Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to "insecure use of the java.lang.reflect.Method invoke() method."
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:43
Type | Values Removed | Values Added |
---|---|---|
References | () http://rhn.redhat.com/errata/RHSA-2012-1465.html - Third Party Advisory | |
References | () http://rhn.redhat.com/errata/RHSA-2012-1466.html - Third Party Advisory | |
References | () http://rhn.redhat.com/errata/RHSA-2012-1467.html - Third Party Advisory | |
References | () http://rhn.redhat.com/errata/RHSA-2013-1455.html - Third Party Advisory | |
References | () http://rhn.redhat.com/errata/RHSA-2013-1456.html - Third Party Advisory | |
References | () http://seclists.org/bugtraq/2012/Sep/38 - Mailing List, Third Party Advisory | |
References | () http://secunia.com/advisories/51326 - Third Party Advisory | |
References | () http://secunia.com/advisories/51327 - Third Party Advisory | |
References | () http://secunia.com/advisories/51328 - Third Party Advisory | |
References | () http://secunia.com/advisories/51393 - Third Party Advisory | |
References | () http://secunia.com/advisories/51634 - Third Party Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg1IV29654 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21615705 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21615800 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21616490 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21616594 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21616616 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21616617 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21616652 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21616708 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21621154 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21631786 - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/55495 - Third Party Advisory, VDB Entry | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/78764 - Third Party Advisory, VDB Entry | |
References | () https://www-304.ibm.com/support/docview.wss?uid=swg21616546 - Vendor Advisory |
Information
Published : 2013-01-11 00:55
Updated : 2024-11-21 01:43
NVD link : CVE-2012-4820
Mitre link : CVE-2012-4820
CVE.ORG link : CVE-2012-4820
JSON object : View
Products Affected
ibm
- rational_host_on-demand
- smart_analytics_system_5600_software
- websphere_real_time
- service_delivery_manager
- tivoli_monitoring
- lotus_notes
- lotus_notes_sametime
- lotus_notes_traveler
- java
- lotus_domino
- smart_analytics_system_5600
- tivoli_remote_control
- rational_change
tivoli_storage_productivity_center
- 5.0
- 5.1
- 5.1.1
CWE