Short Name |
HTTP:JAVA-UA-EXE-DL |
---|---|
Severity |
Critical |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Executable File Downloaded by Java User Agent |
Release Date |
2013/01/18 |
Update Number |
2226 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects a Microsoft executable file being downloaded by a web client using a Java User Agent string. This behavior has been identified as being common to many in-the-wild exploits targeting the recent Java 7 vulnerabilities. It is strongly recommended that you block this activity.
Per: http://www.oracle.com/technetwork/java/javase/downloads/jdk7-downloads-1880260.html 'Note: JDK and JRE 6, 5.0 and 1.4.2, and Java SE Embedded JRE releases are not affected.'