Oval Definition:oval:org.mitre.oval:def:28398
Revision Date:2015-05-11Version:19
Title:Potential security vulnerabilities have been identified in the Java RuntimeEnvironment (JRE) and the Java Developer Kit (JDK) running on HP-UX. These vulnerabilitiescould allow remote unauthorized access, disclosure of information, and othervulnerabilities.
Description:The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2014-3566
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • platforms
  • HP-UX B.11.23
  • OR HP-UX B.11.31
  • AND filesets test
  • Jdk70.JDK70 version is less than 1.7.0.12.00
  • OR Jdk70.JDK70-COM version is less than 1.7.0.12.00
  • OR Jdk70.JDK70-IPF32 version is less than 1.7.0.12.00
  • OR Jdk70.JDK70-IPF64 version is less than 1.7.0.12.00
  • OR Jdk70.JDK70-DEMO version is less than 1.7.0.12.00
  • OR Jre70.JRE70 version is less than 1.7.0.12.00
  • OR Jre70.JRE70-COM version is less than 1.7.0.12.00
  • OR Jre70.JRE70-COM-DOC version is less than 1.7.0.12.00
  • OR Jre70.JRE70-IPF32 version is less than 1.7.0.12.00
  • OR Jre70.JRE70-IPF32-HS version is less than 1.7.0.12.00
  • OR Jre70.JRE70-IPF64 version is less than 1.7.0.12.00
  • OR Jre70.JRE70-IPF64-HS version is less than 1.7.0.12.00
    • BACK