CVE-2013-1490

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 6 and 7 Update 11 (JRE 1.7.0 11-b21)

Description The issue allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors. It is noted that as of 20130130, there were no independently-verifiable details and no vendor acknowledgement. This issue also exists in Java SE 6, but it cannot be exploited without a separate vulnerability.

Recommendations For Oracle Java SE version 7 Update 11 (JRE 1.7.0 11-b21), at the moment, there is no information about a newer version that contains a fix for this issue. For Oracle Java SE version 6, consider restricting access to minimize potential exploitation risks, as it requires a separate vulnerability to be exploitable.