CVE-2012-0507

CRITICAL KEV RANSOMWARE

Java AtomicReferenceArray Type Violation Vulnerability

Title source: metasploit

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotemultiple

https://www.exploit-db.com/exploits/18679

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Jeroen Frijters, sinn3r, juan vazquez, egypt · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/browser/java_atomicreferencearray.rb

View Code ZIP pw:eip

References (23)

[Broken Link, Third Party Advisory] http://blogs.technet.com/b/mmpc/archive/2012/03/20/an-interesting-case-of-jre-sandbox-breach-cve-2012-0507.aspx

[Third Party Advisory] http://krebsonsecurity.com/2012/03/new-java-attack-rolled-into-exploit-packs/

[Issue Tracking, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00010.html

[Third Party Advisory] http://marc.info/?l=bugtraq&m=133364885411663&w=2

[Third Party Advisory] http://marc.info/?l=bugtraq&m=133365109612558&w=2

[Third Party Advisory] http://marc.info/?l=bugtraq&m=133847939902305&w=2

[Third Party Advisory] http://marc.info/?l=bugtraq&m=134254866602253&w=2

[Third Party Advisory] http://marc.info/?l=bugtraq&m=134254957702612&w=2

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2012-0508.html

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2012-0514.html

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2013-1455.html

[Broken Link, Not Applicable] http://secunia.com/advisories/48589

[Broken Link, Not Applicable] http://secunia.com/advisories/48692

[Broken Link, Not Applicable] http://secunia.com/advisories/48915

[Broken Link, Not Applicable] http://secunia.com/advisories/48948

[Broken Link, Not Applicable] http://secunia.com/advisories/48950

[Broken Link, Exploit] http://weblog.ikvm.net/PermaLink.aspx?guid=cd48169a-9405-4f63-9087-798c4a1866d3

[Mailing List, Third Party Advisory] http://www.debian.org/security/2012/dsa-2420

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html

... and 3 more

Scores

CVSS v3 9.8

EPSS 0.9357

EPSS Percentile 99.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-03-03

VulnCheck KEV 2012-07-02

InTheWild.io 2022-03-03

ENISA EUVD EUVD-2012-0539

Ransomware Use Confirmed

CWE

CWE-843

Status published

Products (6)

debian/debian_linux 6.0

debian/debian_linux 7.0

oracle/jre 1.6.0 update22 (8 CPE variants)

oracle/jre 1.7.0 (3 CPE variants)

sun/jre 1.5.0 (32 CPE variants)

sun/jre 1.6.0 (5 CPE variants)

Published Jun 07, 2012

KEV Added Mar 03, 2022

Tracked Since Feb 18, 2026