Arbitrary code execution vulnerability in Oracle Java via specially crafted applet| ID: oval:org.secpod.oval:def:9510 | Date: (C)2013-03-09 (M)2023-12-07 |
| Class: VULNERABILITY | Family: macos |
The host is installed with Oracle Java 1.6.0 through 1.6.0_41 or 1.7.0 through 1.7.0_15 and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a specially crafted applet that, when loaded by the target user, will read and write arbitrary memory in the JVM process. Successful exploitation allows attackers to cause arbitrary code to be executed on the target user's system.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS 12 |
| Apple Mac OS 11 |
| Apple Mac OS X 10.15 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.8 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X 10.10 |
| Apple Mac OS X Server 10.8 |
| Apple Mac OS X Server 10.9 |
| Apple Mac OS X Server 10.10 |
