Java.Deserializing.Calendar.Privilege.Elevation
Description
This indicates an attack attempt against a privilege-escalation vulnerability in the Jave Runtime Environment (JRE).
The vulnerability is caused by an error when the affected software handles processes related to deserializing calendar objects. It allows a remote attacker to escalate privileges such as reading, writing and running local files or applications.
Affected Products
JRE for Sun JDK and JRE 6 Update 10 and earlier
JDK and JRE 5.0 Update 16 and earlier
JRE 1.4.2_18 and earlier
Impact
Privilege escalation: Remote attackers can leverage their privilege on vulnerable systems.
Recommended Actions
Apply the latest update from the vendor:
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |