Signature Detail

Short Name	APP:ORACLE:JAVA-RMI-RCE
Severity	High
Recommended	No
Recommended Action	Drop
Category	APP
Keywords	Oracle Java RMI Services Default Configuration Remote Code Execution
Release Date	2011/08/26
Update Number	1981
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: Oracle Java RMI Services Default Configuration Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Oracle Java RMI Services. A successful attack can lead to arbitrary code execution.

Extended Description

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI.

Affected Products

oracle jrockit r28.0.0
oracle jrockit r28.0.1
oracle jrockit r28.0.2
oracle jrockit r28.1.0
oracle jrockit r28.1.1
oracle jrockit r28.1.3
oracle jrockit up to r28.1.4
sun jdk 1.4.2
sun jdk 1.4.2_1
sun jdk 1.4.2_10
sun jdk 1.4.2_11
sun jdk 1.4.2_12
sun jdk 1.4.2_13
sun jdk 1.4.2_14
sun jdk 1.4.2_15
sun jdk 1.4.2_16
sun jdk 1.4.2_17
sun jdk 1.4.2_18
sun jdk 1.4.2_19
sun jdk 1.4.2_2
sun jdk 1.4.2_20
sun jdk 1.4.2_21
sun jdk 1.4.2_22
sun jdk 1.4.2_23
sun jdk 1.4.2_24
sun jdk 1.4.2_25
sun jdk 1.4.2_26
sun jdk 1.4.2_27
sun jdk 1.4.2_28
sun jdk 1.4.2_29
sun jdk 1.4.2_3
sun jdk 1.4.2_30
sun jdk 1.4.2_31
sun jdk 1.4.2_32
sun jdk 1.4.2_4
sun jdk 1.4.2_5
sun jdk 1.4.2_6
sun jdk 1.4.2_7
sun jdk 1.4.2_8
sun jdk 1.4.2_9
sun jdk 1.7.0
sun jdk up to 1.4.2_33
sun jdk up to 1.5.0 (update1)
sun jdk up to 1.5.0 (update10)
sun jdk up to 1.5.0 (update11)
sun jdk up to 1.5.0 (update11_b03)
sun jdk up to 1.5.0 (update12)
sun jdk up to 1.5.0 (update13)
sun jdk up to 1.5.0 (update14)
sun jdk up to 1.5.0 (update15)
sun jdk up to 1.5.0 (update16)
sun jdk up to 1.5.0 (update17)
sun jdk up to 1.5.0 (update18)
sun jdk up to 1.5.0 (update19)
sun jdk up to 1.5.0 (update2)
sun jdk up to 1.5.0 (update20)
sun jdk up to 1.5.0 (update21)
sun jdk up to 1.5.0 (update22)
sun jdk up to 1.5.0 (update23)
sun jdk up to 1.5.0 (update24)
sun jdk up to 1.5.0 (update25)
sun jdk up to 1.5.0 (update26)
sun jdk up to 1.5.0 (update27)
sun jdk up to 1.5.0 (update28)
sun jdk up to 1.5.0 (update29)
sun jdk up to 1.5.0 (update3)
sun jdk up to 1.5.0 (update31)
sun jdk up to 1.5.0 (update4)
sun jdk up to 1.5.0 (update5)
sun jdk up to 1.5.0 (update6)
sun jdk up to 1.5.0 (update7)
sun jdk up to 1.5.0 (update7_b03)
sun jdk up to 1.5.0 (update8)
sun jdk up to 1.5.0 (update9)
sun jdk up to 1.6.0 (update1)
sun jdk up to 1.6.0 (update_10)
sun jdk up to 1.6.0 (update_11)
sun jdk up to 1.6.0 (update_12)
sun jdk up to 1.6.0 (update_13)
sun jdk up to 1.6.0 (update_14)
sun jdk up to 1.6.0 (update_15)
sun jdk up to 1.6.0 (update_16)
sun jdk up to 1.6.0 (update_17)
sun jdk up to 1.6.0 (update_18)
sun jdk up to 1.6.0 (update_19)
sun jdk up to 1.6.0 (update2)
sun jdk up to 1.6.0 (update_20)
sun jdk up to 1.6.0 (update_21)
sun jdk up to 1.6.0 (update_22)
