24608 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page received - specific structure RuleID : 24593 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page download attempt RuleID : 24548 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page download attempt RuleID : 24547 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page download attempt RuleID : 24546 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole admin page outbound access attempt RuleID : 24544 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackhole admin page inbound access attempt RuleID : 24543 - Revision : 4 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit fallback executable download RuleID : 24501 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole - Cookie Set RuleID : 24475 - Revision : 3 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page Received RuleID : 24228 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 - URI Structure RuleID : 24227 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackholev2 exploit kit landing page received RuleID : 24226 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole possible email Landing to 8 chr folder RuleID : 24171 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure RuleID : 24054 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure RuleID : 24053 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - fewbgazr catch RuleID : 23962 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - hwehes RuleID : 23850 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole redirection attempt RuleID : 23849 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole redirection attempt RuleID : 23848 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole redirection page RuleID : 23797 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - Math.round catch RuleID : 23786 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - Math.floor catch RuleID : 23785 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 23781 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page request - tkr RuleID : 23622 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch ... RuleID : 23619 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Oracle Java Zip file directory record overflow attempt RuleID : 23560 - Revision : 8 - Type : FILE-JAVA
2014-01-10	Oracle Java Zip file directory record overflow attempt RuleID : 23243 - Revision : 13 - Type : FILE-JAVA
2014-01-10	Redkit exploit kit landing page Received - applet and flowbit RuleID : 23225 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page Requested - 8Digit.html RuleID : 23224 - Revision : 13 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page Received - applet and code RuleID : 23223 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit landing page Received - applet and 5 digit jar attempt RuleID : 23222 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Redkit Jar File Naming Algorithm RuleID : 23221 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit Java Exploit Requested - 5 digit jar RuleID : 23220 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Redkit exploit kit Java Exploit request to .class file RuleID : 23219 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Redkit Repeated Exploit Request Pattern RuleID : 23218 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page download attempt RuleID : 23159 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 23158 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Nuclear Pack exploit kit binary download RuleID : 23157 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Nuclear Pack exploit kit landing page RuleID : 23156 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Blackhole redirection attempt RuleID : 22949 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole Exploit Kit javascript service method RuleID : 22088 - Revision : 12 - Type : EXPLOIT-KIT
2014-01-10	Blackhole landing redirection page RuleID : 22041 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole suspected landing page RuleID : 22040 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole suspected landing page RuleID : 22039 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit landing page with specific structure - Loading RuleID : 21876 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Possible exploit kit post compromise activity - taskkill RuleID : 21875 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Possible exploit kit post compromise activity - StrReverse RuleID : 21874 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Java JRE sandbox breach attempt RuleID : 21869 - Revision : 8 - Type : FILE-OTHER
2014-01-10	Phoenix exploit kit post-compromise behavior RuleID : 21860 - Revision : 5 - Type : MALWARE-CNC
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21667 - Revision : 11 - Type : FILE-JAVA
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21666 - Revision : 11 - Type : FILE-JAVA
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21665 - Revision : 9 - Type : FILE-JAVA
2014-01-10	Oracle Java JRE sandbox Atomic breach attempt RuleID : 21664 - Revision : 9 - Type : FILE-JAVA
2014-01-10	Blackhole exploit kit landing page with specific structure - catch RuleID : 21661 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page Requested - /Index/index.php RuleID : 21660 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page Requested - /Home/index.php RuleID : 21659 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 21658 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page - specific structure RuleID : 21657 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21646-community - Revision : 16 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21646 - Revision : 16 - Type : EXPLOIT-KIT
2014-01-10	Phoenix exploit kit landing page RuleID : 21640 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - BBB RuleID : 21581 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific header RuleID : 21549 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific header RuleID : 21539 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21492-community - Revision : 22 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page with specific structure - prototype catch RuleID : 21492 - Revision : 22 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit JavaScript carat string splitting with hostile applet RuleID : 21438-community - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit JavaScript carat string splitting with hostile applet RuleID : 21438 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit URL - search.php?page= RuleID : 21348 - Revision : 8 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit URL - .php?page= RuleID : 21347 - Revision : 12 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit malicious jar download RuleID : 21346 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit malicious jar request RuleID : 21345 - Revision : 9 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit pdf download RuleID : 21344 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit pdf request RuleID : 21343 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit response RuleID : 21259 - Revision : 5 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit control panel access RuleID : 21141 - Revision : 7 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 21045 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit landing page RuleID : 21044 - Revision : 6 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit post-compromise download attempt - .php?e= RuleID : 21043 - Revision : 10 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit post-compromise download attempt - .php?f= RuleID : 21042 - Revision : 11 - Type : EXPLOIT-KIT
2014-01-10	Blackhole exploit kit URL - main.php?page= RuleID : 21041 - Revision : 12 - Type : EXPLOIT-KIT

