Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-5896

Опубликовано: 14 янв. 2014
Источник: redhat
CVSS2: 4.3
EPSS Низкий

Описание

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that com.sun.corba.se and its sub-packages are not included on the restricted package list.

Меры по смягчению последствий

Applications running with a security manager that make direct use of classes in these JDK internal packages, need to adjust their security policy to grant access. See Java Security Policy Files documentation.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 7java-1.6.0-openjdkNot affected
Red Hat Enterprise Linux 7java-1.7.0-openjdkNot affected
Red Hat Enterprise Linux 7java-1.7.0-oracleNot affected
Oracle Java for Red Hat Enterprise Linux 5java-1.6.0-sunFixedRHSA-2014:041417.04.2014
Oracle Java for Red Hat Enterprise Linux 6java-1.6.0-sunFixedRHSA-2014:041417.04.2014
Red Hat Enterprise Linux 5java-1.7.0-openjdkFixedRHSA-2014:002715.01.2014
Red Hat Enterprise Linux 5java-1.6.0-openjdkFixedRHSA-2014:009727.01.2014
Red Hat Enterprise Linux 6java-1.7.0-openjdkFixedRHSA-2014:002615.01.2014
Red Hat Enterprise Linux 6java-1.6.0-openjdkFixedRHSA-2014:009727.01.2014
Red Hat Network Satellite Server v 5.4java-1.6.0-ibmFixedRHSA-2014:098229.07.2014

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1053266OpenJDK: com.sun.corba.se. should be restricted package (CORBA, 8025022)

EPSS

Процентиль: 91%
0.06554
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2013-5896

ubuntu
больше 11 лет назад

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that com.sun.corba.se and its sub-packages are not included on the restricted package list.

nvd логотип

CVE-2013-5896

nvd
больше 11 лет назад

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that com.sun.corba.se and its sub-packages are not included on the restricted package list.

debian логотип

CVE-2013-5896

debian
больше 11 лет назад

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Ja ...

github логотип

GHSA-7v64-rv29-rwhf

github
около 3 лет назад

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that com.sun.corba.se and its sub-packages are not included on the restricted package list.

oracle-oval логотип

ELSA-2014-0097

oracle-oval
больше 11 лет назад

ELSA-2014-0097: java-1.6.0-openjdk security update (IMPORTANT)

EPSS

Процентиль: 91%
0.06554
Низкий

4.3 Medium

CVSS2