Original Issue Date:August 08, 2012
This cross-platform vulnerability can used to attack all platforms with an actual JVM (Java Virtual Machine) version and lets the malware a way to evade the JRE (Java Runtime Environment) sandbox, so that it can load additional java classes in order to perform malicious actions. This JRE vulnerability is included in the notorious Blackcole exploit pack.
Once successfully exploited leads remote code execution in the victim systems.
The information provided herein is on "as is" basis, without warranty of any kind.
Indian Computer Emergency Response Team (CERT-In) Ministry of Electronics and Information TechnologyGovernment of India Electronics Niketan 6, CGO Complex, Lodhi Road, New Delhi - 110 003 India