### [CVE-2014-6593](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6593)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit 27.8.4 and 28.3.4 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.

### POC

#### Reference
- http://packetstormsecurity.com/files/134251/Java-Secure-Socket-Extension-JSSE-SKIP-TLS.html
- http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
- http://www.vmware.com/security/advisories/VMSA-2015-0003.html
- https://www.exploit-db.com/exploits/38641/

#### Github
No PoCs found on GitHub currently.