Trusted Design

• 重大度: Unknown
• 公開日: 2012-08-28
• 更新日: 2025-10-22

概要

Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.ClassFinder.findClass and leveraging an exception with the forName method to access restricted classes from arbitrary packages such as sun.awt.SunToolkit, then (2) using "reflection with a trusted immediate caller" to leverage the getField method to access and modify private fields, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class.

このCVEに関連するMITRE ATT&CKテクニック

• T1583.007 - Serverless
• T1003.002 - Security Account Manager
• T1583.002 - DNS Server
• T1192 - Spearphishing Link
• T1121 - Regsvcs/Regasm
• T1591.003 - Identify Business Tempo
• T1070.002 - Clear Linux or Mac System Logs
• T1598.003 - Spearphishing Link
• T1583.005 - Botnet
• T1608.001 - Upload Malware
• T1558 - Steal or Forge Kerberos Tickets
• T1050 - New Service
• T1518.002 - Backup Software Discovery
• T1525 - Implant Internal Image
• T1547.005 - Security Support Provider
• T1562.004 - Disable or Modify System Firewall
• T1145 - Private Keys
• T1535 - Unused/Unsupported Cloud Regions
• T1547.003 - Time Providers
• T1042 - Change Default File Association
• T1177 - LSASS Driver
• T1055.013 - Process Doppelgänging
• T1546.008 - Accessibility Features
• T1204.005 - Malicious Library
• T1583.003 - Virtual Private Server
• T1036.004 - Masquerade Task or Service
• T1649 - Steal or Forge Authentication Certificates
• T1051 - Shared Webroot
• T1218.005 - Mshta
• T1608 - Stage Capabilities
• T1608.005 - Link Target
• T1598.002 - Spearphishing Attachment
• T1496.004 - Cloud Service Hijacking
• T1606 - Forge Web Credentials
• T1546.001 - Change Default File Association
• T1071.002 - File Transfer Protocols
• T1679 - Selective Exclusion
• T1210 - Exploitation of Remote Services
• T1534 - Internal Spearphishing
• T1593 - Search Open Websites/Domains
• T1219.003 - Remote Access Hardware
• T1601 - Modify System Image
• T1078 - Valid Accounts
• T1055.012 - Process Hollowing
• T1068 - Exploitation for Privilege Escalation
• T1486 - Data Encrypted for Impact
• T1587.004 - Exploits
• T1028 - Windows Remote Management
• T1027.004 - Compile After Delivery
• T1656 - Impersonation
• T1090.004 - Domain Fronting
• T1500 - Compile After Delivery
• T1213.003 - Code Repositories
• T1565.002 - Transmitted Data Manipulation
• T1223 - Compiled HTML File
• T1555.004 - Windows Credential Manager
• T1194 - Spearphishing via Service
• T1546.016 - Installer Packages
• T1159 - Launch Agent
• T1564.005 - Hidden File System
• T1518 - Software Discovery
• T1055.008 - Ptrace System Calls
• T1653 - Power Settings
• T1596.005 - Scan Databases
• T1173 - Dynamic Data Exchange
• T1204.001 - Malicious Link
• T1124 - System Time Discovery
• T1588.005 - Exploits
• T1127 - Trusted Developer Utilities Proxy Execution
• T1574.012 - COR_PROFILER

このCVEが関連しているPulses

このCVEが関連しているPulsesはありません。

CVEの関係性グラフ

---

← CVE一覧に戻る