IBM.Java.ProxyUtil.Sandbox.Bypass.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a Sandbox Breach vulnerability in IBM Java.
The vulnerability is due to a design weakness in the ProxyUtil package when handling a maliciously crafted Java applet. A remote attacker can exploit this to execute arbitrary Java code within the context of the application.

affected-products-logoAffected Products

IBM Java 7 prior to SR3
IBM Java 6.0.1 prior to SR14
IBM Java 6.0 prior to SR12
IBM Java 5.0 prior to SR15
IBM Java 1.4.2 prior to SR13-FP14

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary Java code in the context of the affected system.

recomended-action-logoRecommended Actions

Refer to the vendor's website for suggested workaround.
http://www-01.ibm.com/support/docview.wss?uid=swg21616617

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)