PT-2013-5820 · Oracle+5 · Java Se Embedded+7

Stefan Cornelius

Published

2013-10-16

Updated

2024-06-15

CVE-2013-5817

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u40 and earlier Oracle Java SE versions 6u60 and earlier Oracle Java SE versions 5.0u51 and earlier Oracle Java SE Embedded versions 7u40 and earlier

Description The issue allows remote attackers to affect confidentiality, integrity, and availability. It is related to vectors concerning JNDI.

Recommendations For Oracle Java SE versions 7u40 and earlier, update to a version later than 7u40. For Oracle Java SE versions 6u60 and earlier, update to a version later than 6u60. For Oracle Java SE versions 5.0u51 and earlier, update to a version later than 5.0u51. For Oracle Java SE Embedded versions 7u40 and earlier, update to a version later than 7u40.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2013_1451

CESA-2013_1505

CVE-2013-5817

HPSBUX02943

HPSBUX02944

MGASA-2013-0322

MGASA-2013-0323

OPENSUSE-SU-2024:10534-1

RHSA-2013:1440

RHSA-2013:1447

RHSA-2013:1451

RHSA-2013:1505

RHSA-2013:1507

RHSA-2013:1508

RHSA-2013:1509

RHSA-2013:1793

RHSA-2013_1440

RHSA-2013_1447

RHSA-2013_1451

RHSA-2013_1505

RHSA-2013_1507

RHSA-2013_1508

RHSA-2013_1509

RHSA-2014:0414

RHSA-2014_0414

ZDI-13-244

Affected Products

Centos

Hp-Ux

Ibm Aix

Java Platform

Java Se

Java Se Embedded

Red Hat

Suse

PT-2013-5820 · Oracle+5 · Java Se Embedded+7

CVE-2013-5817

Related Identifiers

Affected Products

References · 662