Oval Definition:oval:org.mitre.oval:def:8520
Revision Date:2015-04-20Version:27
Title:HP-UX Running Java, Remote Increase in Privilege, Denial of Service and Other Vulnerabilities
Description:XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service (infinite loop and application hang) via malformed XML input, as demonstrated by the Codenomicon XML fuzzing framework.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-2625
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Software section
  • HP-UX B.11.11
  • OR HP-UX B.11.23
  • OR HP-UX B.11.31
  • AND filesets tests
  • Jdk14.JDK14-IPF32 version is less than 1.4.2.23.00
  • OR Jre14.JRE14-IPF32-HS version is less than 1.4.2.23.00
  • OR Jre14.JRE14-IPF64 version is less than 1.4.2.23.00
  • OR Jdk14.JDK14-IPF64 version is less than 1.4.2.23.00
  • OR Jdk14.JDK14-PA11 version is less than 1.4.2.23.00
  • OR Jre14.JRE14-COM version is less than 1.4.2.23.00
  • OR Jdk14.JDK14-PA20 version is less than 1.4.2.23.00
  • OR Jre14.JRE14-PA11 version is less than 1.4.2.23.00
  • OR Jdk14.JDK14-PA20W version is less than 1.4.2.23.00
  • OR Jre14.JRE14-PA11-HS version is less than 1.4.2.23.00
  • OR Jre14.JRE14-PA20 version is less than 1.4.2.23.00
  • OR Jre14.JRE14-PA20-HS version is less than 1.4.2.23.00
  • OR Jre14.JRE14-PA20W version is less than 1.4.2.23.00
  • OR Jre14.JRE14-IPF64-HS version is less than 1.4.2.23.00
  • OR Jre14.JRE14-PA20W-HS version is less than 1.4.2.23.00
  • OR Jre14.JRE14-IPF32 version is less than 1.4.2.23.00
  • OR Jdk14.JDK14-COM version is less than 1.4.2.23.00
  • OR Jre15.JRE15-IPF64-HS version is less than 1.5.0.17.00
  • OR Jdk15.JDK15-IPF32 version is less than 1.5.0.17.00
  • OR Jdk15.JDK15-PA20 version is less than 1.5.0.17.00
  • OR Jdk15.JDK15-IPF64 version is less than 1.5.0.17.00
  • OR Jre15.JRE15-COM version is less than 1.5.0.17.00
  • OR Jre15.JRE15-PA20 version is less than 1.5.0.17.00
  • OR Jre15.JRE15-PA20-HS version is less than 1.5.0.17.00
  • OR Jre15.JRE15-PA20W version is less than 1.5.0.17.00
  • OR Jre15.JRE15-PA20W-HS version is less than 1.5.0.17.00
  • OR Jre15.JRE15-IPF32 version is less than 1.5.0.17.00
  • OR Jre15.JRE15-IPF32-HS version is less than 1.5.0.17.00
  • OR Jdk15.JDK15-PA20W version is less than 1.5.0.17.00
  • OR Jre15.JRE15-IPF64 version is less than 1.5.0.17.00
  • OR Jdk15.JDK15-COM version is less than 1.5.0.17.00
  • OR Jdk60.JDK60-PA20 version is less than 1.6.0.05.00
  • OR Jre60.JRE60-PA20W-HS version is less than 1.6.0.05.00
  • OR Jdk60.JDK60-PA20W version is less than 1.6.0.05.00
  • OR Jdk60.JDK60-COM version is less than 1.6.0.05.00
  • OR Jre60.JRE60-COM version is less than 1.6.0.05.00
  • OR Jre60.JRE60-IPF32 version is less than 1.6.0.05.00
  • OR Jre60.JRE60-IPF32-HS version is less than 1.6.0.05.00
  • OR Jre60.JRE60-IPF64 version is less than 1.6.0.05.00
  • OR Jre60.JRE60-IPF64-HS version is less than 1.6.0.05.00
  • OR Jre60.JRE60-PA20 version is less than 1.6.0.05.00
  • OR Jdk60.JDK60-IPF32 version is less than 1.6.0.05.00
  • OR Jre60.JRE60-PA20-HS version is less than 1.6.0.05.00
  • OR Jdk60.JDK60-IPF64 version is less than 1.6.0.05.00
  • OR Jre60.JRE60-PA20W version is less than 1.6.0.05.00
    • BACK