{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Oracle SDK et JRE 1.4.2_35 et versions ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle JDK et JRE 6 Update 30 et versions ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle JavaFX 2.0.2 et versions ant\u00e9rieures.","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle JDK et JRE 5.0 Update 33 et versions ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle JDK et JRE 7 Update 2 et versions ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Oracle Java. Elles\npermettent \u00e0 un utilisateur malintentionn\u00e9 d'ex\u00e9cuter du code arbitraire\n\u00e0 distance au moyen d'une application Java malveillante ou une requ\u00eate\nsp\u00e9cifiquement con\u00e7ue.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2012-0500","url":"https://www.cve.org/CVERecord?id=CVE-2012-0500"},{"name":"CVE-2012-0502","url":"https://www.cve.org/CVERecord?id=CVE-2012-0502"},{"name":"CVE-2012-0507","url":"https://www.cve.org/CVERecord?id=CVE-2012-0507"},{"name":"CVE-2012-0505","url":"https://www.cve.org/CVERecord?id=CVE-2012-0505"},{"name":"CVE-2012-0499","url":"https://www.cve.org/CVERecord?id=CVE-2012-0499"},{"name":"CVE-2012-0506","url":"https://www.cve.org/CVERecord?id=CVE-2012-0506"},{"name":"CVE-2012-0503","url":"https://www.cve.org/CVERecord?id=CVE-2012-0503"},{"name":"CVE-2011-3563","url":"https://www.cve.org/CVERecord?id=CVE-2011-3563"},{"name":"CVE-2012-0497","url":"https://www.cve.org/CVERecord?id=CVE-2012-0497"},{"name":"CVE-2012-0501","url":"https://www.cve.org/CVERecord?id=CVE-2012-0501"},{"name":"CVE-2012-0504","url":"https://www.cve.org/CVERecord?id=CVE-2012-0504"},{"name":"CVE-2011-5035","url":"https://www.cve.org/CVERecord?id=CVE-2011-5035"},{"name":"CVE-2012-0508","url":"https://www.cve.org/CVERecord?id=CVE-2012-0508"},{"name":"CVE-2012-0498","url":"https://www.cve.org/CVERecord?id=CVE-2012-0498"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Oracle javacpufeb2012-366318 du 14    f\u00e9vrier 2012 :","url":"http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Apple HT5228 du 03 avril 2012 :","url":"http://support.apple.com/kb/HT5228"},{"title":"Bulletins de s\u00e9curit\u00e9 IBM PM59971 et PM59978 (z/OS) du 13    avril 2012 :","url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PM59971"},{"title":"Bulletins de s\u00e9curit\u00e9 IBM PM59971 et PM59978 (z/OS) du 13    avril 2012 :","url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PM59978"}],"reference":"CERTA-2012-AVI-085","revisions":[{"description":"version initiale ;","revision_date":"2012-02-17T00:00:00.000000"},{"description":"ajout du correctif Apple ;","revision_date":"2012-04-06T00:00:00.000000"},{"description":"ajout des correctifs IBM.","revision_date":"2012-04-16T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Oracle Java et\npermettent d'ex\u00e9cuter du code arbitraire \u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Oracle Java","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Oracle du 14 f\u00e9vrier 2012","url":null}]}