Oval Definition:oval:org.mitre.oval:def:19423
Revision Date:2015-04-20Version:31
Title:HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
Description:Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2013-0424
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02864
  • platforms
  • HP-UX B.11.11
  • OR HP-UX B.11.23
  • AND filesets tests
  • Jdk60.JDK60-COM version is less than 1.6.0.18.00
  • OR Jdk60.JDK60-PA20 version is less than 1.6.0.18.00
  • OR Jdk60.JDK60-PA20W version is less than 1.6.0.18.00
  • OR Jre60.JRE60-COM version is less than 1.6.0.18.00
  • OR Jre60.JRE60-COM-DOC version is less than 1.6.0.18.00
  • OR Jre60.JRE60-PA20 version is less than 1.6.0.18.00
  • OR Jre60.JRE60-PA20-HS version is less than 1.6.0.18.00
  • OR Jre60.JRE60-PA20W version is less than 1.6.0.18.00
  • OR Jre60.JRE60-PA20W-HS version is less than 1.6.0.18.00
  • OR Jdk60.JDK60-IPF32 version is less than 1.6.0.18.00
  • OR Jdk60.JDK60-IPF64 version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF32 version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF32-HS version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF64 version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF64-HS version is less than 1.6.0.18.00
  • OR Criteria meets HP Security Bulletin HPSBUX02864
  • platforms
  • HP-UX B.11.23
  • OR HP-UX B.11.31
  • AND filesets tests
  • Jdk60.JDK60-COM version is less than 1.6.0.18.00
  • OR Jdk60.JDK60-IPF32 version is less than 1.6.0.18.00
  • OR Jdk60.JDK60-IPF64 version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF32 version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF32-HS version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF64 version is less than 1.6.0.18.00
  • OR Jre60.JRE60-IPF64-HS version is less than 1.6.0.18.00
  • OR Jre60.JRE60-COM version is less than 1.6.0.18.00
    • BACK