Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:58:18 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1961028591&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Java%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Fjava%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1961028591.1338191898.1338191898.1338191898.1%3B%2B__utmz%3D32867617.1338191898.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112907/RHSA-2012-0679-01.txt http://packetstormsecurity.org/files/112907/RHSA-2012-0679-01.txt http://packetstormsecurity.org/files/112907/Red-Hat-Security-Advisory-2012-0679-01.html Tue, 22 May 2012 00:22:52 GMT Red Hat Security Advisory 2012-0679-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. JBoss Enterprise Web Server includes the Tomcat Native library, providing Apache Portable Runtime support for Tomcat. This update includes bug fixes as documented in JBPAPP-4873 and JBPAPP-6133. http://packetstormsecurity.org/files/112904/RHSA-2012-0680-01.txt http://packetstormsecurity.org/files/112904/RHSA-2012-0680-01.txt http://packetstormsecurity.org/files/112904/Red-Hat-Security-Advisory-2012-0680-01.html Tue, 22 May 2012 00:20:13 GMT Red Hat Security Advisory 2012-0680-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. JBoss Enterprise Web Server includes the Tomcat Native library, providing Apache Portable Runtime support for Tomcat. This update includes bug fixes as documented in JBPAPP-4873 and JBPAPP-6133. http://packetstormsecurity.org/files/112863/batik_svg_java.rb.txt http://packetstormsecurity.org/files/112863/batik_svg_java.rb.txt http://packetstormsecurity.org/files/112863/Squiggle-1.7-SVG-Browser-Java-Code-Execution.html Fri, 18 May 2012 14:58:01 GMT This Metasploit module abuses the SVG support to execute Java Code in the Squiggle Browser included in the Batik framework 1.7 through a crafted svg file referencing a jar file. In order to gain arbitrary code execution, the browser must meet the following conditions: (1) It must support at least SVG version 1.1 or newer, (2) It must support Java code and (3) The "Enforce secure scripting" check must be disabled. The module has been tested against Windows and Linux platforms. http://packetstormsecurity.org/files/112826/HPSBUX02777-SSRT100854.txt http://packetstormsecurity.org/files/112826/HPSBUX02777-SSRT100854.txt http://packetstormsecurity.org/files/112826/HP-Security-Bulletin-HPSBUX02777-SSRT100854.html Thu, 17 May 2012 21:16:37 GMT HP Security Bulletin HPSBUX02777 SSRT100854 - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities may allow remote Denial of Service (DoS), unauthorized modification and disclosure of information. Revision 1 of this advisory. http://packetstormsecurity.org/files/112788/sa49198.txt http://packetstormsecurity.org/files/112788/sa49198.txt http://packetstormsecurity.org/files/112788/Secunia-Security-Advisory-49198.html Wed, 16 May 2012 03:16:09 GMT Secunia Security Advisory - HP has issued an update for Java in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/112741/svg-trigger.tgz http://packetstormsecurity.org/files/112741/svg-trigger.tgz http://packetstormsecurity.org/files/112741/SVG-Java-Execution-Trigger.html Tue, 15 May 2012 22:21:05 GMT Some SVG specifications, like SVG 1.1 and SVG tiny 1.2, allow Java code execution when the file is opened. Proof of concept code included. http://packetstormsecurity.org/files/112610/sa49124.txt http://packetstormsecurity.org/files/112610/sa49124.txt http://packetstormsecurity.org/files/112610/Secunia-Security-Advisory-49124.html Thu, 10 May 2012 06:23:14 GMT Secunia Security Advisory - SUSE has issued an update for java-1_6_0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/112609/sa49076.txt http://packetstormsecurity.org/files/112609/sa49076.txt http://packetstormsecurity.org/files/112609/Secunia-Security-Advisory-49076.html Thu, 10 May 2012 06:23:12 GMT Secunia Security Advisory - SUSE has issued an update for java-1_5_0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/112584/dsa-2468-1.txt http://packetstormsecurity.org/files/112584/dsa-2468-1.txt http://packetstormsecurity.org/files/112584/Debian-Security-Advisory-2468-1.html Thu, 10 May 2012 04:02:08 GMT Debian Linux Security Advisory 2468-1 - It was discovered that Apache POI, a Java implementation of the Microsoft Office file formats, would allocate arbitrary amounts of memory when processing crafted documents. This could impact the stability of the Java virtual machine. http://packetstormsecurity.org/files/112601/sa49040.txt http://packetstormsecurity.org/files/112601/sa49040.txt http://packetstormsecurity.org/files/112601/Secunia-Security-Advisory-49040.html Thu, 10 May 2012 01:01:58 GMT Secunia Security Advisory - Debian has issued an update for libjakarta-poi-java. