|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Windows >> Sun Java Runtime Environment GIF Image Buffer Overflow Vulnerability (102760) Vulnerability Assessment Details
|
Sun Java Runtime Environment GIF Image Buffer Overflow Vulnerability (102760) |
||
Checks version of Sun JRE Detailed Explanation for this Vulnerability Assessment Summary : The remote Windows host has a version of Sun's Java Runtime Environment that is affected by a buffer overflow vulnerability. Description : According to its version number, the Sun JRE installed on the remote host has a buffer overflow issue that can be triggered when parsing a GIF image with the image width in an image block set to 0. If an attacker can trick a user on the affected system into processing a specially-crafted image file, say by visiting a malicious web site, he may be able to leverage this flaw to execute arbitrary code on the affected system subject to the user's rights. See also : http://www.zerodayinitiative.com/advisories/ZDI-07-005.html http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0329.html http://sunsolve.sun.com/search/document.do?assetkey=1-26-102760-1 Solution : Update to Sun Java 2 JDK and JRE 5.0 Update 10 / SDK and JRE 1.4.2_13 / SDK and JRE 1.3.1_19 or later and remove if necessary any affected versions. Network Security Threat Level: High / CVSS Base Score : 8.0 (AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N) Networks Security ID: 22085 Vulnerability Assessment Copyright: This script is Copyright (C) 2007 Tenable Network Security |
||
Cables, Connectors |
A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G
$13.99
HyperX FURY DDR3 8GB 16GB 32GB 1600 MHz PC3-12800 Desktop RAM Memory DIMM 240pin
$12.90
Samsung 128GB (4x 32GB) M86B4G70DM0-CMA3 PC3-14900L 4Rx4 DDR3 ECC Reg Server Mem
$39.99
Samsung 16GB 2Rx4 PC4-2400 RDIMM DDR4-19200 ECC REG Registered Server Memory RAM
$20.99
MTA36ASF2G72PZ-2G1B1 MICRON 16GB 2RX4 PC4-2133P Server MEMORY
$15.00
Team T-FORCE VULCAN Z 16GB (2 x 8GB) 288-Pin PC RAM DDR4 3200 (PC4 25600) XMP
$35.99
Lot of 56 X 16GB 2Rx4 PC3-14900R ECC Server Memory
$299.00
Kingston HyperX FURY DDR3 8GB 16GB 32G 1600 1866 1333 Desktop Memory RAM DIMM
$13.25
A-Tech 256GB 4x 64GB 4Rx4 PC4-19200 ECC Load Reduced LRDIMM Server Memory RAM
$287.96
A-Tech 128GB 4x 32GB 2Rx4 PC4-19200R DDR4 2400 ECC REG RDIMM Server Memory RAM
$191.96
|
||
No Discussions have been posted on this vulnerability. |