virus logo Intrusion Prevention

Oracle.Java.awt_setPixels.Information.Disclosure

description-logoDescription

This indicates an attack attempt against a Information Disclosure vulnerability in Oracle Java SE.
The vulnerability is due to a validation error in the application when handles a malicious applet. An attacker can exploit this by tricking an unsuspecting user into visiting a webpage containing a malicious Java applet and gain unauthorized access to sensitive information.

affected-products-logoAffected Products

Oracle Java SE 5.0u61 and prior
Oracle Java SE 6u71 and prior
Oracle Java SE 7u51 and prior
Oracle Java SE 8
Oracle Java SE Embedded 7u51 and prior

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA
http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/37c689024d92

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA
ID 38696
Created Jun 23, 2014
Updated May 04, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS All
Affected App Oracle