Oracle Java contains a flaw related to the Networking subcomponent (net.dll). The flaw is related to the Gopher protocol, an awesomely named, but mostly deprecated protocol that may allow an attacker to bypass port restrictions. The issue is due to the protocol not sanitizing input to an XML interface, allowing for XML injection. By sending a crafted XML request, an attacker can trick the system into forwarding the request to arbitrary systems and ports (including localhost), effectively bypassing network restrictions. This can be used to reach vulnerable interfaces or services that are presumably protected by firewalls or other screening devices.

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch to address this vulnerability. Check the vendor advisory or solution in the references section.

• Security Tracker: 1027669 1027672
• CVE ID: 2012-3202 (see also: NVD) 2012-5085 (see also: NVD)
• Secunia Advisory ID: 50949 50992 51028 51029 51046 51047 51141 51154 51166 51168 51599 51618 51776 52006 52332 52429 52501 53180 53218
• Bugtraq ID: 56067
• ISS X-Force ID: 79438
• Related OSVDB ID: 86344 86345 86346 86347 86348 86349 86350 86351 86352 86353 86354 86355 86356 86357 86358 86359 86360 86361 86362 86363 86364 86365 86366 86367 86368 86369 86370 86371 86372
• Vendor Specific News/Changelog Entry: http://alien.slackbook.org/blog/openjdk-7-update-9-with-icedtea-2-3-3-fixes-security-flaws/
  http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00023.html
  http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00024.html
  http://lists.opensuse.org/opensuse-updates/2012-10/msg00095.html
  http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-October/020571.html
  http://www.ibm.com/support/docview.wss?uid=swg21621771
  http://www.ibm.com/support/docview.wss?uid=swg21625941
  http://www.ubuntu.com/usn/usn-1619-1/
  https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_fixed_in_java
  https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_fixed_in_java1
  https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03595351
• Generic Informational URL: http://en.wikipedia.org/wiki/Gopher_%28protocol%29
• Other Advisory URL: http://erpscan.com/advisories/dsecrg-12-039-oracle-jvm-gopher-protocol-ssrf/
• Packet Storm: http://packetstormsecurity.com/files/119308/HP-Security-Bulletin-HPSBOV02833-SSRT101043.html
  http://packetstormsecurity.org/files/118835/HP-Security-Bulletin-HPSBUX02832-SSRT101042.html
• Vendor Specific Advisory URL: http://rss.xerox.com/~r/security-bulletins/~5/xzeGn6t7q7c/cert_XRX13-003_v1.0.pdf
  http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-023/index.html
  http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html
  http://www.vmware.com/security/advisories/VMSA-2013-0003.html
  http://www.vmware.com/security/advisories/VMSA-2013-0006.html
  http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf
  https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03596813
• Mail List Post: http://seclists.org/bugtraq/2012/Dec/95
  http://seclists.org/bugtraq/2013/Jan/21
• RedHat RHSA: RHSA-2012:1384 RHSA-2012:1385 RHSA-2012:1386 RHSA-2012:1391 RHSA-2012:1392

• Not Available