JVNDB-2017-002872
|
������ Oracle Java ���i�ɂ����� JAXP �Ɋւ���Ǝ㐫
|
|
Oracle Java SE�AJava SE Embedded ����� JRockit �ɂ́AJAXP �Ɋւ��鏈���ɕs�������邽�߁A�p���ɉe���̂���Ǝ㐫�����݂��܂��B
|
|
CVSS v3 �ɂ��[���x
��{�l: 5.9 (�x��) [NVD�l]
- �U�����敪: �l�b�g���[�N
- �U�������̕��G��: ��
- �U���ɕK�v�ȓ������x��: �s�v
- ���p�҂̊֗^: �s�v
- �e���̑z��͈�: �ύX�Ȃ�
- �@�����ւ̉e��(C): �Ȃ�
- ���S���ւ̉e��(I): �Ȃ�
- �p���ւ̉e��(A): ��
CVSS v2 �ɂ��[���x
��{�l: 7.1 (�댯) [NVD�l]
- �U�����敪: �l�b�g���[�N
- �U�������̕��G��: ��
- �U���O�̔F�ؗv��: �s�v
- �@�����ւ̉e��(C): �Ȃ�
- ���S���ւ̉e��(I): �Ȃ�
- �p���ւ̉e��(A): �S�ʓI
|
|
|
�I���N��
- JDK 6 Update 141
- JDK 7 Update 131
- JDK 8 Update 121
- JRE 6 Update 141
- JRE 7 Update 131
- JRE 8 Update 121
- Oracle Java SE Embedded 8 Update 121
- Oracle JRockit R28.3.13
����
- Cosminexus Developer's Kit for Java(TM)
- Hitachi Application Server
- Hitachi Application Server for Developers
- Hitachi Developer's Kit for Java
- uCosminexus Application Server
- uCosminexus Application Server Standard-R
- uCosminexus Application Server (64)
- uCosminexus Application Server Enterprise
- uCosminexus Application Server Standard
- uCosminexus Client
- uCosminexus Developer
- uCosminexus Developer Professional
- uCosminexus Developer Standard
- uCosminexus Service Architect
- uCosminexus Service Platform
- uCosminexus Service Platform (64)
|
|
|
�����[�g�̍U���҂ɂ��A�T�[�r�X�^�p�W�Q (DoS) �U�����s����\��������܂��B
|
|
�x���_��萳���ȑ��J����Ă��܂��B�x���_�����Q�Ƃ��ēK�ȑ�����{���Ă��������B
|
|
�I���N��
����
�x�m��
|
|
- �s�K�ȃA�N�Z�X����(CWE-284) [NVD�]��]
|
|
- CVE-2017-3526
|
|
- National Vulnerability Database (NVD) : CVE-2017-3526
- IPA �d�v�ȃZ�L�����e�B��� : Oracle Java �̐Ǝ㐫��ɂ���(CVE-2017-3512��)
- JPCERT ���ӊ��N : JPCERT-AT-2017-0017
|
|
|
