CVE-2012-5067
published 2012-10-16CVE-2012-5067: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect…
PriorityP357medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
63.98%
99.1th percentile
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | jdk | <= 1.7.0 | — |
| oracle | jdk | — | — |
| oracle | jre | <= 1.7.0 | — |
| oracle | jre | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Exploit delivered as a JAR file via Java Applet; the malicious JAR contains Exploit.class and MyPayload.class and is served with Content-Type application/octet-stream ↗
- →The exploit was found in the wild in the Cool Exploit Kit (Cool EK); monitor for drive-by Java applet delivery from exploit kit infrastructure ↗
- →The Metasploit module generates an HTML page embedding a randomly named JAR (random alpha string + .jar) as a Java applet; detect applet tags loading dynamically named JARs from attacker-controlled servers ↗
- →Targets Java 7 Update 7 and earlier (Java plugin versions up to 1.7u7); flag or block these plugin versions in browser environments ↗
- ·The vulnerability is described as 'unspecified' with 'unknown vectors related to Deployment', limiting precise behavioral detection signatures. ↗
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_ubuntu10.0CRITICAL
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
OpenJDK vulnerabilities
vendor_ubuntu·2012-10-26·CVSS 10.0
CVE-2012-1531 [CRITICAL] OpenJDK vulnerabilities
Title: OpenJDK vulnerabilities
Summary: Several security issues were fixed in OpenJDK.
Several information disclosure vulnerabilities were discovered in the
OpenJDK JRE. (CVE-2012-3216, CVE-2012-5069, CVE-2012-5072, CVE-2012-5075,
CVE-2012-5077, CVE-2012-5085)
Vulnerabilities were discovered in the OpenJDK JRE related to information
disclosure and data integrity. (CVE-2012-4416, CVE-2012-5071)
Several vulnerabilities were discovered in the OpenJDK JRE related to
information disclosure and data integrity. An attacker could exploit these
to cause a denial of service. (CVE-2012-1531, CVE-2012-1532, CVE-2012-1533,
CVE-2012-3143, CVE-2012-3159, CVE-2012-5068, CVE-2012-5083, CVE-2012-5084,
CVE-2012-5086, CVE-2012-5089)
Information disclosure vulnerabilities were discovered in the OpenJDK JR
Red Hat
JDK: unspecified vulnerability (Deployment)
vendor_redhat·2012-10-16·CVSS 5.0
CVE-2012-5067 [MEDIUM] JDK: unspecified vulnerability (Deployment)
JDK: unspecified vulnerability (Deployment)
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Package: java-1.6.0-sun (Red Hat Enterprise Linux 5) - Affected
Package: java-1.7.0-ibm (Red Hat Enterprise Linux 5) - Affected
Package: java-1.7.0-oracle (Red Hat Enterprise Linux 5) - Affected
Package: java-1.6.0-sun (Red Hat Enterprise Linux 6) - Affected
GHSA
GHSA-v6jx-x9wj-v8pq: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect c
ghsa_unreviewed·2022-05-17
CVE-2012-5067 [MEDIUM] GHSA-v6jx-x9wj-v8pq: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect c
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
No detection rules found.
Bugzilla
Softblock Java versions affected by CVE-2012-5076
bugzilla·2012-11-18·CVSS 9.8
CVE-2012-5076 [CRITICAL] Softblock Java versions affected by CVE-2012-5076
Softblock Java versions affected by CVE-2012-5076
In October Oracle released a critical security update fixing several issues, including CVE-2012-5076 (see http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html). This bug affects Java 7u7 and below, though the Java 6 branch seems to be unaffected.
Recently, an exploit for this bug was found in the Cool exploit pack: http://malware.dontneedcoffee.com/2012/11/cool-ek-hello-my-friend-cve-2012-5067.html
Furthermore, the exploit was added to the Metasploit framework now.
It is already planned that the affected versions are CTP in Firefox 17 and higher, but now that the exploit is public, we should also block them in Firefox 16 and below to protect our users from drive-by malware infections.
Discussion:
These are now
Bugzilla
CVE-2012-5067 Oracle JDK: unspecified vulnerability (Deployment)
bugzilla·2012-10-17·CVSS 5.0
CVE-2012-5067 [MEDIUM] CVE-2012-5067 Oracle JDK: unspecified vulnerability (Deployment)
CVE-2012-5067 Oracle JDK: unspecified vulnerability (Deployment)
Common Vulnerabilities and Exposures assigned an identifier CVE-2012-5067 to
the following vulnerability:
Name: CVE-2012-5067
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5067
Assigned: 20120922
Reference: http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html
Unspecified vulnerability in the Java Runtime Environment (JRE)
component in Oracle Java SE 7 Update 7 and earlier allows remote
attackers to affect confidentiality via unknown vectors related to
Deployment.
Discussion:
Fixed now in Oracle JDK 7u9.
External Reference:
http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html
---
This issue has been addressed in following products:
Supplementary for Red
http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1391.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1467.htmlhttp://secunia.com/advisories/51326http://secunia.com/advisories/51390http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.htmlhttp://www.securityfocus.com/bid/56070https://exchange.xforce.ibmcloud.com/vulnerabilities/79429https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16055http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00016.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1391.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1467.htmlhttp://secunia.com/advisories/51326http://secunia.com/advisories/51390http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.htmlhttp://www.securityfocus.com/bid/56070https://exchange.xforce.ibmcloud.com/vulnerabilities/79429https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16055
2012-10-16
Published