语言:
http://www.nessus.org/u?e5ef03d8
https://www.oracle.com/technetwork/topics/security/whatsnew/index.html
https://access.redhat.com/errata/RHSA-2012:1009
https://access.redhat.com/security/cve/cve-2012-1724
https://access.redhat.com/security/cve/cve-2012-1725
https://access.redhat.com/security/cve/cve-2012-1719
https://access.redhat.com/security/cve/cve-2012-1718
https://access.redhat.com/security/cve/cve-2012-1723
https://access.redhat.com/security/cve/cve-2012-1717
https://access.redhat.com/security/cve/cve-2012-1716
https://access.redhat.com/security/cve/cve-2012-1711
严重性: Critical
ID: 59637
文件名: redhat-RHSA-2012-1009.nasl
版本: 1.30
类型: local
代理: unix
发布时间: 2012/6/21
最近更新时间: 2022/3/8
支持的传感器: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
风险因素: Critical
分数: 9.9
风险因素: Critical
基本分数: 10
时间分数: 8.7
矢量: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS 分数来源: CVE-2012-1725
CPE: p-cpe:/a:redhat:enterprise_linux:java-1.7.0-openjdk, p-cpe:/a:redhat:enterprise_linux:java-1.7.0-openjdk-debuginfo, p-cpe:/a:redhat:enterprise_linux:java-1.7.0-openjdk-demo, p-cpe:/a:redhat:enterprise_linux:java-1.7.0-openjdk-devel, p-cpe:/a:redhat:enterprise_linux:java-1.7.0-openjdk-javadoc, p-cpe:/a:redhat:enterprise_linux:java-1.7.0-openjdk-src, cpe:/o:redhat:enterprise_linux:6, cpe:/o:redhat:enterprise_linux:6.3
必需的 KB 项: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
可利用: true
易利用性: Exploits are available
补丁发布日期: 2012/6/20
漏洞发布日期: 2012/6/16
CISA 已知可遭利用的漏洞到期日期: 2022/3/24
Core Impact
Metasploit (Java Applet Field Bytecode Verifier Cache Remote Code Execution)
CVE: CVE-2012-1711, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1718, CVE-2012-1719, CVE-2012-1723, CVE-2012-1724, CVE-2012-1725, CVE-2012-1726
BID: 53948
RHSA: 2012:1009