Nessus® Vulnerability Scanner

Date	Description
2014-11-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-1455.nasl - Type : ACT_GATHER_INFO
2014-11-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1080.nasl - Type : ACT_GATHER_INFO
2014-07-22	Name : The remote Windows host contains a programming platform that is affected by m... File : oracle_jrockit_cpu_apr_2012.nasl - Type : ACT_GATHER_INFO
2014-06-30	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201406-32.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_java-1_6_0-openjdk-120222.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-136.nasl - Type : ACT_GATHER_INFO
2014-01-27	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201401-30.nasl - Type : ACT_GATHER_INFO
2013-09-04	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2012-43.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0322.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0135.nasl - Type : ACT_GATHER_INFO
2013-06-05	Name : The remote host has a virtualization management application installed that is... File : vmware_vcenter_vmsa-2012-0013.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote Unix host contains a programming platform that is affected by mult... File : oracle_java_cpu_feb_2012_unix.nasl - Type : ACT_GATHER_INFO
2013-01-25	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-ibm-120427.nasl - Type : ACT_GATHER_INFO
2013-01-25	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_4_2-ibm-120529.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0702.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120221_java_1_6_0_openjdk_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120216_java_1_6_0_sun_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120214_java_1_6_0_openjdk_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-06-14	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_java-1_4_2-ibm-8151.nasl - Type : ACT_GATHER_INFO
2012-04-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0514.nasl - Type : ACT_GATHER_INFO
2012-04-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0508.nasl - Type : ACT_GATHER_INFO
2012-04-05	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_6_update7.nasl - Type : ACT_GATHER_INFO
2012-04-05	Name : The remote host has a version of Java that is affected by multiple vulnerabil... File : macosx_java_10_7_2012-001.nasl - Type : ACT_GATHER_INFO
2012-03-01	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1373-2.nasl - Type : ACT_GATHER_INFO
2012-02-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2420.nasl - Type : ACT_GATHER_INFO
2012-02-29	Name : The remote Fedora host is missing a security update. File : fedora_2012-2595.nasl - Type : ACT_GATHER_INFO
2012-02-28	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_java-1_6_0-openjdk-120220.nasl - Type : ACT_GATHER_INFO
2012-02-27	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1373-1.nasl - Type : ACT_GATHER_INFO
2012-02-22	Name : The remote Fedora host is missing a security update. File : fedora_2012-1721.nasl - Type : ACT_GATHER_INFO
2012-02-22	Name : The remote web server is affected by a denial of service vulnerability. File : glassfish_cve-2011-5035.nasl - Type : ACT_GATHER_INFO
2012-02-22	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0322.nasl - Type : ACT_GATHER_INFO
2012-02-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-021.nasl - Type : ACT_GATHER_INFO
2012-02-20	Name : The remote Fedora host is missing a security update. File : fedora_2012-1711.nasl - Type : ACT_GATHER_INFO
2012-02-17	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0139.nasl - Type : ACT_GATHER_INFO
2012-02-16	Name : The remote Fedora host is missing a security update. File : fedora_2012-1690.nasl - Type : ACT_GATHER_INFO
2012-02-16	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-0135.nasl - Type : ACT_GATHER_INFO
2012-02-15	Name : The remote Windows host contains a programming platform that is affected by m... File : oracle_java_cpu_feb_2012.nasl - Type : ACT_GATHER_INFO
2012-02-15	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0135.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128641-30 File : solaris9_x86_128641.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128640-30 File : solaris9_128640.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128641-30 File : solaris10_x86_128641.nasl - Type : ACT_GATHER_INFO
2009-01-19	Name : The remote host is missing Sun Security Patch number 128640-30 File : solaris10_128640.nasl - Type : ACT_GATHER_INFO
2007-10-18	Name : The remote host is missing Sun Security Patch number 124672-20 File : solaris8_124672.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124673-20 File : solaris9_x86_124673.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124672-20 File : solaris9_124672.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124673-20 File : solaris10_x86_124673.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote host is missing Sun Security Patch number 124672-20 File : solaris10_124672.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:59:45	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	32
CPE ID(s)	530
Saint Exploit(s)	1
osvdb(s)	1
ExploitDB Exploit(s)	2
Openvas Exploit(s)	28
IAVM(s)	2
Snort® Rule(s)	271
Nessus® Exploit(s)	47

	Related
10	USN-1373-1
10	CVE-2012-0507
10	CVE-2012-0497
7.5	CVE-2012-0505
7.5	CVE-2012-0503
6.4	CVE-2012-0502
6.4	CVE-2011-3563
5	CVE-2012-0501
5	CVE-2011-5035
4.3	CVE-2012-0506
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 10 more Alert(s)