CVE-2011-3553
First published: Wed Oct 19 2011(Updated: )
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote authenticated users to affect confidentiality, related to JAXWS.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Java Development Kit (JDK) | =1.7.0 | |
| Sun Java Runtime Environment (JRE) | =1.7.0 | |
| Oracle Java SE | <=r28.1.4 | |
| Oracle Java SE | =r28.0.0 | |
| Oracle Java SE | =r28.0.1 | |
| Oracle Java SE | =r28.0.2 | |
| Oracle Java SE | =r28.1.0 | |
| Oracle Java SE | =r28.1.1 | |
| Oracle Java SE | =r28.1.3 | |
| Java Development Kit (JDK) | <=1.6.0 | |
| Java Development Kit (JDK) | =1.6.0 | |
| Java Development Kit (JDK) | =1.6.0-update_10 | |
| Java Development Kit (JDK) | =1.6.0-update_11 | |
| Java Development Kit (JDK) | =1.6.0-update_12 | |
| Java Development Kit (JDK) | =1.6.0-update_13 | |
| Java Development Kit (JDK) | =1.6.0-update_14 | |
| Java Development Kit (JDK) | =1.6.0-update_15 | |
| Java Development Kit (JDK) | =1.6.0-update_16 | |
| Java Development Kit (JDK) | =1.6.0-update_17 | |
| Java Development Kit (JDK) | =1.6.0-update_18 | |
| Java Development Kit (JDK) | =1.6.0-update_19 | |
| Java Development Kit (JDK) | =1.6.0-update_20 | |
| Java Development Kit (JDK) | =1.6.0-update_21 | |
| Java Development Kit (JDK) | =1.6.0-update_22 | |
| Java Development Kit (JDK) | =1.6.0-update_23 | |
| Java Development Kit (JDK) | =1.6.0-update_24 | |
| Java Development Kit (JDK) | =1.6.0-update_25 | |
| Java Development Kit (JDK) | =1.6.0-update_26 | |
| Java Development Kit (JDK) | =1.6.0-update_3 | |
| Java Development Kit (JDK) | =1.6.0-update_4 | |
| Java Development Kit (JDK) | =1.6.0-update_5 | |
| Java Development Kit (JDK) | =1.6.0-update_6 | |
| Java Development Kit (JDK) | =1.6.0-update_7 | |
| Java Development Kit (JDK) | =1.6.0-update1 | |
| Java Development Kit (JDK) | =1.6.0-update2 | |
| Sun Java Runtime Environment (JRE) | <=1.6.0 | |
| Sun Java Runtime Environment (JRE) | =1.6.0 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_1 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_10 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_11 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_12 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_13 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_14 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_15 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_16 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_17 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_18 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_19 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_2 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_20 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_21 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_22 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_23 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_24 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_25 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_26 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_3 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_4 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_5 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_6 | |
| Sun Java Runtime Environment (JRE) | =1.6.0-update_7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
- http://www.redhat.com/support/errata/RHSA-2011-1384.html
- http://www.securityfocus.com/bid/50246
- http://www.ibm.com/developerworks/java/jdk/alerts/
- http://osvdb.org/76512
- http://marc.info/?l=bugtraq&m=132750579901589&w=2
- http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html
- http://www.securitytracker.com/id?1026215
- http://rhn.redhat.com/errata/RHSA-2013-1455.html
- http://www.ubuntu.com/usn/USN-1263-1
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://marc.info/?l=bugtraq&m=134254957702612&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70840
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14311
- http://marc.info/?l=bugtraq&m=134254866602253&w=2
- http://secunia.com/advisories/48308
Frequently Asked Questions
What is the severity of CVE-2011-3553?
The severity of CVE-2011-3553 is categorized as important, affecting confidentiality.
How do I fix CVE-2011-3553?
To fix CVE-2011-3553, upgrade to the latest version of Oracle Java SE JDK/JRE or JRockit.
Which versions are affected by CVE-2011-3553?
