Detections
Analytics
Oracle Java JDK / JRE 6 < Update 35 SunToolKit getField() and getMethod() Access Issue
critical Nessus Plugin ID 61746
Language:
Synopsis
The remote host contains a runtime environment that contains methods that can aid in further attacks.Description
The version of Oracle (formerly Sun) Java Runtime Environment (JRE) 6.x installed on the remote host is earlier than Update 35. It, therefore, potentially contains two methods that do not properly restrict access to information about other classes. Specifically, the 'getField' and 'getMethod' methods in the 'sun.awt.SunToolkit' class provided by the bundled SunToolKit can be used to obtain any field or method of a class- even private fields and methods.
Please note this issue is not directly exploitable, rather it can aid in attacks against other, directly exploitable vulnerabilities, such as that found in CVE-2012-4681.
Solution
Update to JDK / JRE 6 Update 35 or later and remove, if necessary, any affected versions.See Also
http://www.nessus.org/u?00370937
https://www.oracle.com/technetwork/java/javase/6u35-relnotes-1835788.html
Plugin Details
Severity: Critical
ID: 61746
File Name: oracle_java6_update35.nasl
Version: 1.14
Type: local
Agent: windows
Family: Windows
Published: 8/31/2012
Updated: 4/11/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 0.8
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:oracle:jre
Required KB Items: SMB/Java/JRE/Installed
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/30/2012
Vulnerability Publication Date: 8/10/2012
Reference Information
CVE: CVE-2012-0547
BID: 55339