Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-6601

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2014-6601
Last Modified 14 Apr 2015 10:01:51
Published 21 Jan 2015 01:59:03
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-6601

Summary

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

Vulnerable Systems

Application

  • Oracle Jdk 1.6.0

  • Oracle Jdk 1.7.0

  • Oracle Jdk 1.8.0

  • Oracle Jre 1.6.0

  • Oracle Jre 1.7.0

  • Oracle Jre 1.8.0


References

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

SECTRACK - 1031580

DEBIAN - DSA-3147

DEBIAN - DSA-3144

HP - SSRT101951

UBUNTU - USN-2487-1

UBUNTU - USN-2486-1

SUSE - SUSE-SU-2015:0336

SUSE - openSUSE-SU-2015:0190

REDHAT - RHSA-2015:0086

REDHAT - RHSA-2015:0085

REDHAT - RHSA-2015:0080

REDHAT - RHSA-2015:0079

REDHAT - RHSA-2015:0068

HP - SSRT101968

HP - HPSBUX03281

SUSE - SUSE-SU-2015:0503

BUGTRAQ - 20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE

MISC - http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html

Related Patches

Oracle Java SE Runtime Environment (JRE) 7 Update 75 for Mac OS X

Oracle Java SE Runtime Environment (JRE) 8 Update 31 for Mac OS X


Last Updated: 27 May 2016 11:08:25