What is the severity of REDHAT-BUG-1385544?

The severity of REDHAT-BUG-1385544 is considered critical due to its potential to allow remote code execution through improper handling of JDWP packets.

How do I fix REDHAT-BUG-1385544?

To fix REDHAT-BUG-1385544, apply the latest security patches provided for OpenJDK 17 from Oracle.

Who is affected by REDHAT-BUG-1385544?

REDHAT-BUG-1385544 affects users of Oracle OpenJDK, particularly version 17.

What exploits are possible with REDHAT-BUG-1385544?

Exploiting REDHAT-BUG-1385544 could allow attackers to send unauthorized debugging commands to the Java application.

When was REDHAT-BUG-1385544 disclosed?

REDHAT-BUG-1385544 was disclosed in 2016 and is related to vulnerabilities found in older versions of OpenJDK.

Vulnerability/
REDHAT-BUG-1385544

high

17/10/2016

17/2/2021

REDHAT-BUG-1385544

First published: Mon Oct 17 2016(Updated: )

It was discovered that the Hotspot component of OpenJDK did not properly check Java Debug Wire Protocol (JDWP) packets, which could possibly allow HTTP requests issues by a web browser to be interpreted as valid JDWP messages. An attacker could possibly use this flaw to send debugging commands to a Java program or applet running with debugging enabled if they could make victim's browser send HTTP requests to the JDWP port of the debugged application.

Affected Software	Affected Version	How to fix
OpenJDK 17

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-1385544?
The severity of REDHAT-BUG-1385544 is considered critical due to its potential to allow remote code execution through improper handling of JDWP packets.
How do I fix REDHAT-BUG-1385544?
To fix REDHAT-BUG-1385544, apply the latest security patches provided for OpenJDK 17 from Oracle.
Who is affected by REDHAT-BUG-1385544?
REDHAT-BUG-1385544 affects users of Oracle OpenJDK, particularly version 17.
What exploits are possible with REDHAT-BUG-1385544?
Exploiting REDHAT-BUG-1385544 could allow attackers to send unauthorized debugging commands to the Java application.
When was REDHAT-BUG-1385544 disclosed?
REDHAT-BUG-1385544 was disclosed in 2016 and is related to vulnerabilities found in older versions of OpenJDK.

agent/references
agent/type
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2016-5573
agent/last-modified-date
agent/source
agent/severity
agent/description
agent/event
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/oracle
canonical/openjdk 17

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.