Lucene search

K

PRIOn knowledge basePRION:CVE-2013-1500

HistoryJun 18, 2013 - 10:55 p.m.

Design/Logic Flaw

2013-06-1822:55:00

PRIOn knowledge base

www.prio-n.com

2

5.5 Medium

AI Score

Confidence

Low

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

23.7%

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.

CPENameOperatorVersion
jdkeq1.7.0 update6
jdkeq1.7.0 update5
jdkeq1.7.0 update7
jdkeq1.7.0 update2
jdkeq1.7.0 update13
jdkeq1.7.0 update11
jdkeq1.7.0
jdkeq1.7.0 update9
jdkle1.7.0
jdkeq1.7.0 update15

Rows per page:

1-10 of 1881

References

advisories.mageia.org/MGASA-2013-0185.html

bugzilla.redhat.com/bugzilla/show_bug.cgi?id=975148

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880

hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/1111f9acb96b

lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html

lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html

lists.opensuse.org/opensuse-security-announce/2013-07/msg00029.html

lists.opensuse.org/opensuse-security-announce/2013-07/msg00031.html

lists.opensuse.org/opensuse-security-announce/2013-08/msg00000.html

lists.opensuse.org/opensuse-security-announce/2013-08/msg00003.html

rhn.redhat.com/errata/RHSA-2013-0963.html

rhn.redhat.com/errata/RHSA-2013-1059.html

rhn.redhat.com/errata/RHSA-2013-1060.html

rhn.redhat.com/errata/RHSA-2013-1081.html

rhn.redhat.com/errata/RHSA-2013-1455.html

rhn.redhat.com/errata/RHSA-2013-1456.html

secunia.com/advisories/54154

security.gentoo.org/glsa/glsa-201406-32.xml

www-01.ibm.com/support/docview.wss?uid=swg21642336

www-01.ibm.com/support/docview.wss?uid=swg21644197

www.mandriva.com/security/advisories?name=MDVSA-2013:183

www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html

www.securityfocus.com/bid/60627

www.us-cert.gov/ncas/alerts/TA13-169A

access.redhat.com/errata/RHSA-2014:0414

marc.info/?l=bugtraq&m=137545592101387&w=2

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17221

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19663

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19726

twitter.com/timb_machine/status/347110990124568577

5.5 Medium

AI Score

Confidence

Low

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

23.7%

Related for PRION:CVE-2013-1500

veracode11 cve1 ubuntucve1 ibm23 suse12 nessus49 openvas44 oraclelinux3 redhat10 centos3 amazon2 debian2 mageia2 ubuntu3 securityvulns1 gentoo2