sun jdk up to 1.6.0 (update_23)
sun jdk up to 1.6.0 (update_24)
sun jdk up to 1.6.0 (update_25)
sun jdk up to 1.6.0 (update_26)
sun jdk up to 1.6.0 (update_27)
sun jdk up to 1.6.0 (update_3)
sun jdk up to 1.6.0 (update_4)
sun jdk up to 1.6.0 (update_5)
sun jdk up to 1.6.0 (update_6)
sun jdk up to 1.6.0 (update_7)
sun jre 1.4.2
sun jre 1.4.2_1
sun jre 1.4.2_10
sun jre 1.4.2_11
sun jre 1.4.2_12
sun jre 1.4.2_13
sun jre 1.4.2_14
sun jre 1.4.2_15
sun jre 1.4.2_16
sun jre 1.4.2_17
sun jre 1.4.2_18
sun jre 1.4.2_19
sun jre 1.4.2_2
sun jre 1.4.2_20
sun jre 1.4.2_21
sun jre 1.4.2_22
sun jre 1.4.2_23
sun jre 1.4.2_24
sun jre 1.4.2_25
sun jre 1.4.2_26
sun jre 1.4.2_27
sun jre 1.4.2_28
sun jre 1.4.2_29
sun jre 1.4.2_3
sun jre 1.4.2_30
sun jre 1.4.2_31
sun jre 1.4.2_32
sun jre 1.4.2_4
sun jre 1.4.2_5
sun jre 1.4.2_6
sun jre 1.4.2_7
sun jre 1.4.2_8
sun jre 1.4.2_9
sun jre 1.7.0
sun jre up to 1.4.2_33
sun jre up to 1.5.0 (update1)
sun jre up to 1.5.0 (update10)
sun jre up to 1.5.0 (update11)
sun jre up to 1.5.0 (update12)
sun jre up to 1.5.0 (update13)
sun jre up to 1.5.0 (update14)
sun jre up to 1.5.0 (update15)
sun jre up to 1.5.0 (update16)
sun jre up to 1.5.0 (update17)
sun jre up to 1.5.0 (update18)
sun jre up to 1.5.0 (update19)
sun jre up to 1.5.0 (update2)
sun jre up to 1.5.0 (update20)
sun jre up to 1.5.0 (update21)
sun jre up to 1.5.0 (update22)
sun jre up to 1.5.0 (update23)
sun jre up to 1.5.0 (update24)
sun jre up to 1.5.0 (update25)
sun jre up to 1.5.0 (update26)
sun jre up to 1.5.0 (update27)
sun jre up to 1.5.0 (update29)
sun jre up to 1.5.0 (update3)
sun jre up to 1.5.0 (update31)
sun jre up to 1.5.0 (update4)
sun jre up to 1.5.0 (update5)
sun jre up to 1.5.0 (update6)
sun jre up to 1.5.0 (update7)
sun jre up to 1.5.0 (update8)
sun jre up to 1.5.0 (update9)
sun jre up to 1.6.0 (update_1)
sun jre up to 1.6.0 (update_10)
sun jre up to 1.6.0 (update_11)
sun jre up to 1.6.0 (update_12)
sun jre up to 1.6.0 (update_13)
sun jre up to 1.6.0 (update_14)
sun jre up to 1.6.0 (update_15)
sun jre up to 1.6.0 (update_16)
sun jre up to 1.6.0 (update_17)
sun jre up to 1.6.0 (update_18)
sun jre up to 1.6.0 (update_19)
sun jre up to 1.6.0 (update_2)
sun jre up to 1.6.0 (update_20)
sun jre up to 1.6.0 (update_21)
sun jre up to 1.6.0 (update_22)
sun jre up to 1.6.0 (update_23)
sun jre up to 1.6.0 (update_24)
sun jre up to 1.6.0 (update_25)
sun jre up to 1.6.0 (update_26)
sun jre up to 1.6.0 (update_27)
sun jre up to 1.6.0 (update_3)
sun jre up to 1.6.0 (update_4)
sun jre up to 1.6.0 (update_5)
sun jre up to 1.6.0 (update_6)
sun jre up to 1.6.0 (update_7)

References

CVE: CVE-2011-3556

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Oracle Java RMI Services Default Configuration Remote Code Execution

Extended Description

Affected Products

References