CVE-2013-2421

Name of the Vulnerable Software and Affected Versions Java SE versions prior to 7 Update 17 OpenJDK versions 6 and 7

Description The issue allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. It is reportedly related to incorrect MethodHandle lookups, which could allow remote attackers to bypass Java sandbox restrictions.

Recommendations For Java SE versions prior to 7 Update 17, update to a version later than 7 Update 17 to resolve the issue. For OpenJDK versions 6 and 7, consider disabling the HotSpot component as a temporary workaround until a patch is available. Restrict access to the Java Runtime Environment (JRE) component to minimize the risk of exploitation.