VAR-201110-0387

Affected Products

Exploit Intelligence

• Soteria-Research/cve-2015-4843-type-confusion-phrack (github-poc)
• ✨ HAProxy ve Keepalived konusunu load balancer ve cluster'a ek olarak güvenlik(zayıf SSL/Kripto Kullanımı (LOGJAM) (CVE-2015-4000) zafiyeti önlemi) ve yüksek yüklere karşı ele alır. (github-poc)
• guhe120/CVE-2013-5842 (github-poc)
• A Simple PoC for CVE-2012-4681 (github-poc)
• An A/V evasion armoring experiment for CVE-2012-4681 (github-poc)
• Proof of concept exploit for CVE-2012-1723 (github-poc)
• Python 3 implementation of an existing CVE-2011-3556 proof of concept (PoC). (github-poc)
• :muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle: (github-poc)
• edmondscommerce/CVE-2011-2461_Magento_Patch (github-poc)
• Patched version of the uploader.swf and uploaderSingle.swf to fix CVE-2011-2461 (github-poc)

…and 40 more exploits

Timeline

• Nov 4, 2009 CVE Published
• Apr 30, 2017 PoC Published
• May 29, 2018 PoC Published
• Jul 2, 2021 PoC Published
• Nov 4, 2021 PoC Published
• Jan 24, 2023 PoC Published
• Feb 6, 2025 PoC Published
• Feb 13, 2025 PoC Published
• Feb 23, 2025 PoC Published
• Jul 30, 2025 PoC Published
• Mar 28, 2026 PoC Published
• Mar 30, 2026 Distribution Patch

References

• 76505 vdb
• 50231 vdb
• GLSA-201406-32 vendor-advisory
• 48692 third-party-advisory
• HPSBMU02799 vendor-advisory
• SSRT100805 vendor-advisory
• 48308 third-party-advisory
• HPSBUX02730 vendor-advisory
• jre-rmi-unspecified(70837) vdb
• SUSE-SU-2012:0114 vendor-advisory
• RHSA-2013:1455 vendor-advisory
• oval:org.mitre.oval:def:14316 vdb
• RHSA-2011:1478 vendor-advisory
• RHSA-2011:1384 vendor-advisory
• http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html url
• SSRT100867 vendor-advisory
• 49198 third-party-advisory
• RHSA-2012:0006 vendor-advisory
• SUSE-SU-2012:0122 vendor-advisory
• HPSBUX02777 vendor-advisory

…and 4 more