Vulnerability & Exploit Database

Back to search

Apple Java security update for CVE-2013-0429

Severity CVSS Published Added Modified
8 (AV:N/AC:H/Au:N/C:C/I:C/A:C) February 01, 2013 February 03, 2013 December 12, 2013

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution Reference

Java Security Update

Solution

apple-java-upgrade-1_6_0_41

Related Vulnerabilities