Lucene search
Ubuntu.comUB:CVE-2013-0809HistoryMar 04, 2013 - 12:00 a.m.
CVE-2013-0809
2013-03-0400:00:00
ubuntu.com
ubuntu.com
11
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.945 High
EPSS
Percentile
99.2%
Unspecified vulnerability in the 2D component in the Java Runtime
Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6
Update 41 and earlier, and 5.0 Update 40 and earlier allows remote
attackers to execute arbitrary code via unknown vectors, a different
vulnerability than CVE-2013-1493.
Notes
| Author | Note |
|---|---|
| mdeslaur | in lucid+, NetX and the plugin moved to the icedtea-web package |
| jdstrand | sun-java6 is not redistributable, no longer in the archive and no longer tracked sun-java5 is EOL upstream and no longer tracked as of 2013-03-05, no patches for openjdk-7 |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | openjdk-6 | <ย 6b27-1.12.3-0ubuntu1~8.04.2 | UNKNOWN |
| ubuntu | 10.04 | noarch | openjdk-6 | <ย 6b27-1.12.3-0ubuntu1~10.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | openjdk-6 | <ย 6b27-1.12.3-0ubuntu1~11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | openjdk-6 | <ย 6b27-1.12.3-0ubuntu1~12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | openjdk-6 | <ย 6b27-1.12.3-0ubuntu1~12.10.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | openjdk-7 | <ย 7u15-2.3.7-0ubuntu1~11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | openjdk-7 | <ย 7u15-2.3.7-0ubuntu1~12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | openjdk-7 | <ย 7u15-2.3.7-0ubuntu1~12.10.1 | UNKNOWN |
References
www.oracle.com/technetwork/java/javase/releasenotes-136954.html
launchpad.net/bugs/cve/CVE-2013-0809
nvd.nist.gov/vuln/detail/CVE-2013-0809
security-tracker.debian.org/tracker/CVE-2013-0809
ubuntu.com/security/notices/USN-1755-1
ubuntu.com/security/notices/USN-1755-2
www.cve.org/CVERecord?id=CVE-2013-0809
Related
openvas
openvas
RedHat Update for java-1.6.0-openjdk RHSA-2013:0604-01
2013-03-08 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-168)
2015-09-08 00:00:00
Oracle: Security Advisory (ELSA-2013-0605)
2015-10-06 00:00:00
nessus
nessus
Oracle Linux 5 : java-1.7.0-openjdk (ELSA-2013-0603)
2013-07-12 00:00:00
RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2013:0600)
2013-03-07 00:00:00
CentOS 5 : java-1.7.0-openjdk (CESA-2013:0603)
2013-03-08 00:00:00
suse
suse
Security update for Java (critical)
2013-03-12 18:04:47
java-1_6_0-openjdk: update to 1.12.4 (important)
2013-03-12 11:04:28
java-1_6_0-openjdk: update to 1.12.4 (important)
2013-03-12 21:04:28
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2013-03-06 00:00:00
java-1.6.0-openjdk security update
2013-03-06 00:00:00
java-1.7.0-openjdk security update
2013-03-06 00:00:00
securityvulns
securityvulns
APPLE-SA-2013-03-04-1 Java for OS X 2013-002 and Mac OS X v10.6 Update 14
2013-03-11 00:00:00
US-CERT Alert TA13-064A: Oracle Java Contains Multiple Vulnerabilities
2013-03-11 00:00:00
prion
prion
Design/Logic Flaw
2013-03-05 22:06:00
Memory corruption
2013-03-05 22:06:00
redhat
redhat
(RHSA-2013:0600) Critical: java-1.7.0-oracle security update
2013-03-06 00:00:00
(RHSA-2013:0604) Important: java-1.6.0-openjdk security update
2013-03-06 00:00:00
(RHSA-2013:0601) Critical: java-1.6.0-sun security update
2013-03-06 00:00:00
threatpost
threatpost
Oracle Rushes Emergency Java Update to Patch McRAT Vulnerabilities
2013-03-04 22:37:58
Attackers Beat Java Default Security Settings with Social Engineering
2013-03-05 17:27:40
The Java Zero-Day Procession Continues
2013-03-01 16:34:30
amazon
amazon
Important: java-1.6.0-openjdk
2013-03-14 22:03:00
Important: java-1.7.0-openjdk
2013-03-14 22:03:00
centos
centos
java security update
2013-03-06 21:08:42
java security update
2013-03-06 21:09:16
java security update
2013-03-06 21:16:37
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2013-03-07 00:00:00
OpenJDK 6 vulnerabilities
2013-03-05 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: java-1.7.0-openjdk-1.7.0.9-2.3.8.0.fc18
2013-03-14 02:56:25
[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.9-2.3.8.0.fc17
2013-03-06 22:58:17
cert
cert
Oracle Java contains multiple vulnerabilities
2013-03-05 00:00:00
zdi
zdi
Oracle Java Image ColorConvert Remote Code Execution Vulnerability
2013-06-27 00:00:00
Oracle Java cmmColorConvert Remote Code Execution Vulnerability
2013-06-27 00:00:00
cve
cve
CVE-2013-0809
2013-03-05 22:06:00
CVE-2013-1493
2013-03-05 22:06:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:59:18
Arbitrary Code Execution
2019-05-02 04:53:58
checkpoint_advisories
checkpoint_advisories
saint
saint
Java Runtime Environment Color Management memory overwrite
2013-04-04 00:00:00
Java Runtime Environment Color Management memory overwrite
2013-04-04 00:00:00
Java Runtime Environment Color Management memory overwrite
2013-04-04 00:00:00
seebug
seebug
Java CMM Remote Code Execution
2014-07-01 00:00:00
HP Service Managerๅคไธชๅฎๅ
จๆผๆด
2014-02-25 00:00:00
zdt
zdt
Java CMM Remote Code Execution Vulnerability
2013-03-28 00:00:00
packetstorm
packetstorm
Java CMM Remote Code Execution
2013-03-28 00:00:00
ubuntucve
ubuntucve
CVE-2013-1493
2013-03-04 00:00:00
metasploit
metasploit
Java CMM Remote Code Execution
2013-03-26 21:30:18
exploitdb
exploitdb
Java CMM - Remote Code Execution (Metasploit)
2013-03-29 00:00:00
ibm
ibm
symantec
symantec
Oracle Java SE CVE-2013-1493 Remote Code Execution Vulnerability
2013-02-28 00:00:00
qualysblog
qualysblog
Assess Your Risk From Ransomware Attacks, Powered by Qualys Research
2021-10-05 12:50:00
gentoo
gentoo
IcedTea JDK: Multiple vulnerabilities
2014-06-29 00:00:00
Oracle JRE/JDK: Multiple vulnerabilities
2014-01-27 00:00:00
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.945 High
EPSS
Percentile
99.2%
Related for UB:CVE-2013-0809