CVE-2013-0431

2013-01-31T14:55:00
ID CVE-2013-0431
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:35:00

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka "Issue 52," a different vulnerability than CVE-2013-1490. Per: http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html

"Applies to client deployment of Java only. This vulnerability can be exploited only through untrusted Java Web Start applications and untrusted Java applets. (Untrusted Java Web Start applications and untrusted applets run in the Java sandbox with limited privileges.)"