Guest

Preview Tool

Cisco Bug: CSCum91948 - [JIRA] Update CRES 4.2 and higher JRE to 1.6.0_71-b12

Last Modified

Mar 14, 2014

Products (1)

  • Cisco Registered Envelope Service

Known Affected Releases

4.2.0-293

Description (partial)

Symptom:
The current CRES 4.2 JRE (1.6.0_45-b06) is potentially vulnerable to CVE-2013-2407, CVE-2013-5802, CVE-2013-5825, CVE-2013-4002, CVE-2013-5823, and CVE-2014-0423, allowing various attacks against CRES, including those exposing system and configuration information, hanging processing threads, and forcing the JVM to run out of memory.

Conditions:
Various
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.