CVE-2015-1914 - Limitary Arrow

Description

IBM Java 7 R1 before SR3 7 before SR9 6 R1 before SR8 FP4 6 before SR16 FP4 and 5.0 before SR16 FP10 allows remote attackers to bypass \permission checks\ and obtain sensitive information via vectors related to the Java Virtual Machine.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21883640 http://www-01.ibm.com/support/docview.wss?uid=swg1IV72245 http://www-01.ibm.com/support/docview.wss?uid=swg1IV72246 http://www.securityfocus.com/bid/74645 http://rhn.redhat.com/errata/RHSA-2015-1091.html http://rhn.redhat.com/errata/RHSA-2015-1021.html http://rhn.redhat.com/errata/RHSA-2015-1020.html http://rhn.redhat.com/errata/RHSA-2015-1007.html http://rhn.redhat.com/errata/RHSA-2015-1006.html http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html