Detections
Analytics
RHEL 5 : java-1.6.0-sun (RHSA-2010:0337)
critical Nessus Plugin ID 46293
Language:
Synopsis
The remote Red Hat host is missing one or more security updates for java-1.6.0-sun.Description
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0337 advisory.- TLS: MITM attacks via session renegotiation (CVE-2009-3555)
- OpenJDK Loader-constraint table allows arrays instead of only the base-classes (6626217) (CVE-2010-0082)
- OpenJDK Policy/PolicyFile leak dynamic ProtectionDomains. (6633872) (CVE-2010-0084)
- OpenJDK File TOCTOU deserialization vulnerability (6736390) (CVE-2010-0085)
- JDK unspecified vulnerability in JWS/Plugin component (CVE-2010-0087)
- OpenJDK Inflater/Deflater clone issues (6745393) (CVE-2010-0088)
- JDK unspecified vulnerability in JavaWS/Plugin component (CVE-2010-0089, CVE-2010-0090)
- OpenJDK Unsigned applet can retrieve the dragged information before drop action occurs(6887703) (CVE-2010-0091)
- OpenJDK AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149) (CVE-2010-0092)
- OpenJDK System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265) (CVE-2010-0093)
- OpenJDK Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947) (CVE-2010-0094)
- OpenJDK Subclasses of InetAddress may incorrectly interpret network addresses (6893954) (CVE-2010-0095)
- OpenJDK JAR unpack200 must verify input parameters (6902299) (CVE-2010-0837)
- OpenJDK CMM readMabCurveData Buffer Overflow Vulnerability (6899653) (CVE-2010-0838)
- JDK multiple unspecified vulnerabilities (CVE-2010-0839, CVE-2010-0842, CVE-2010-0843, CVE-2010-0844)
- OpenJDK Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691) (CVE-2010-0840)
- OpenJDK JPEGImageReader stepX Integer Overflow Vulnerability (6909597) (CVE-2010-0841)
- OpenJDK No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807) (CVE-2010-0845)
- JDK unspecified vulnerability in ImageIO component (CVE-2010-0846)
- OpenJDK ImagingLib arbitrary code execution vulnerability (6914866) (CVE-2010-0847)
- OpenJDK AWT Library Invalid Index Vulnerability (6914823) (CVE-2010-0848)
- JDK unspecified vulnerability in Java2D component (CVE-2010-0849)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the RHEL java-1.6.0-sun package based on the guidance in RHSA-2010:0337.See Also
http://kbase.redhat.com/faq/docs/DOC-20491
http://www.nessus.org/u?6dbc9390
https://access.redhat.com/security/updates/classification/#critical
https://bugzilla.redhat.com/show_bug.cgi?id=533125
https://bugzilla.redhat.com/show_bug.cgi?id=575736
https://bugzilla.redhat.com/show_bug.cgi?id=575740
https://bugzilla.redhat.com/show_bug.cgi?id=575747
https://bugzilla.redhat.com/show_bug.cgi?id=575755
https://bugzilla.redhat.com/show_bug.cgi?id=575756
https://bugzilla.redhat.com/show_bug.cgi?id=575760
https://bugzilla.redhat.com/show_bug.cgi?id=575764
https://bugzilla.redhat.com/show_bug.cgi?id=575769
https://bugzilla.redhat.com/show_bug.cgi?id=575772
https://bugzilla.redhat.com/show_bug.cgi?id=575775
https://bugzilla.redhat.com/show_bug.cgi?id=575808
https://bugzilla.redhat.com/show_bug.cgi?id=575818
https://bugzilla.redhat.com/show_bug.cgi?id=575846
https://bugzilla.redhat.com/show_bug.cgi?id=575854
https://bugzilla.redhat.com/show_bug.cgi?id=575865
https://bugzilla.redhat.com/show_bug.cgi?id=575871
https://bugzilla.redhat.com/show_bug.cgi?id=578430
https://bugzilla.redhat.com/show_bug.cgi?id=578432
https://bugzilla.redhat.com/show_bug.cgi?id=578433
https://bugzilla.redhat.com/show_bug.cgi?id=578436
https://bugzilla.redhat.com/show_bug.cgi?id=578437
https://bugzilla.redhat.com/show_bug.cgi?id=578440
Plugin Details
Severity: Critical
ID: 46293
File Name: redhat-RHSA-2010-0337.nasl
Version: 1.39
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 5/11/2010
Updated: 4/21/2024
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.3
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2010-0849
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
CVSS Score Source: CVE-2009-3555
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:java-1.6.0-sun, p-cpe:/a:redhat:enterprise_linux:java-1.6.0-sun-demo, p-cpe:/a:redhat:enterprise_linux:java-1.6.0-sun-devel, p-cpe:/a:redhat:enterprise_linux:java-1.6.0-sun-jdbc, p-cpe:/a:redhat:enterprise_linux:java-1.6.0-sun-plugin, p-cpe:/a:redhat:enterprise_linux:java-1.6.0-sun-src, cpe:/o:redhat:enterprise_linux:5
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/31/2010
Vulnerability Publication Date: 11/9/2009
CISA Known Exploited Vulnerability Due Dates: 6/15/2022
Exploitable With
CANVAS (CANVAS)
Core Impact
Metasploit (Java MixerSequencer Object GM_Song Structure Handling Vulnerability)
Reference Information
CVE: CVE-2009-3555, CVE-2010-0082, CVE-2010-0084, CVE-2010-0085, CVE-2010-0087, CVE-2010-0088, CVE-2010-0089, CVE-2010-0090, CVE-2010-0091, CVE-2010-0092, CVE-2010-0093, CVE-2010-0094, CVE-2010-0095, CVE-2010-0837, CVE-2010-0838, CVE-2010-0839, CVE-2010-0840, CVE-2010-0841, CVE-2010-0842, CVE-2010-0843, CVE-2010-0844, CVE-2010-0845, CVE-2010-0846, CVE-2010-0847, CVE-2010-0848, CVE-2010-0849
BID: 36935, 39062, 39065, 39067, 39068, 39069, 39070, 39071, 39072, 39073, 39075, 39077, 39078, 39081, 39083, 39084, 39085, 39086, 39088, 39089, 39090, 39091, 39093, 39094, 39095, 39096