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/112352/RHSA-2012-0529-01.txt http://packetstormsecurity.org/files/112352/RHSA-2012-0529-01.txt http://packetstormsecurity.org/files/112352/Red-Hat-Security-Advisory-2012-0529-01.html Tue, 01 May 2012 21:32:48 GMT Red Hat Security Advisory 2012-0529-01 - Red Hat Enterprise MRG is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. MRG Messaging is a high-speed reliable messaging distribution for Linux based on AMQP, an open protocol standard for enterprise messaging that is designed to make mission critical messaging widely available as a standard service, and to make enterprise messaging interoperable across platforms, programming languages, and vendors. MRG Messaging includes an AMQP 0-10 messaging broker; AMQP 0-10 client libraries for C++, Java JMS, and Python; as well as persistence libraries and management tools. http://packetstormsecurity.org/files/112350/RHSA-2012-0528-01.txt http://packetstormsecurity.org/files/112350/RHSA-2012-0528-01.txt http://packetstormsecurity.org/files/112350/Red-Hat-Security-Advisory-2012-0528-01.html Tue, 01 May 2012 21:31:39 GMT Red Hat Security Advisory 2012-0528-01 - Red Hat Enterprise MRG is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. MRG Messaging is a high-speed reliable messaging distribution for Linux based on AMQP, an open protocol standard for enterprise messaging that is designed to make mission critical messaging widely available as a standard service, and to make enterprise messaging interoperable across platforms, programming languages, and vendors. MRG Messaging includes an AMQP 0-10 messaging broker; AMQP 0-10 client libraries for C++, Java JMS, and Python; as well as persistence libraries and management tools. http://packetstormsecurity.org/files/112164/RHSA-2012-0519-01.txt http://packetstormsecurity.org/files/112164/RHSA-2012-0519-01.txt http://packetstormsecurity.org/files/112164/Red-Hat-Security-Advisory-2012-0519-01.html Wed, 25 Apr 2012 04:11:01 GMT Red Hat Security Advisory 2012-0519-01 - JBoss Enterprise Portal Platform is the open source implementation of the Java EE suite of services and Portal services running atop JBoss Enterprise Application Platform. It comprises a set of offerings for enterprise customers who are looking for pre-configured profiles of JBoss Enterprise Middleware components that have been tested and certified together to provide an integrated experience. This release of JBoss Enterprise Portal Platform 5.2.1 serves as a replacement for JBoss Enterprise Portal Platform 5.2.0, and includes bug fixes. http://packetstormsecurity.org/files/112190/sa48950.txt http://packetstormsecurity.org/files/112190/sa48950.txt http://packetstormsecurity.org/files/112190/Secunia-Security-Advisory-48950.html Wed, 25 Apr 2012 03:35:47 GMT Secunia Security Advisory - Red Hat has issued an update for java-1.6.0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/112144/RHSA-2012-0514-01.txt http://packetstormsecurity.org/files/112144/RHSA-2012-0514-01.txt http://packetstormsecurity.org/files/112144/Red-Hat-Security-Advisory-2012-0514-01.html Wed, 25 Apr 2012 02:09:03 GMT Red Hat Security Advisory 2012-0514-01 - The IBM Java SE version 6 release includes the IBM Java 6 Runtime Environment and the IBM Java 6 Software Development Kit. This update fixes several vulnerabilities in the IBM Java 6 Runtime Environment and the IBM Java 6 Software Development Kit. http://packetstormsecurity.org/files/112121/sa48948.txt http://packetstormsecurity.org/files/112121/sa48948.txt http://packetstormsecurity.org/files/112121/Secunia-Security-Advisory-48948.html Tue, 24 Apr 2012 06:05:22 GMT Secunia Security Advisory - Red Hat has issued an update for java-1.5.0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/112108/RHSA-2012-0508-01.txt http://packetstormsecurity.org/files/112108/RHSA-2012-0508-01.txt http://packetstormsecurity.org/files/112108/Red-Hat-Security-Advisory-2012-0508-01.html Mon, 23 Apr 2012 20:54:36 GMT Red Hat Security Advisory 2012-0508-01 - The IBM 1.5.0 Java release includes the IBM Java 2 Runtime Environment and the IBM Java 2 Software Development Kit. This update fixes several vulnerabilities in the IBM Java 2 Runtime Environment and the IBM Java 2 Software Development Kit. http://packetstormsecurity.org/files/112053/sa48915.txt http://packetstormsecurity.org/files/112053/sa48915.txt http://packetstormsecurity.org/files/112053/Secunia-Security-Advisory-48915.html Fri, 20 Apr 2012 04:13:09 GMT Secunia Security Advisory - IBM has acknowledged multiple vulnerabilities in IBM Java, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/112051/sa48913.txt http://packetstormsecurity.org/files/112051/sa48913.txt http://packetstormsecurity.org/files/112051/Secunia-Security-Advisory-48913.html Fri, 20 Apr 2012 04:13:03 GMT Secunia Security Advisory - IBM has acknowledged multiple vulnerabilities in IBM Java, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/111916/SEC_Consult_The_Source_Is_A_Lie_V1.0_PUBLIC.pdf http://packetstormsecurity.org/files/111916/SEC_Consult_The_Source_Is_A_Lie_V1.0_PUBLIC.pdf http://packetstormsecurity.org/files/111916/The-Source-Is-A-Lie.html Tue, 17 Apr 2012 20:35:36 GMT Whitepaper called The Source Is A Lie. Backdoors have always been