virus logo Intrusion Prevention

Sun.Java.Applet2ClassLoader.Code.Execution

description-logoDescription

This indicates a possible attack against an arbitrary remote code execution vulnerability in the Java Runtime Environment (JRE), in Oracle Java SE and Java for Business 6, which is caused by improper user-input data sanitization.

affected-products-logoAffected Products

Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier.

Impact logoImpact

System compromise

recomended-action-logoRecommended Actions

Oracle has issued an update:
http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-01-11 16.995

References

http://fhoguin.com/2011/03/oracle-java-unsigned-applet-applet2classloader-remote-code-execution-vulnerability-zdi-11-084-explained/
ID 26276
Created May 10, 2011
Updated Jan 08, 2021
Risk black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2010-4452
Exploit Prediction Score 96.69%
Default Action drop
Active
Affected OS Windows
Affected App SUN