Zero-day vulnerabilities discovered: 1
Error Handling
The vulnerability allows a remote attacker to execute arbitrary code on the target system.According to Trend Micro, this is a zero-day .The vulnerability was discovered by Michael Schierl.
Software: Oracle Java SE
Known/fameous malware:
Exploit:Java/CVE-2011-3544.
Links:
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
http://digcert.com/docs/symantec/symantec_report_2012.htm
http://blog.trendmicro.com/trendlabs-security-intelligence/2011-in-review-exploits-and-vulnerabiliti...
https://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=24700
http://repairinfectedpc.com/Exploit-Java-CVE-2011-3544-Removal/
https://krebsonsecurity.com/2011/12/amnesty-international-site-serving-java-exploit/#more-13070
https://krebsonsecurity.com/2011/11/public-java-exploit-amps-up-threat-level/#more-12679
https://www.cnet.com/forums/discussions/exploit-java-cve-2011-3544-583664/