HTTP: Oracle Java AtomicReferenceArray Sandbox Breach
This signature detects attempts to exploit a known flaw in Oracle Java. An unauthorized remote attacker can exploit this vulnerability by enticing the target user to open a malicious Java application or applet. Successful exploitation could breach the JRE sandbox and result in execution of arbitrary code the target system.
Extended Description
Oracle Java SE is prone to a remote code execution vulnerability in Java Runtime Environment. An attacker can exploit this issue to bypass the Java sandbox restriction and execute arbitrary code. This vulnerability affects the following supported versions: 7 Update 2, 6 Update 30, 5.0 Update 33
Affected Products
Sun jre_(linux_production_release)
Short Name
HTTP:STC:JAVA:ATOMIC-SB-BREACH
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
AtomicReferenceArray Breach CVE-2012-0507 Java Oracle Sandbox bid:52161
Release Date
04/03/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3717
False Positive
Unknown
Vendors
Red_hat
Suse
Apple
Hitachi
Sun
Hp
Oracle
Ubuntu
Mandriva
Debian
Ibm
CVSS Score
10.0