Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4823

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-4823
Last Modified 30 Oct 2013 11:28:38
Published 10 Jan 2013 07:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4823

Summary

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method."

Vulnerable Systems

Application

  • Ibm Java 1.4.2

  • Ibm Java 1.4.2.13

  • Ibm Java 1.4.2.13.1

  • Ibm Java 1.4.2.13.10

  • Ibm Java 1.4.2.13.11

  • Ibm Java 1.4.2.13.12

  • Ibm Java 1.4.2.13.13

  • Ibm Java 1.4.2.13.2

  • Ibm Java 1.4.2.13.3

  • Ibm Java 1.4.2.13.4

  • Ibm Java 1.4.2.13.5

  • Ibm Java 1.4.2.13.6

  • Ibm Java 1.4.2.13.7

  • Ibm Java 1.4.2.13.8

  • Ibm Java 1.4.2.13.9

  • Ibm Java 5.0.0.0

  • Ibm Java 5.0.11.1

  • Ibm Java 5.0.11.2

  • Ibm Java 5.0.12.0

  • Ibm Java 5.0.12.1

  • Ibm Java 5.0.12.2

  • Ibm Java 5.0.12.3

  • Ibm Java 5.0.12.4

  • Ibm Java 5.0.12.5

  • Ibm Java 5.0.13.0

  • Ibm Java 5.0.14.0

  • Ibm Java 6.0.0.0

  • Ibm Java 6.0.1.0

  • Ibm Java 6.0.10.0

  • Ibm Java 6.0.10.1

  • Ibm Java 6.0.11.0

  • Ibm Java 6.0.2.0

  • Ibm Java 6.0.3.0

  • Ibm Java 6.0.7.0

  • Ibm Java 6.0.8.0

  • Ibm Java 6.0.8.1

  • Ibm Java 6.0.9.0

  • Ibm Java 6.0.9.1

  • Ibm Java 6.0.9.2

  • Ibm Java 7.0.0.0

  • Ibm Java 7.0.1.0

  • Ibm Java 7.0.2.0

  • Ibm Java 7.0.3.0

  • Ibm Lotus Domino 8.0

  • Ibm Lotus Domino 8.0.1

  • Ibm Lotus Domino 8.0.2

  • Ibm Lotus Domino 8.0.2.1

  • Ibm Lotus Domino 8.0.2.2

  • Ibm Lotus Domino 8.0.2.3

  • Ibm Lotus Domino 8.0.2.4

  • Ibm Lotus Domino 8.5.0

  • Ibm Lotus Domino 8.5.0.1

  • Ibm Lotus Domino 8.5.1

  • Ibm Lotus Domino 8.5.1.1

  • Ibm Lotus Domino 8.5.1.2

  • Ibm Lotus Domino 8.5.1.3

  • Ibm Lotus Domino 8.5.1.4

  • Ibm Lotus Domino 8.5.1.5

  • Ibm Lotus Domino 8.5.2.0

  • Ibm Lotus Domino 8.5.2.1

  • Ibm Lotus Domino 8.5.2.2

  • Ibm Lotus Domino 8.5.2.3

  • Ibm Lotus Domino 8.5.2.4

  • Ibm Lotus Domino 8.5.3.0

  • Ibm Lotus Domino 8.5.3.1

  • Ibm Lotus Domino 8.5.3.2

  • Ibm Lotus Notes 8.0

  • Ibm Lotus Notes 8.0.0

  • Ibm Lotus Notes 8.0.1

  • Ibm Lotus Notes 8.0.2

  • Ibm Lotus Notes 8.0.2.0

  • Ibm Lotus Notes 8.0.2.1

  • Ibm Lotus Notes 8.0.2.2

  • Ibm Lotus Notes 8.0.2.3

  • Ibm Lotus Notes 8.0.2.4

  • Ibm Lotus Notes 8.0.2.5

  • Ibm Lotus Notes 8.0.2.6

  • Ibm Lotus Notes 8.5

  • Ibm Lotus Notes 8.5.0.0

  • Ibm Lotus Notes 8.5.0.1

  • Ibm Lotus Notes 8.5.1

  • Ibm Lotus Notes 8.5.1.0

  • Ibm Lotus Notes 8.5.1.1

  • Ibm Lotus Notes 8.5.1.2

  • Ibm Lotus Notes 8.5.1.3

  • Ibm Lotus Notes 8.5.1.4

  • Ibm Lotus Notes 8.5.1.5

  • Ibm Lotus Notes 8.5.2.0

  • Ibm Lotus Notes 8.5.2.1

  • Ibm Lotus Notes 8.5.2.2

  • Ibm Lotus Notes 8.5.2.3

  • Ibm Lotus Notes 8.5.3

  • Ibm Lotus Notes 8.5.3.1

  • Ibm Lotus Notes 8.5.3.2

  • Ibm Lotus Notes 8.5.4

  • Ibm Lotus Notes Sametime 8.0.80407

  • Ibm Lotus Notes Sametime 8.0.80822

  • Ibm Lotus Notes Sametime 8.5.1.20100709-1631

  • Ibm Lotus Notes Traveler 8.0

  • Ibm Lotus Notes Traveler 8.0.1

  • Ibm Lotus Notes Traveler 8.0.1.2

  • Ibm Lotus Notes Traveler 8.0.1.3

  • Ibm Lotus Notes Traveler 8.5.0.0

  • Ibm Lotus Notes Traveler 8.5.0.1

  • Ibm Lotus Notes Traveler 8.5.0.2

