Signature Detail

HTTP: Sun Java RunTime Environment Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Sun Java RunTime Environment. A successful attack could allow the attacker to execute arbitrary code on the targeted system. Failed exploit attempts could result in a denial of service condition.

Extended Description

The Java Runtime Environment is prone to multiple buffer-overflow vulnerabilities the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. A local attacker can exploit these issues to execute arbitrary code with administrative privileges. A successful exploit attempt will lead to the complete compromise of affected computers. Failed exploit attempts will result in a denial of service.

Affected Products

• Apple Mac OS X 10.4.10
• Apple Mac OS X 10.4.11
• Apple Mac OS X Server 10.4.10
• Apple Mac OS X Server 10.4.11
• Avaya CVLAN
• Avaya Integrated Management
• Avaya Interactive Response 1.3.0
• Avaya Interactive Response 2.0
• Avaya Predictive Dialer
• BEA Systems JRockit 1.4.2
• BEA Systems JRockit 1.4.2 R4.5
• BEA Systems JRockit 3.1.1
• BEA Systems JRockit 3.1.2
• BEA Systems JRockit 3.1.3
• BEA Systems JRockit 3.1.4
• BEA Systems JRockit 3.1.4 .1
• BEA Systems JRockit 3.1.5
• BEA Systems JRockit 7.0.0
• BEA Systems JRockit 8.0.0
• BEA Systems JRockit 8.1.0
• Gentoo Linux
• HP HP-UX B.11.11
• HP HP-UX B.11.23
• Red Hat Enterprise Linux AS 2.1
• Red Hat Enterprise Linux AS 2.1 IA64
• Red Hat Enterprise Linux ES 2.1
• Red Hat Enterprise Linux ES 2.1 IA64
• Red Hat Enterprise Linux Extras 3
• Red Hat Enterprise Linux Extras 4
• Red Hat Enterprise Linux WS 2.1
• Red Hat Enterprise Linux WS 2.1 IA64
• Sun JRE (Linux Production Release) 1.3.1 01
• Sun JRE (Linux Production Release) 1.3.1 01A
• Sun JRE (Linux Production Release) 1.3.1 04
• Sun JRE (Linux Production Release) 1.3.1 08
• Sun JRE (Linux Production Release) 1.3.1 15
• Sun JRE (Linux Production Release) 1.3.1 16
• Sun JRE (Linux Production Release) 1.3.1 17
• Sun JRE (Linux Production Release) 1.3.1 18
• Sun JRE (Linux Production Release) 1.4.2 01
• Sun JRE (Linux Production Release) 1.4.2 02
• Sun JRE (Linux Production Release) 1.4.2 03
• Sun JRE (Linux Production Release) 1.4.2 04
• Sun JRE (Linux Production Release) 1.4.2 05
• Sun JRE (Linux Production Release) 1.4.2 06
• Sun JRE (Linux Production Release) 1.4.2 07
• Sun JRE (Linux Production Release) 1.4.2 08
• Sun JRE (Linux Production Release) 1.4.2 09
• Sun JRE (Linux Production Release) 1.4.2 10-B03
• Sun JRE (Linux Production Release) 1.4.2 11
• Sun JRE (Linux Production Release) 1.5.0 01
• Sun JRE (Linux Production Release) 1.5.0 02
• Sun JRE (Linux Production Release) 1.5.0 03
• Sun JRE (Linux Production Release) 1.5.0 04
• Sun JRE (Linux Production Release) 1.5.0 05
• Sun JRE (Linux Production Release) 1.5.0 07
• Sun SDK (Linux Production Release) 1.4.2 01
• Sun SDK (Linux Production Release) 1.4.2 02
• Sun SDK (Linux Production Release) 1.4.2 03
• Sun SDK (Linux Production Release) 1.4.2 04
• Sun SDK (Linux Production Release) 1.4.2 05
• Sun SDK (Linux Production Release) 1.4.2 06
• Sun SDK (Linux Production Release) 1.4.2 07
• Sun SDK (Linux Production Release) 1.4.2 08
• Sun SDK (Linux Production Release) 1.5.0
• Sun SDK (Linux Production Release) 1.5.0_01
• Sun SDK (Linux Production Release) 1.5.0_02
• Sun SDK (Linux Production Release) 1.5.0_03
• Sun SDK (Linux Production Release) 1.5.0_07
• SuSE Novell Linux POS 9
• SuSE Open-Enterprise-Server
• SuSE SUSE Linux Enterprise SDK 10
• SuSE SUSE Linux Enterprise Server 10
• SuSE SUSE Linux Enterprise Server 8
• SuSE SUSE Linux Enterprise Server 9
• SuSE SuSE Linux Openexchange Server 4.0.0
• SuSE SUSE LINUX Retail Solution 8.0.0
• SuSE SuSE Linux School Server for i386
• SuSE SuSE Linux Standard Server 8.0.0
• SuSE UnitedLinux 1.0.0

References

• BugTraq: 21673
• BugTraq: 21675
• CVE: CVE-2006-6731
• CVE: CVE-2006-6737
• CVE: CVE-2006-6745