IBM.Java.ProxyUtil.Sandbox.Bypass.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a Sandbox Breach vulnerability in IBM Java.
The vulnerability is due to a design weakness in the ProxyUtil package when handling a maliciously crafted Java applet. A remote attacker can exploit this to execute arbitrary Java code within the context of the application.
Affected Products
IBM Java 7 prior to SR3
IBM Java 6.0.1 prior to SR14
IBM Java 6.0 prior to SR12
IBM Java 5.0 prior to SR15
IBM Java 1.4.2 prior to SR13-FP14
Impact
System Compromise: Remote attackers can execute arbitrary Java code in the context of the affected system.
Recommended Actions
Refer to the vendor's website for suggested workaround.
http://www-01.ibm.com/support/docview.wss?uid=swg21616617
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |