CVE-2014-0368

N/A Unknown

Published: January 15, 2014 Modified: April 29, 2026

Description

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and Java SE Embedded 7u45, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to incorrect permission checks when listening on a socket, which allows attackers to escape the sandbox.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/e6160aedadd5

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00012.html

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00024.html

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-updates/2014-01/msg00105.html

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-updates/2014-01/msg00107.html

Source: secalert_us@oracle.com

http://lists.opensuse.org/opensuse-updates/2014-02/msg00000.html

Source: secalert_us@oracle.com

http://marc.info/?l=bugtraq&m=139402697611681&w=2

Source: secalert_us@oracle.com

http://marc.info/?l=bugtraq&m=139402749111889&w=2

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0026.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0027.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0030.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0097.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0134.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0135.html

Source: secalert_us@oracle.com

http://rhn.redhat.com/errata/RHSA-2014-0136.html

Source: secalert_us@oracle.com

http://secunia.com/advisories/56432

Source: secalert_us@oracle.com

http://secunia.com/advisories/56485

Source: secalert_us@oracle.com

http://secunia.com/advisories/56486

Source: secalert_us@oracle.com

http://secunia.com/advisories/56535

Source: secalert_us@oracle.com

http://secunia.com/advisories/59235

Source: secalert_us@oracle.com

http://secunia.com/advisories/59339

Source: secalert_us@oracle.com

http://www-01.ibm.com/support/docview.wss?uid=swg21676978

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

Source: secalert_us@oracle.com

Vendor Advisory

http://www.securityfocus.com/bid/64758

Source: secalert_us@oracle.com

http://www.securityfocus.com/bid/64930

Source: secalert_us@oracle.com

http://www.securitytracker.com/id/1029608

Source: secalert_us@oracle.com

http://www.ubuntu.com/usn/USN-2089-1

Source: secalert_us@oracle.com

http://www.ubuntu.com/usn/USN-2124-1

Source: secalert_us@oracle.com

https://access.redhat.com/errata/RHSA-2014:0414

Source: secalert_us@oracle.com

https://bugzilla.redhat.com/show_bug.cgi?id=1052919

Source: secalert_us@oracle.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777

Source: secalert_us@oracle.com

http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/e6160aedadd5