FILE-JAVA -- Snort has detected traffic targeting vulnerabilities that are exploited in java files such as .class or .jar.
FILE-JAVA Oracle Java AtomicReferenceFieldUpdater remote code execution attempt
This event is generated when a compiled Java byte code file (CLASS file) which exploits CVE-2014-4262 is detected. Impact: Remote code execute in context of current user Details: Ease of Attack: Medium
No public information
No known false positives
Cisco Talos Intelligence Group
Tactic:
Technique:
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org
CVE-2014-4262Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. |
|