QwikSec

Security Database

CVE

CWE

Training

CVE-2013-0444

Published: Feb 2, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "insufficient checks for cached results" by the Java Beans MethodFinder, which might allow attackers to access methods that should only be accessible to privileged code.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

oval:org.mitre.oval:def:16614

vdb-entry

signature

x_refsource_OVAL

vendor-advisory

x_refsource_GENTOO

vendor-advisory

x_refsource_MANDRIVA

http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/jdk/rev/ce04db4aba39

x_refsource_CONFIRM

third-party-advisory

x_refsource_CERT

third-party-advisory

x_refsource_CERT-VN

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_HP

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_HP

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907218

x_refsource_CONFIRM

vendor-advisory

x_refsource_HP

openSUSE-SU-2013:0377

vendor-advisory

x_refsource_SUSE

oval:org.mitre.oval:def:19349

vdb-entry

signature

x_refsource_OVAL

http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_HP

https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.