Rapid7 Vulnerability & Exploit Database

HP-UX: CVE-2010-3571: Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities.

Free InsightVM Trial No credit card necessary
Watch Demo See how it all works
Back to Search

HP-UX: CVE-2010-3571: Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities.

Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
10/19/2010
Created
07/25/2018
Added
08/11/2017
Modified
09/12/2017

Description

Unspecified vulnerability in the 2D component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is an integer overflow in the color profile parser that allows remote attackers to execute arbitrary code via a crafted Tag structure in a color profile.

Solution(s)

  • hpux-update-jdk14-jdk14-com
  • hpux-update-jdk14-jdk14-ipf32
  • hpux-update-jdk14-jdk14-ipf64
  • hpux-update-jdk14-jdk14-pa11
  • hpux-update-jdk14-jdk14-pa20
  • hpux-update-jdk14-jdk14-pa20w
  • hpux-update-jdk15-jdk15-com
  • hpux-update-jdk15-jdk15-ipf32
  • hpux-update-jdk15-jdk15-ipf64
  • hpux-update-jdk15-jdk15-pa20
  • hpux-update-jdk15-jdk15-pa20w
  • hpux-update-jdk60-jdk60-com
  • hpux-update-jdk60-jdk60-ipf32
  • hpux-update-jdk60-jdk60-ipf64
  • hpux-update-jdk60-jdk60-pa20
  • hpux-update-jdk60-jdk60-pa20w
  • hpux-update-jre14-jre14-com
  • hpux-update-jre14-jre14-ipf32
  • hpux-update-jre14-jre14-ipf32-hs
  • hpux-update-jre14-jre14-ipf64
  • hpux-update-jre14-jre14-ipf64-hs
  • hpux-update-jre14-jre14-pa11
  • hpux-update-jre14-jre14-pa11-hs
  • hpux-update-jre14-jre14-pa20
  • hpux-update-jre14-jre14-pa20-hs
  • hpux-update-jre14-jre14-pa20w
  • hpux-update-jre14-jre14-pa20w-hs
  • hpux-update-jre15-jre15-com
  • hpux-update-jre15-jre15-ipf32
  • hpux-update-jre15-jre15-ipf32-hs
  • hpux-update-jre15-jre15-ipf64
  • hpux-update-jre15-jre15-ipf64-hs
  • hpux-update-jre15-jre15-pa20
  • hpux-update-jre15-jre15-pa20-hs
  • hpux-update-jre15-jre15-pa20w
  • hpux-update-jre15-jre15-pa20w-hs
  • hpux-update-jre60-jre60-com
  • hpux-update-jre60-jre60-ipf32
  • hpux-update-jre60-jre60-ipf32-hs
  • hpux-update-jre60-jre60-ipf64
  • hpux-update-jre60-jre60-ipf64-hs
  • hpux-update-jre60-jre60-pa20
  • hpux-update-jre60-jre60-pa20-hs
  • hpux-update-jre60-jre60-pa20w
  • hpux-update-jre60-jre60-pa20w-hs

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;