Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2420

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2014-2420
Last Modified 20 Feb 2015 09:59:42
Published 15 Apr 2014 10:55:15
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2014-2420

Summary

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect integrity via unknown vectors related to Deployment.

Vulnerable Systems

Application

  • Oracle Jdk 1.6.0

  • Oracle Jdk 1.7.0

  • Oracle Jdk 1.8.0

  • Oracle Jre 1.6.0

  • Oracle Jre 1.7.0

  • Oracle Jre 1.8.0


References

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

BID - 66919

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21672080

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg21677387

SECUNIA - 60111

GENTOO - GLSA-201502-12

Related Patches

Oracle Java JRE 1.7.0_55 for Windows (Update) (All Languages) (See Notes)

Oracle Java JRE 1.7.0_55 for Mac OS X (Update)

Oracle Java JRE 1.8.0_05 for Windows (Update) (All Languages) (See Notes)

Oracle Java JRE 1.8.0_05 for Mac OS X (Update)

Oracle Java JRE 1.7.0_55 for Windows (Update) (64Bit) (All Languages) (See Notes)


Last Updated: 27 May 2016 11:04:58