CVE-2012-4820 (5.0, 5.1, 5.1.1, java, lotus_domino, lotus_notes, lotus_notes_sametime, lotus_notes_traveler, rational_change, rational_host_on-demand, service_delivery_manager, smart_analytics_system_5600, smart_analytics_system_5600_software, tivoli_monitoring, tivoli_remote_control, websphere_real_time)

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to "insecure use of the java.lang.reflect.Method invoke() method."

View Full Alert