a concern of the security community. In recent years the idea of not trusting the developer has gained momentum and manifested itself in various forms of source code review. For Java, being one of the most popular programming languages, numerous tools and papers have been written to help during reviews. While these tools and techniques are getting developed further, they usually focus on traditional programming paradigms. Modern concepts like Aspect Oriented Programming or the Java Reflection API are left out. Especially the use of Java’s Reflection API in conjunction with the lesser known “string pool” can lead to a new kind of backdoor. This backdoor hides itself from unwary reviewer by disguising its access to critical resources like credential through indirection. To raise the awareness about this particular kind of backdoor, this paper will provide a short introduction to the string pool, show how reflection can be used to manipulate it, demonstrate how a backdoor can abuse this, and discuss how it can be uncovered. http://packetstormsecurity.org/files/111871/APPLE-SA-2012-04-13-1.txt http://packetstormsecurity.org/files/111871/APPLE-SA-2012-04-13-1.txt http://packetstormsecurity.org/files/111871/Apple-Security-Advisory-2012-04-13-1.html Sat, 14 Apr 2012 15:55:55 GMT Apple Security Advisory 2012-04-13-1 - This update runs a malware removal tool that will remove the most common variants of the Flashback malware. If the Flashback malware is found, it presents a dialog notifying the user that malware was removed. There is no indication to the user if malware is not found. This update is available for OS X Lion systems that do not have Java installed. http://packetstormsecurity.org/files/111850/APPLE-SA-2012-04-12-1.txt http://packetstormsecurity.org/files/111850/APPLE-SA-2012-04-12-1.txt http://packetstormsecurity.org/files/111850/Apple-Security-Advisory-2012-04-12-1.html Fri, 13 Apr 2012 22:07:36 GMT Apple Security Advisory 2012-04-12-1 - Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8 is now available. As a security hardening measure, the Java browser plugin and Java Web Start are deactivated if they are unused for 35 days. Installing this update will automatically deactivate the Java browser plugin and Java Web Start. Users may re-enable Java if they encounter Java applets on a web page or Java Web Start applications. http://packetstormsecurity.org/files/111783/RHSA-2012-0475-01.txt http://packetstormsecurity.org/files/111783/RHSA-2012-0475-01.txt http://packetstormsecurity.org/files/111783/Red-Hat-Security-Advisory-2012-0475-01.html Thu, 12 Apr 2012 03:14:12 GMT Red Hat Security Advisory 2012-0475-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. It was found that the Java hashCode() method implementation was susceptible to predictable hash collisions. A remote attacker could use this flaw to cause Tomcat to use an excessive amount of CPU time by sending an HTTP request with a large number of parameters whose names map to the same hash value. This update introduces a limit on the number of parameters processed per request to mitigate this issue. The default limit is 512 for parameters and 128 for headers. These defaults can be changed by setting the org.apache.tomcat.util.http.Parameters.MAX_COUNT and org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties. http://packetstormsecurity.org/files/111782/RHSA-2012-0474-01.txt http://packetstormsecurity.org/files/111782/RHSA-2012-0474-01.txt http://packetstormsecurity.org/files/111782/Red-Hat-Security-Advisory-2012-0474-01.html Thu, 12 Apr 2012 03:11:30 GMT Red Hat Security Advisory 2012-0474-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. It was found that the Java hashCode() method implementation was susceptible to predictable hash collisions. A remote attacker could use this flaw to cause Tomcat to use an excessive amount of CPU time by sending an HTTP request with a large number of parameters whose names map to the same hash value. This update introduces a limit on the number of parameters processed per request to mitigate this issue. The default limit is 512 for parameters and 128 for headers. These defaults can be changed by setting the org.apache.tomcat.util.http.Parameters.MAX_COUNT and org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties. http://packetstormsecurity.org/files/111713/ZDI-12-060.txt http://packetstormsecurity.org/files/111713/ZDI-12-060.txt http://packetstormsecurity.org/files/111713/Zero-Day-Initiative-Advisory-12-060.html Tue, 10 Apr 2012 04:31:45 GMT Zero Day Initiative Advisory 12-060 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within cmm.dll. While parsing multi-function a to b curve data the size of an allocation is calculated based on user supplied data. It is possible to cause an integer wrap on the nTblSize variable. This variable is later used to allocate an heap buffer which will be smaller than necessary resulting in heap memory corruption. This can lead to remote code execution under the context of the current user.