Oracle Java SE Remote Code Execution Vulnerability (CVE-2015-2590)

2016年4月6日

风险等级: 緊急

CVE标识符: : CVE-2015-2590

建议日期 : 2015年7月14日

描述

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

Trend Micro researcher Brooks Li disclosed details about this vulnerability to Oracle. The said company acknowledged Li’s research contribution.

保护信息

Apply associated Trend Micro DPI Rules.

解决方案

补丁: http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html