Информационная безопасность
[RU] switch to English

Дополнительная информация

  Многочисленные уязвимости безопасности в Oracle Java

  ZDI-12-142 : Oracle Java WebStart Browser Argument Injection Remote Code Execution Vulnerability

  ZDI-12-083 : Oracle Java OpenAL Library Pointer Manipulation Remote Code Execution Vulnerability

  ZDI-12-081 : Oracle Java GlueGen Arbitrary Native Library Loading Remote Code Execution Vulnerability

  TELUS Security Labs VR - Oracle Java Web Start Command Argument Injection Remote Code Execution

From:Security Explorations <contact_(at)_security-explorations.com>
Date:17 июня 2012 г.
Subject:[SE-2012-01] Regarding Oracle's Critical Patch Update for Java SE

Dear All,

Yesterday, Oracle released its Critical Patch Update for Java SE
software [1], which incorporates fixes for 3 of more than 20+
security issues that were reported to the company in Apr 2012 [2].

We would like to inform, that while some of the Proof of Concept
codes we developed for the aforementioned issues do not work anymore,
there are still many of them that haven't been addressed yet and that
can be successfully exploited to achieve a complete security sandbox
bypass in the environment of affected Java software.

For those willing to acquire a little bit more information about
the security issues found, we have added new FAQ and PoC pages to
our website:


Full technical details of discovered vulnerabilities and attacks
will be published at some later time.

At the end, we would like to take the opportunity and to kindly ask
Apple security people to take the time and respond to our email
inquiries. We can imagine that a full Java sandbox compromise on
Windows OS caused by a combination of Java SE and Apple Quicktime
issues [3] might not be of a high priority thing for the company.
But, it's probably better to actually take the notice, especially
if the company fails to develop a fix for same security issue a
fourth time in a row.

Thank you.

Best Regards
Adam Gowdiak

Security Explorations
"We bring security research to the new level"

[1] Oracle Java SE Critical Patch Update Advisory - June 2012

[2] SE-2012-01 Security vulnerabilities in Java SE
[3] Security weakness in Apple Quicktime Java extensions

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород