|
|
|||
| Rule General Information |
|---|
| Release Date: | 2013-07-01 | |
| Rule Name: | Oracle Java JMX Findclass and Elementfromcomplex Sandbox Escape Vulnerability (CVE-2013-0431) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Mac OS, Other Unix, Linux | |
| Reference: | http://arstechnica.com/security/2013/01/critical-java-vulnerabilies-confirmed-in-latest-version/ http://blogs.computerworld.com/malware-and-vulnerabilities/21693/yet-another-java-security-flaw-discovered-number-53 http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html |
|
| Solutions |
|---|
| More advisories have been published on the website, please visit for more suggestions: http://www.oracle.com/technetwork/topics/security/javacpufeb2013verbose-1841196.html |