Veracode Vulnerability DatabaseVERACODE:11707Sandbox Restrictions Bypass
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
openjdk is vulnerable to sandbox restrictions bypass. An unspecified vulnerability allows remote attacks and untrusted Java applications or applets to bypass certain Java sandbox restrictions to perform unauthorized actions.
References
lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
rhn.redhat.com/errata/RHSA-2015-1228.html
rhn.redhat.com/errata/RHSA-2015-1229.html
rhn.redhat.com/errata/RHSA-2015-1230.html
rhn.redhat.com/errata/RHSA-2015-1241.html
rhn.redhat.com/errata/RHSA-2015-1242.html
rhn.redhat.com/errata/RHSA-2015-1243.html
rhn.redhat.com/errata/RHSA-2015-1485.html
rhn.redhat.com/errata/RHSA-2015-1486.html
rhn.redhat.com/errata/RHSA-2015-1488.html
rhn.redhat.com/errata/RHSA-2015-1526.html
rhn.redhat.com/errata/RHSA-2015-1544.html
rhn.redhat.com/errata/RHSA-2015-1604.html
www.debian.org/security/2015/dsa-3316
www.debian.org/security/2015/dsa-3339
www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
www.securityfocus.com/bid/75818
www.securitytracker.com/id/1032910
www.ubuntu.com/usn/USN-2696-1
www.ubuntu.com/usn/USN-2706-1
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1207101#c11
bugzilla.redhat.com/show_bug.cgi?id=1223211#c33
rhn.redhat.com/errata/RHSA-2015-1230.html
security.gentoo.org/glsa/201603-11
security.gentoo.org/glsa/201603-14
Related
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C