Oracle JRockit R28.3.10 Multiple Vulnerabilities (July 2016 CPU)
Low Nessus Plugin ID 92492
SynopsisA programming platform installed on the remote Windows host is affected by multiple vulnerabilities.
DescriptionThe version of Oracle JRockit installed on the remote Windows host is 28.3.10. It is, therefore, affected by multiple vulnerabilities :
- An unspecified flaw exists in the Networking subcomponent that allows a local attacker to impact integrity. (CVE-2016-3485)
- Multiple unspecified flaws exist in the JAXP subcomponent that allow an unauthenticated, remote attacker to cause a denial of service condition.
SolutionUpgrade to Oracle JRockit version R28.3.11 or later as referenced in the July 2016 Oracle Critical Patch Update advisory.