Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-6593

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2014-6593
Last Modified 14 Apr 2015 10:01:43
Published 21 Jan 2015 10:28:29
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2014-6593

Summary

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit 27.8.4 and 28.3.4 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.

Vulnerable Systems

Application

  • Oracle Jdk 1.5.0

  • Oracle Jdk 1.6.0

  • Oracle Jdk 1.7.0

  • Oracle Jdk 1.8.0

  • Oracle Jre 1.5.0

  • Oracle Jre 1.6.0

  • Oracle Jre 1.7.0

  • Oracle Jre 1.8.0

  • Oracle Jrockit R27.8.4

  • Oracle Jrockit R28.3.4


References

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

SECTRACK - 1031580

BID - 72169

CONFIRM - https://www-304.ibm.com/support/docview.wss?uid=swg21695474

DEBIAN - DSA-3147

DEBIAN - DSA-3144

HP - SSRT101951

UBUNTU - USN-2487-1

UBUNTU - USN-2486-1

SUSE - SUSE-SU-2015:0336

SUSE - openSUSE-SU-2015:0190

REDHAT - RHSA-2015:0264

REDHAT - RHSA-2015:0136

REDHAT - RHSA-2015:0086

REDHAT - RHSA-2015:0085

REDHAT - RHSA-2015:0080

REDHAT - RHSA-2015:0079

REDHAT - RHSA-2015:0068

HP - SSRT101968

HP - HPSBUX03281

SUSE - SUSE-SU-2015:0503

BUGTRAQ - 20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE

MISC - http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html

Related Patches

Oracle Java SE Runtime Environment (JRE) 7 Update 75 for Mac OS X

Oracle Java SE Runtime Environment (JRE) 8 Update 31 for Mac OS X


Last Updated: 27 May 2016 11:08:07