  • Ibm Lotus Notes Traveler 8.5.1.1

  • Ibm Lotus Notes Traveler 8.5.1.2

  • Ibm Lotus Notes Traveler 8.5.1.3

  • Ibm Lotus Notes Traveler 8.5.2.1

  • Ibm Lotus Notes Traveler 8.5.3

  • Ibm Lotus Notes Traveler 8.5.3.1

  • Ibm Lotus Notes Traveler 8.5.3.2

  • Ibm Lotus Notes Traveler 8.5.3.3

  • Ibm Rational Change 4.7

  • Ibm Rational Change 5.1

  • Ibm Rational Change 5.2

  • Ibm Rational Change 5.3

  • Ibm Rational Host On-demand 1.6.0.12

  • Ibm Rational Host On-demand 10.0.10.0

  • Ibm Rational Host On-demand 10.0.9.0

  • Ibm Rational Host On-demand 11.0.3.0

  • Ibm Rational Host On-demand 11.0.4.0

  • Ibm Rational Host On-demand 11.0.5.0

  • Ibm Rational Host On-demand 11.0.5.1

  • Ibm Rational Host On-demand 11.0.6.0

  • Ibm Rational Host On-demand 11.0.6.1

  • Ibm Rational Host On-demand 8.0.8.0

  • Ibm Rational Host On-demand 9.0.8.0

  • Ibm Service Delivery Manager 7.2.1.0

  • Ibm Service Delivery Manager 7.2.2.0

  • Ibm Smart Analytics System 5600 Software -

  • Ibm Smart Analytics System 5600 Software 9.7

  • Ibm Tivoli Monitoring 6.1.0

  • Ibm Tivoli Monitoring 6.1.0.7

  • Ibm Tivoli Monitoring 6.2.0

  • Ibm Tivoli Monitoring 6.2.0.1

  • Ibm Tivoli Monitoring 6.2.0.2

  • Ibm Tivoli Monitoring 6.2.0.3

  • Ibm Tivoli Monitoring 6.2.1

  • Ibm Tivoli Monitoring 6.2.1.0

  • Ibm Tivoli Monitoring 6.2.1.1

  • Ibm Tivoli Monitoring 6.2.1.2

  • Ibm Tivoli Monitoring 6.2.1.3

  • Ibm Tivoli Monitoring 6.2.1.4

  • Ibm Tivoli Monitoring 6.2.2

  • Ibm Tivoli Monitoring 6.2.2.0

  • Ibm Tivoli Monitoring 6.2.2.1

  • Ibm Tivoli Monitoring 6.2.2.2

  • Ibm Tivoli Monitoring 6.2.2.3

  • Ibm Tivoli Monitoring 6.2.2.4

  • Ibm Tivoli Monitoring 6.2.2.5

  • Ibm Tivoli Monitoring 6.2.2.6

  • Ibm Tivoli Monitoring 6.2.2.7

  • Ibm Tivoli Monitoring 6.2.2.8

  • Ibm Tivoli Monitoring 6.2.2.9

  • Ibm Tivoli Monitoring 6.2.3

  • Ibm Tivoli Monitoring 6.2.3.0

  • Ibm Tivoli Monitoring 6.2.3.1

  • Ibm Tivoli Monitoring 6.2.3.2

  • Ibm Tivoli Remote Control 5.1.2

  • Ibm Websphere Real Time 2.0

  • Ibm Websphere Real Time 3.0

  • Tivoli Storage Productivity Center 5.0

  • Tivoli Storage Productivity Center 5.1

  • Tivoli Storage Productivity Center 5.1.1


References

CONFIRM - https://www-304.ibm.com/support/docview.wss?uid=swg21616546

XF - ibm-java-defineclass-code-execution(78767)

BID - 55495

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21621154

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21616708

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21616652

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21616617

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21616616

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21616594

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21616490

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21615800

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21615705

AIXAPAR - IV29687

SECUNIA - 51634

BUGTRAQ - 20120911 [SE-2012-01] Security vulnerabilities in IBM Java

REDHAT - RHSA-2012:1467

REDHAT - RHSA-2012:1466

SECUNIA - 51327

SECUNIA - 51326

REDHAT - RHSA-2013:1456

REDHAT - RHSA-2013:1455


Last Updated: 27 May 2016 11:01:36