Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4681

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2012-4681
Last Modified 11 Oct 2013 10:35:38
Published 27 Aug 2012 08:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4681

Summary

Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.ClassFinder.findClass and leveraging an exception with the forName method to access restricted classes from arbitrary packages such as sun.awt.SunToolkit, then (2) using "reflection with a trusted immediate caller" to leverage the getField method to access and modify private fields, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class.

Vulnerable Systems

Application

  • Oracle Jdk 1.4.2 38

  • Oracle Jdk 1.5.0

  • Oracle Jdk 1.6.0

  • Oracle Jdk 1.7.0

  • Oracle Jre 1.4.2 38

  • Oracle Jre 1.5.0

  • Oracle Jre 1.6.0

  • Oracle Jre 1.7.0

  • Sun Jdk 1.4.2

  • Sun Jdk 1.4.2 1

  • Sun Jdk 1.4.2 10

  • Sun Jdk 1.4.2 11

  • Sun Jdk 1.4.2 12

  • Sun Jdk 1.4.2 13

  • Sun Jdk 1.4.2 14

  • Sun Jdk 1.4.2 15

  • Sun Jdk 1.4.2 16

  • Sun Jdk 1.4.2 17

  • Sun Jdk 1.4.2 18

  • Sun Jdk 1.4.2 19

  • Sun Jdk 1.4.2 2

  • Sun Jdk 1.4.2 22

  • Sun Jdk 1.4.2 23

  • Sun Jdk 1.4.2 25

  • Sun Jdk 1.4.2 26

  • Sun Jdk 1.4.2 27

  • Sun Jdk 1.4.2 28

  • Sun Jdk 1.4.2 29

  • Sun Jdk 1.4.2 3

  • Sun Jdk 1.4.2 30

  • Sun Jdk 1.4.2 31

  • Sun Jdk 1.4.2 32

  • Sun Jdk 1.4.2 33

  • Sun Jdk 1.4.2 34

  • Sun Jdk 1.4.2 35

  • Sun Jdk 1.4.2 36

  • Sun Jdk 1.4.2 37

  • Sun Jdk 1.4.2 4

  • Sun Jdk 1.4.2 5

  • Sun Jdk 1.4.2 6

  • Sun Jdk 1.4.2 7

  • Sun Jdk 1.4.2 8

  • Sun Jdk 1.4.2 9

  • Sun Jdk 1.5.0

  • Sun Jdk 1.6.0

  • Sun Jdk 1.6.0.200

  • Sun Jdk 1.6.0.210

  • Sun Jre 1.4.2 1

  • Sun Jre 1.4.2 10

  • Sun Jre 1.4.2 11

  • Sun Jre 1.4.2 12

  • Sun Jre 1.4.2 13

  • Sun Jre 1.4.2 14

  • Sun Jre 1.4.2 15

  • Sun Jre 1.4.2 16

  • Sun Jre 1.4.2 17

  • Sun Jre 1.4.2 18

  • Sun Jre 1.4.2 19

  • Sun Jre 1.4.2 2

  • Sun Jre 1.4.2 20

  • Sun Jre 1.4.2 21

  • Sun Jre 1.4.2 22

  • Sun Jre 1.4.2 23

  • Sun Jre 1.4.2 24

  • Sun Jre 1.4.2 25

  • Sun Jre 1.4.2 26

  • Sun Jre 1.4.2 27

  • Sun Jre 1.4.2 28

  • Sun Jre 1.4.2 29

  • Sun Jre 1.4.2 3

  • Sun Jre 1.4.2 30

  • Sun Jre 1.4.2 31

  • Sun Jre 1.4.2 32

  • Sun Jre 1.4.2 33

  • Sun Jre 1.4.2 34

  • Sun Jre 1.4.2 35

  • Sun Jre 1.4.2 36

  • Sun Jre 1.4.2 37

  • Sun Jre 1.4.2 4

  • Sun Jre 1.4.2 5

  • Sun Jre 1.4.2 6

  • Sun Jre 1.4.2 7

  • Sun Jre 1.4.2 8

  • Sun Jre 1.4.2 9

  • Sun Jre 1.5.0

  • Sun Jre 1.6.0


References

MISC - https://community.rapid7.com/community/metasploit/blog/2012/08/27/lets-start-the-week-with-a-new-java-0day

MISC - http://labs.alienvault.com/labs/index.php/2012/new-java-0day-exploited-in-the-wild/

MISC - http://blog.fireeye.com/research/2012/08/zero-day-season-is-not-over-yet.html

CONFIRM - http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html

MISC - http://www.deependresearch.org/2012/08/java-7-vulnerability-analysis.html

MISC - http://immunityproducts.blogspot.com/2012/08/java-0day-analysis-cve-2012-4681.html

SUSE - SUSE-SU-2012:1231

REDHAT - RHSA-2012:1225

SUSE - SUSE-SU-2012:1398

HP - HPSBUX02824

HP - SSRT100970

CERT - TA12-240A

SECUNIA - 51044

Related Patches

Oracle Java JRE 1.6.0_35 for Windows (Update) (All Languages) (See Notes)

Oracle Java JRE 1.7.0_07 for Windows (Update) (All Languages) (See Notes)

Oracle Java JRE 1.7.0_07 for Mac OS X (Update) (Rev 2)

Oracle Java JRE 1.6.0_35 for Windows (Update) (64Bit) (All Languages) (See Notes)

Oracle Java JRE 1.7.0_07 for Windows (Update) (64Bit) (All Languages) (See Notes)

Novell SUSE 2012:6839 java-1_7_0-ibm security update for SLES 11 SP2 i586

Novell SUSE 2012:6839 java-1_7_0-ibm security update for SLES 11 SP2 x86_64

Novell SUSE 2012:6987 java-1_6_0-openjdk security update for SLED 11 SP2 i586

Novell SUSE 2012:6987 java-1_6_0-openjdk security update for SLED 11 SP2 x86_64


Last Updated: 27 May 2016 11:01:36