Download
| Alert*
oval:org.secpod.oval:def:19708
The host is installed with Oracle Java SE 6 before Update 15 and is prone to information disclosure vulnerability. A flaw is present in the applications, which fails to properly handle an untrusted (1) applet or (2) application. Successful exploitation allows context-dependent attackers to bypass in ... oval:org.secpod.oval:def:202770 These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. The Java Runtime Environment contains the software and tools that users need to run applications written using the Java programming language. A flaw was found in the way the XML Digital Signatu ... oval:org.secpod.oval:def:101435 The OpenJDK runtime environment. oval:org.secpod.oval:def:300474 Multiple Java OpenJDK security vulnerabilities has been identified and fixed: The design of the W3C XML Signature Syntax and Processing recommendation specifies an HMAC truncation length but does not require a minimum for its length, which allows attackers to spoof HMAC-based signatures and bypass ... oval:org.secpod.oval:def:500534 These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. The Java Runtime Environment contains the software and tools that users need to run applications written using the Java programming language. A flaw was found in the way the XML Digital Signatu ... oval:org.secpod.oval:def:700354 It was discovered that the XML HMAC signature system did not correctly check certain lengths. If an attacker sent a truncated HMAC, it could bypass authentication, leading to potential privilege escalation. It was discovered that certain variables could leak information. If a user were tricked into ... oval:org.secpod.oval:def:101499 The OpenJDK runtime environment. oval:org.secpod.oval:def:202777 These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. The Java Runtime Environment contains the software and tools that users need to run applications written using the Java programming language. A flaw was found in the way the XML Digital Signatu ... |