cbcvebase.
CVE-2012-5067
published 2012-10-16

CVE-2012-5067: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect…

PriorityP357medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
63.98%
99.1th percentile
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.

Affected

4 ranges
VendorProductVersion rangeFixed in
oraclejdk<= 1.7.0
oraclejdk
oraclejre<= 1.7.0
oraclejre

Detection & IOCsextracted from sources · hover to see the quote

urlhttp://malware.dontneedcoffee.com/2012/11/cool-ek-hello-my-friend-cve-2012-5067.html
pathdata/exploits/cve-2012-5076/Exploit.class
  • Exploit delivered as a JAR file via Java Applet; the malicious JAR contains Exploit.class and MyPayload.class and is served with Content-Type application/octet-stream
  • The exploit was found in the wild in the Cool Exploit Kit (Cool EK); monitor for drive-by Java applet delivery from exploit kit infrastructure
  • The Metasploit module generates an HTML page embedding a randomly named JAR (random alpha string + .jar) as a Java applet; detect applet tags loading dynamically named JARs from attacker-controlled servers
  • Targets Java 7 Update 7 and earlier (Java plugin versions up to 1.7u7); flag or block these plugin versions in browser environments
  • ·The vulnerability is described as 'unspecified' with 'unknown vectors related to Deployment', limiting precise behavioral detection signatures.

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_ubuntu10.0CRITICAL
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.