Описание
Multiple buffer overflows in the Deployment Toolkit ActiveX control in deploytk.dll 6.0.130.3 in Sun Java SE Runtime Environment (aka JRE) 6 Update 13 allow remote attackers to execute arbitrary code via a long string argument to the (1) setInstallerType, (2) setAdditionalPackages, (3) compareVersion, (4) getStaticCLSID, or (5) launch method.
Ссылки
- Exploit
- ExploitURL Repurposed
- Exploit
- ExploitURL Repurposed
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sun:jre:6:update_13:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.06024
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Multiple buffer overflows in the Deployment Toolkit ActiveX control in deploytk.dll 6.0.130.3 in Sun Java SE Runtime Environment (aka JRE) 6 Update 13 allow remote attackers to execute arbitrary code via a long string argument to the (1) setInstallerType, (2) setAdditionalPackages, (3) compareVersion, (4) getStaticCLSID, or (5) launch method.
EPSS
Процентиль: 90%
0.06024
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-119