CVE-2016-0376
Published Jun 3, 2016
Last updated a year ago
Overview
- Description
- The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) does not properly deserialize classes in an AccessController doPrivileged block, which allows remote attackers to bypass a sandbox protection mechanism and execute arbitrary code as demonstrated by the readValue method of the com.ibm.rmi.io.ValueHandlerPool.ValueHandlerSingleton class, which implements the javax.rmi.CORBA.ValueHandler interface. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-5456.
- Source
- psirt@us.ibm.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 8.1
- Impact score
- 5.9
- Exploitability score
- 2.2
- Vector string
- CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 5.1
- Impact score
- 6.4
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Evaluator
- Comment
- <a href="http://cwe.mitre.org/data/definitions/502.html" rel="nofollow">CWE-502: Deserialization of Untrusted Data</a>
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:11.0:sp4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A5FDEDA8-6F51-4945-B443-438CC987F235"
},
{
"criteria": "cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "336EC5B8-6FD8-42BB-9530-58A15238CEE1"
},
{
"criteria": "cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "01E6CAD9-DC1F-4C7C-8C8E-98E4BFABAC94"
},
{
"criteria": "cpe:2.3:o:novell:suse_linux_enterprise_module_for_legacy_software:12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B7449208-3D08-427B-9783-CF48D6B63A6B"
},
{
"criteria": "cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp2:*:*:ltss:*:*:*",
"vulnerable": true,
"matchCriteriaId": "772B084E-2EAE-4AC9-94C1-B826857B0861"
},
{
"criteria": "cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:ltss:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F8CE3BD-993B-407F-BAEC-A070F6B46E6E"
},
{
"criteria": "cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ADE9D807-6690-4D67-A6B3-68BBC9B50153"
},
{
"criteria": "cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C384D0B6-8A5C-45CA-8CD9-7F4E967FE4F0"
},
{
"criteria": "cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "81D94366-47D6-445A-A811-39327B150FCD"
},
{
"criteria": "cpe:2.3:o:novell:suse_manager:2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "514646C5-C5D4-487E-8950-B3A2B1DE8EEC"
},
{
"criteria": "cpe:2.3:o:novell:suse_manager_proxy:2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C15BA04F-6CBC-45AB-A44F-D8E8B3F8EC06"
},
{
"criteria": "cpe:2.3:o:novell:suse_openstack_cloud:5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "74268F7D-058C-4E84-9D7E-3853A95918BD"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:java_sdk:*:*:*:*:technology:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A27846D2-F8BC-4A9B-9B59-E6E71BB869BC",
"versionEndExcluding": "6.0.16.25",
"versionStartIncluding": "6.0.0.0"
},
{
"criteria": "cpe:2.3:a:ibm:java_sdk:*:*:*:*:technology:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9F139472-2499-44AF-A466-0043BB83E254",
"versionEndExcluding": "6.1.8.25",
"versionStartIncluding": "6.1.0.0"
},
{
"criteria": "cpe:2.3:a:ibm:java_sdk:*:*:*:*:technology:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A44B197F-40EF-465F-9995-691EA879F121",
"versionEndExcluding": "7.0.9.40",
"versionStartIncluding": "7.0.0.0"
},
{
"criteria": "cpe:2.3:a:ibm:java_sdk:*:*:*:*:technology:*:*:*",
"vulnerable": true,
"matchCriteriaId": "626BA0D0-5526-4344-822B-0F5837C43C37",
"versionEndExcluding": "7.1.3.40",
"versionStartIncluding": "7.1.0.0"
},
{
"criteria": "cpe:2.3:a:ibm:java_sdk:*:*:*:*:technology:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DDBE9092-9478-4899-88D2-95E4EDACB4FD",
"versionEndExcluding": "8.0.3.0",
"versionStartIncluding": "8.0.0.0"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4840254-CC76-4113-BC61-360BD15582B9"
},
{
"criteria": "cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85EA16E0-9261-45C4-840F-5366E9EAC5E1"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "133AAFA7-AF42-4D7B-8822-AA2E85611BF5"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node_supplementary:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "585614D3-1DAA-4256-83DE-AFE901154808"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node_supplementary:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8440BA16-EAC4-4F27-99A4-795295DA6646"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C81647C-9A53-481D-A54C-36770A093F90"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "44B067C7-735E-43C9-9188-7E1522A02491"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A8442C20-41F9-47FD-9A12-E724D3A31FD7"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0AC5CD5-6E58-433C-9EB3-6DFE5656463E"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97"
}
],
"operator": "OR"
}
]
}
]