‘HP-UX Running Java Runtime Environment (JRE) or Java Developer Kit (JDK) Multiple Vulnerabilities’

Summary

Remote execution of arbitrary code, disclosure of information and other vulnerabilities affecting HP-UX.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02616748


Details

Vulnerable Systems:
 * HP-UX B.11.11 running HP JDK and JRE 6.0.09 or earlier
 * HP-UX B.11.23 running HP JDK and JRE 6.0.09 or earlier
 * HP-UX B.11.31 running HP JDK and JRE 6.0.09 or earlier

 * HP-UX B.11.11 running HP JDK and JRE 5.0.21 or earlier
 * HP-UX B.11.23 running HP JDK and JRE 5.0.21 or earlier
 * HP-UX B.11.31 running HP JDK and JRE 5.0.21 or earlier

 * HP-UX B.11.11 running HP Java SDK and RTE 1.4.2.26 or earlier
 * HP-UX B.11.23 running HP Java SDK and RTE 1.4.2.26 or earlier
 * HP-UX B.11.31 running HP Java SDK and RTE 1.4.2.26 or earlier

Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote execution of arbitrary code, disclosure of information, and other vulnerabilities.

Patch Availability:
HP has provided the following upgrades to resolve these vulnerabilities.
The upgrades are available from the following location:
http://www.hp.com/go/java

CVE Information:
CVE-2010-3541
CVE-2010-3548
CVE-2010-3549
CVE-2010-3550
CVE-2010-3551
CVE-2010-3552
CVE-2010-3553
CVE-2010-3554
CVE-2010-3555
CVE-2010-3556
CVE-2010-3557
CVE-2010-3558
CVE-2010-3559
CVE-2010-3560
CVE-2010-3561
CVE-2010-3562
CVE-2010-3563
CVE-2010-3564
CVE-2010-3565
CVE-2010-3566
CVE-2010-3567
CVE-2010-3568
CVE-2010-3569
CVE-2010-3570
CVE-2010-3571
CVE-2010-3572
CVE-2010-3573
CVE-2010-3574

Disclosure Timeline:
Release Date: 2010-12-09
Last Updated: 2011-01-13′

Categories: News