HTTP: IBM Java package java.lang.ClassLoader.defineClass Remote Code Execution
This signature detects attempts to exploit a known flaw in IBM Java "java.lang.ClassLoader.defineClass" package. A successful attack can lead to arbitrary code execution.
Extended Description
Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method."
Affected Products
Tivoli_storage_productivity_center 5.0
Short Name
HTTP:STC:JAVA:IBM-CLASS-LDR-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2012-4823 Code Execution IBM Java Remote bid:55495 java.lang.ClassLoader.defineClass package
Release Date
02/18/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Tivoli_storage_productivity_center
Ibm
CVSS Score
9.3