This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.
The remote Windows host contains a programming platform that is
affected by multiple vulnerabilities.
The remote host has a version of Oracle JRockit that is affected by
multiple vulnerabilities that could allow a remote user to affect the
confidentiality of the system via :
- A design flaw in the RSA 'blinding' security component
of the 'RASCore' class. By performing operations
requiring the use of private keys and measuring timing
differences, an attacker may be able to disclose
information about the keys used.
- A design flaw in the 'validateDHPublicKey' function of
the 'KeyUtil' class. A remote attacker may be able to
recover a key. (CVE-2014-4263).
See also :
Upgrade to version R22.214.171.124 / R126.96.36.199 or later.
Risk factor :
Medium / CVSS Base Score : 4.0
CVSS Temporal Score : 3.5
Public Exploit Available : false