CVE-2011-3553 affects Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, as well as JRockit R28.1.4 and earlier.
What components are affected by CVE-2011-3553?
CVE-2011-3553 specifically impacts the Java Runtime Environment component related to JAXWS.
Can CVE-2011-3553 be exploited remotely?
Yes, CVE-2011-3553 can be exploited by remote authenticated users.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/sun
- canonical/java development kit (jdk)
- version/java development kit (jdk)/1.7.0
- canonical/sun java runtime environment (jre)
- version/sun java runtime environment (jre)/1.7.0
- vendor/oracle
- canonical/oracle java se
- version/oracle java se/r28.1.4
- version/oracle java se/r28.0.0
- version/oracle java se/r28.0.1
- version/oracle java se/r28.0.2
- version/oracle java se/r28.1.0
- version/oracle java se/r28.1.1
- version/oracle java se/r28.1.3
- version/java development kit (jdk)/1.6.0
- version/java development kit (jdk)/1.6.0-update_10
- version/java development kit (jdk)/1.6.0-update_11
- version/java development kit (jdk)/1.6.0-update_12
- version/java development kit (jdk)/1.6.0-update_13
- version/java development kit (jdk)/1.6.0-update_14
- version/java development kit (jdk)/1.6.0-update_15
- version/java development kit (jdk)/1.6.0-update_16
- version/java development kit (jdk)/1.6.0-update_17
- version/java development kit (jdk)/1.6.0-update_18
- version/java development kit (jdk)/1.6.0-update_19
- version/java development kit (jdk)/1.6.0-update_20
- version/java development kit (jdk)/1.6.0-update_21
- version/java development kit (jdk)/1.6.0-update_22
- version/java development kit (jdk)/1.6.0-update_23
- version/java development kit (jdk)/1.6.0-update_24
- version/java development kit (jdk)/1.6.0-update_25
- version/java development kit (jdk)/1.6.0-update_26
- version/java development kit (jdk)/1.6.0-update_3
- version/java development kit (jdk)/1.6.0-update_4
- version/java development kit (jdk)/1.6.0-update_5
- version/java development kit (jdk)/1.6.0-update_6
- version/java development kit (jdk)/1.6.0-update_7
- version/java development kit (jdk)/1.6.0-update1
- version/java development kit (jdk)/1.6.0-update2
- version/sun java runtime environment (jre)/1.6.0
- version/sun java runtime environment (jre)/1.6.0-update_1
- version/sun java runtime environment (jre)/1.6.0-update_10
- version/sun java runtime environment (jre)/1.6.0-update_11
- version/sun java runtime environment (jre)/1.6.0-update_12
- version/sun java runtime environment (jre)/1.6.0-update_13
- version/sun java runtime environment (jre)/1.6.0-update_14
- version/sun java runtime environment (jre)/1.6.0-update_15
- version/sun java runtime environment (jre)/1.6.0-update_16
- version/sun java runtime environment (jre)/1.6.0-update_17
- version/sun java runtime environment (jre)/1.6.0-update_18
- version/sun java runtime environment (jre)/1.6.0-update_19
- version/sun java runtime environment (jre)/1.6.0-update_2
- version/sun java runtime environment (jre)/1.6.0-update_20
- version/sun java runtime environment (jre)/1.6.0-update_21
- version/sun java runtime environment (jre)/1.6.0-update_22
- version/sun java runtime environment (jre)/1.6.0-update_23
- version/sun java runtime environment (jre)/1.6.0-update_24
- version/sun java runtime environment (jre)/1.6.0-update_25
- version/sun java runtime environment (jre)/1.6.0-update_26
- version/sun java runtime environment (jre)/1.6.0-update_3
- version/sun java runtime environment (jre)/1.6.0-update_4
- version/sun java runtime environment (jre)/1.6.0-update_5
- version/sun java runtime environment (jre)/1.6.0-update_6
- version/sun java runtime environment (jre)/1.6.0-update_7