Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-0402

Опубликовано: 06 мар. 2013
Источник: redhat
CVSS2: 6.8
EPSS Низкий

Описание

Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5java-1.6.0-openjdkNot affected
Red Hat Enterprise Linux 5java-1.7.0-openjdkNot affected
Red Hat Enterprise Linux 6java-1.6.0-openjdkNot affected
Red Hat Enterprise Linux 6java-1.7.0-openjdkNot affected
Supplementary for Red Hat Enterprise Linux 5java-1.7.0-oracleFixedRHSA-2013:075718.04.2013
Supplementary for Red Hat Enterprise Linux 6java-1.7.0-oracleFixedRHSA-2013:075718.04.2013

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Critical
https://bugzilla.redhat.com/show_bug.cgi?id=920246JDK: unspecified JavaFX buffer overflow leading to JVM compromise (CanSecWest 2013, JavaFX)

EPSS

Процентиль: 92%
0.0753
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2013-0402

ubuntu
почти 13 лет назад

Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

nvd логотип

CVE-2013-0402

nvd
почти 13 лет назад

Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

debian логотип

CVE-2013-0402

debian
почти 13 лет назад

Heap-based buffer overflow in the Java Runtime Environment (JRE) compo ...

github логотип

GHSA-8256-4rjv-442v

github
почти 4 года назад

Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

EPSS

Процентиль: 92%
0.0753
Низкий

6.8 Medium

CVSS2